$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: sUpo3NfKytkP9wCKX/7WZoRQi09k2zvp6D9keuxi98E= Subject key identifier: CE:B9:37:E6:76:63:79:E6:03:D1:F4:A3:41:81:4E:CD:25:6A:03:F0 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0A35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A24 Signing time: Fri 22 Aug 2025 19:55:30 +0000 Manifest this update: Fri 22 Aug 2025 19:55:29 +0000 Manifest next update: Fri 29 Aug 2025 19:55:29 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: mStah4C6qOrK5IuL1kgCdwUyjaxDhAnbSjKOUkTo1jQ=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: TxCwNFrh+xkaqDR3M5kqqPa5bX7FhYwp1p0wkxa1CxU=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: JxcjLdYbfNpLt4XJbaeEwHRAAk7SbV4Cw+ExyqNKBV4=) 4: C8A0E422831611EA95762453C4F9AE02.roa (hash: yUwouY97arbHx1ysSRkQtB3/fVJX2BMSgtA5eI1eKIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2613 (0xa35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Aug 22 19:55:29 2025 GMT Not After : Aug 29 19:55:29 2025 GMT Subject: CN=68a8cb32-1a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:b6:23:83:e1:24:ae:fd:9e:6d:2d:85:d2: 49:25:12:5f:91:f6:87:98:37:1e:d6:35:44:84:c3: 07:fb:84:6a:12:ba:18:1e:2d:77:34:17:49:b0:57: ca:80:15:26:ee:ce:4c:cd:e7:a8:5a:21:c4:74:24: 50:54:42:e9:33:dd:74:77:7e:30:67:01:8a:3d:66: 86:f6:3d:21:e3:e8:6a:77:3c:b9:5a:4e:b8:51:a8: dd:e8:1f:8c:da:41:4f:74:ce:45:a5:0b:4d:78:e6: 09:76:bf:f7:40:bc:fa:c3:af:86:e6:b1:9a:d5:af: 98:4d:54:7f:3f:99:9a:3b:4e:f0:e5:82:a5:0b:e6: c8:7f:b3:8f:27:9a:82:f7:aa:f5:71:82:c1:21:97: 5a:44:ab:73:e9:7a:e0:00:fb:b5:23:e6:87:dc:72: 8b:93:59:81:77:36:c8:c9:6f:9a:cb:af:d6:ef:5c: c4:30:5c:06:73:ea:d0:ad:87:f9:32:bd:66:60:8b: be:e4:04:7f:1d:4f:e3:50:53:94:89:23:84:2e:8f: be:74:72:43:99:b0:cc:2e:1b:2b:3c:64:ba:3c:d7: bb:41:98:b4:88:16:9c:ae:22:4e:31:e8:59:a4:90: 3c:05:bb:63:a8:12:3c:d9:56:1f:19:b5:47:08:a8: eb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B9:37:E6:76:63:79:E6:03:D1:F4:A3:41:81:4E:CD:25:6A:03:F0 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:30:df:1f:c4:43:62:d5:c2:a8:d0:69:2b:75:ed:71:f4:6e: 3a:bf:3a:65:33:3a:7e:57:c4:83:e0:26:fa:ca:1e:ea:91:d9: 1e:cf:79:82:93:28:77:54:e1:02:b2:f3:5c:45:15:f1:3c:cb: a1:ce:e0:cf:0a:4c:e8:24:9b:4b:f3:6c:92:21:29:23:9c:33: 3f:38:a4:26:29:60:c0:6d:51:47:82:ec:cf:87:93:14:00:e8: 34:82:8c:12:a7:87:33:19:06:e8:c3:ac:b0:74:b9:99:eb:d4: 0c:ee:db:f4:cb:85:39:a1:83:72:21:f1:65:07:9b:2f:f6:3c: a6:74:0b:1c:e2:48:84:a8:dc:eb:5f:58:d1:af:c6:30:0a:06: 97:5e:56:82:f0:9b:2d:ff:4b:95:36:b3:79:6e:2f:bc:fc:fa: 88:c3:9a:6e:86:10:ae:79:08:d3:93:18:e5:61:aa:7c:a3:90: 1c:8e:e8:ec:a7:fe:62:5a:83:4b:92:9d:5e:f9:90:fc:5d:e1: 04:ed:f1:9a:a8:8e:cf:dc:44:3f:f0:40:5e:07:37:51:32:6a: e2:da:df:81:3e:6b:51:69:03:93:66:0f:69:a3:69:0d:2b:8c: b5:41:99:0c:00:10:99:41:35:cd:48:06:69:ca:ef:02:ac:7a: 1d:13:55:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjUwODIyMTk1NTI5WhcNMjUwODI5MTk1NTI5WjAYMRYwFAYD VQQDEw02OGE4Y2IzMi0xYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14O2I4PhJK79nm0thdJJJRJfkfaHmDce1jVEhMMH+4RqEroYHi13NBdJsFfK gBUm7s5MzeeoWiHEdCRQVELpM910d34wZwGKPWaG9j0h4+hqdzy5Wk64Uajd6B+M 2kFPdM5FpQtNeOYJdr/3QLz6w6+G5rGa1a+YTVR/P5maO07w5YKlC+bIf7OPJ5qC 96r1cYLBIZdaRKtz6XrgAPu1I+aH3HKLk1mBdzbIyW+ay6/W71zEMFwGc+rQrYf5 Mr1mYIu+5AR/HU/jUFOUiSOELo++dHJDmbDMLhsrPGS6PNe7QZi0iBacriJOMehZ pJA8BbtjqBI82VYfGbVHCKjrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM65N+Z2 Y3nmA9H0o0GBTs0lagPwMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbMN8fxENi1cKo0Gkrde1x9G46vzplMzp+V8SD4Cb6yh7qkdkez3mC kyh3VOECsvNcRRXxPMuhzuDPCkzoJJtL82ySISkjnDM/OKQmKWDAbVFHguzPh5MU AOg0gowSp4czGQbow6ywdLmZ69QM7tv0y4U5oYNyIfFlB5sv9jymdAsc4kiEqNzr X1jRr8YwCgaXXlaC8Jst/0uVNrN5bi+8/PqIw5puhhCueQjTkxjlYap8o5Acjujs p/5iWoNLkp1e+ZD8XeEE7fGaqI7P3EQ/8EBeBzdRMmri2t+BPmtRaQOTZg9po2kN K4y1QZkMABCZQTXNSAZpyu8CrHodE1Uy -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:15 2025 by rpki-client