$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 1LRAqdKlVtRTDZwGaNDePm/mkhwyC5fKKhuDK9BRFQE= Subject key identifier: A1:B1:03:80:F2:3D:9A:C1:A9:13:A9:BA:D6:FC:02:6C:A0:78:0B:08 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: FB Signing time: Sat 23 Aug 2025 05:19:34 +0000 Manifest this update: Sat 23 Aug 2025 05:19:34 +0000 Manifest next update: Sat 30 Aug 2025 05:19:34 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: Krz94Ev3H+mQt1DbCdzSIbwn0kHu4uBoTF6JvduBm+M=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Aug 23 05:19:34 2025 GMT Not After : Aug 30 05:19:34 2025 GMT Subject: CN=68a94f66-3018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3b:f9:c6:c1:4f:57:d5:db:7a:8c:35:e1:6d: 5a:e3:bb:89:7d:70:ce:d5:52:59:c8:2c:f1:27:5c: c6:f1:4c:c9:fc:21:a1:05:9b:15:0a:6b:c2:86:bd: 1a:78:1c:c9:73:e8:ae:6f:1a:34:aa:22:a3:7c:54: d6:74:ee:b3:d6:29:a8:eb:2c:2c:7f:94:a8:b6:c9: 5e:13:4f:2e:5f:17:c6:60:f1:a6:6d:40:45:1e:f9: 73:dc:9d:f1:13:24:31:1c:13:fe:d2:76:da:60:85: 15:c6:5e:2b:94:be:0a:3b:bd:ec:01:0e:a0:82:5a: e2:fc:59:ef:86:08:27:95:86:ea:b6:e4:ba:48:97: 6a:3c:85:bc:a6:9d:ca:26:44:2b:07:ff:0f:98:55: ff:2e:54:3f:ec:5f:68:c3:ed:27:11:be:61:eb:44: 68:bc:dc:67:d3:9c:bf:09:1c:6b:e0:43:d8:79:74: 2a:85:07:97:00:37:76:72:a3:91:3d:28:14:22:03: 9b:73:92:db:f5:f3:5e:df:4f:97:00:0a:b6:27:bf: 02:c4:3c:b3:92:c8:ec:56:7f:08:9a:ff:35:a1:4c: e4:a7:03:7a:16:b1:a9:8d:a6:a1:3c:02:29:b5:cb: 7b:7a:ec:f5:35:3f:62:94:36:e1:fc:06:6d:a0:e2: b0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B1:03:80:F2:3D:9A:C1:A9:13:A9:BA:D6:FC:02:6C:A0:78:0B:08 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b0:1a:f4:83:a7:22:d6:57:a2:43:fc:14:ef:77:59:0b:aa: be:2b:7a:51:68:b8:26:fa:e9:e6:ef:c7:39:f4:c1:6d:d6:0a: 8b:15:0b:42:ef:54:65:7a:3c:d8:d4:55:ff:89:c7:02:1a:5c: c1:57:4a:3c:d7:63:8b:95:43:b5:38:5b:d2:c7:75:92:86:43: 4c:dd:f8:03:46:44:d3:08:14:91:8a:ed:c0:45:ff:13:7a:0e: 10:cb:aa:77:30:1a:f4:f7:be:ef:13:86:db:b9:c3:47:ea:e3: 63:65:69:fa:c1:f7:05:8a:00:60:87:21:f5:e3:d6:49:c5:8f: 53:56:1e:bc:29:5e:8d:61:c8:c8:cf:80:61:21:87:9c:c8:c9: fe:0c:d4:44:77:8a:61:3e:2e:22:d3:28:70:45:8b:9d:04:34: 4f:6d:fc:37:53:de:04:c4:d4:9c:06:b9:6e:51:85:56:b0:18: 36:c2:08:96:22:93:8a:0a:d7:ed:95:92:e0:1b:5f:b9:8b:91: a6:05:99:97:d2:6e:66:9d:76:92:ab:91:6a:fc:2e:24:ec:ba: 92:77:3d:0c:9b:3b:cd:ac:d6:ba:c0:be:e8:65:da:da:04:00: 9c:16:a7:e1:c7:ff:99:ec:59:63:c7:12:b3:94:af:bb:08:6e: 00:77:4d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwODIzMDUxOTM0WhcNMjUwODMwMDUxOTM0WjAYMRYwFAYD VQQDEw02OGE5NGY2Ni0zMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTv5xsFPV9Xbeow14W1a47uJfXDO1VJZyCzxJ1zG8UzJ/CGhBZsVCmvChr0a eBzJc+iubxo0qiKjfFTWdO6z1imo6ywsf5SotsleE08uXxfGYPGmbUBFHvlz3J3x EyQxHBP+0nbaYIUVxl4rlL4KO73sAQ6gglri/FnvhggnlYbqtuS6SJdqPIW8pp3K JkQrB/8PmFX/LlQ/7F9ow+0nEb5h60RovNxn05y/CRxr4EPYeXQqhQeXADd2cqOR PSgUIgObc5Lb9fNe30+XAAq2J78CxDyzksjsVn8Imv81oUzkpwN6FrGpjaahPAIp tct7euz1NT9ilDbh/AZtoOKwPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGxA4Dy PZrBqROputb8AmygeAsIMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABsBr0g6ci1leiQ/wU73dZC6q+K3pRaLgm+unm78c59MFt1gqLFQtC 71RlejzY1FX/iccCGlzBV0o812OLlUO1OFvSx3WShkNM3fgDRkTTCBSRiu3ARf8T eg4Qy6p3MBr0977vE4bbucNH6uNjZWn6wfcFigBghyH149ZJxY9TVh68KV6NYcjI z4BhIYecyMn+DNREd4phPi4i0yhwRYudBDRPbfw3U94ExNScBrluUYVWsBg2wgiW IpOKCtftlZLgG1+5i5GmBZmX0m5mnXaSq5Fq/C4k7LqSdz0MmzvNrNa6wL7oZdra BACcFqfhx/+Z7FljxxKzlK+7CG4Ad00U -----END CERTIFICATE-----Generated at Sat Aug 23 17:48:41 2025 by rpki-client