$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: Hn2lFLzjmzy/x8Cjq4iwj9jGnB+I0cuAFHGhevPGq4Q= Subject key identifier: 79:10:E4:E7:D2:FE:68:F9:E7:21:AC:36:2D:A3:73:18:B6:CA:72:8C Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B97 Signing time: Fri 22 Aug 2025 15:35:32 +0000 Manifest this update: Fri 22 Aug 2025 15:35:31 +0000 Manifest next update: Fri 29 Aug 2025 15:35:31 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: Kmpfm5aUc1n5sotUa2hMaaPRsFJ4NjocIl5lyWyoSnU=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11195 (0x2bbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Aug 22 15:35:31 2025 GMT Not After : Aug 29 15:35:31 2025 GMT Subject: CN=68a88e43-636d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:f7:90:ab:d0:5f:43:25:bb:95:28:0d:43: 68:30:93:03:08:f7:da:08:1d:e8:f1:e0:ba:0b:38: fc:83:77:8c:ee:8a:86:45:a5:ee:fd:2c:65:d2:24: 3a:86:77:be:9e:8f:d2:88:ec:2c:51:e3:a4:6a:1f: 37:e9:4b:12:3b:76:a0:96:24:0b:e6:b0:79:e0:6f: 65:37:29:ed:47:27:56:3f:3e:50:a1:03:69:81:db: 4e:6b:df:5c:45:81:f6:bc:48:a8:5c:5e:12:50:65: 63:d6:f8:64:58:14:92:e7:4a:92:4f:51:62:9c:5a: dd:96:03:7a:dd:48:39:f9:07:d1:62:fa:e0:7d:6f: a3:d6:9d:b0:27:8b:2f:15:bf:45:02:8f:dd:d9:47: cc:37:58:f5:29:cc:18:1f:d3:64:7c:73:a8:f3:38: 45:b5:1b:84:b0:ec:73:a2:39:29:92:32:c7:17:47: c5:a7:b6:4b:3d:18:34:ed:c8:d3:a4:99:92:79:9f: 40:34:75:81:12:6d:f3:6e:34:46:d8:1a:53:15:a6: 16:2f:37:be:62:22:21:a0:24:a1:ff:f3:c2:45:a4: 88:7a:ab:d0:c9:7e:a5:e6:1b:10:09:7d:14:f8:96: 2d:37:71:76:fb:e3:7d:d3:04:ad:ab:6a:c9:eb:41: 78:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:10:E4:E7:D2:FE:68:F9:E7:21:AC:36:2D:A3:73:18:B6:CA:72:8C X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:ce:92:9c:09:bc:48:3a:90:6a:2a:6b:eb:eb:0d:c2:90:6e: f2:df:af:29:4a:c4:44:43:4d:ab:d8:37:fa:e1:d7:f0:0e:7e: 3a:bb:73:94:30:c2:0e:67:73:5d:d2:62:25:0a:b3:75:4e:7d: e9:d2:94:c2:2d:e0:38:90:59:d3:ad:52:e3:dd:fb:11:e1:f4: 92:83:86:ee:27:96:6d:1a:b0:05:54:92:78:17:a2:0d:f3:5c: f1:0e:c5:54:72:3c:57:0d:9e:f8:ad:90:cd:c6:33:03:bc:94: 9c:ba:c9:f5:04:a2:71:d0:2a:25:cc:22:72:99:4f:39:8a:07: ab:1c:68:ef:b0:47:ea:7b:25:77:87:ef:bf:23:10:52:8d:06: e4:22:41:52:dc:42:f4:33:54:97:3d:dc:bb:f3:59:76:35:d6: 55:25:73:e5:ee:e9:f0:18:18:fa:1b:06:ff:97:1e:74:a5:00: 86:9c:e7:33:a9:73:d0:bd:e3:f9:c4:62:db:e8:a7:af:f5:cc: f1:ae:86:a6:25:8c:38:b2:b5:5f:8d:96:4a:ca:e2:83:18:5c: 15:e3:fd:81:61:9f:45:b6:da:82:5e:99:d8:f5:34:57:11:16: ad:6a:90:d4:3a:0a:2f:46:32:f0:cc:3f:4b:6a:2b:b8:83:19: 54:40:56:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwODIyMTUzNTMxWhcNMjUwODI5MTUzNTMxWjAYMRYwFAYD VQQDEw02OGE4OGU0My02MzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmr3kKvQX0Mlu5UoDUNoMJMDCPfaCB3o8eC6Czj8g3eM7oqGRaXu/Sxl0iQ6 hne+no/SiOwsUeOkah836UsSO3agliQL5rB54G9lNyntRydWPz5QoQNpgdtOa99c RYH2vEioXF4SUGVj1vhkWBSS50qST1FinFrdlgN63Ug5+QfRYvrgfW+j1p2wJ4sv Fb9FAo/d2UfMN1j1KcwYH9NkfHOo8zhFtRuEsOxzojkpkjLHF0fFp7ZLPRg07cjT pJmSeZ9ANHWBEm3zbjRG2BpTFaYWLze+YiIhoCSh//PCRaSIeqvQyX6l5hsQCX0U +JYtN3F2++N90wStq2rJ60F4qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkQ5OfS /mj55yGsNi2jcxi2ynKMMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQzpKcCbxIOpBqKmvr6w3CkG7y368pSsREQ02r2Df64dfwDn46u3OU MMIOZ3Nd0mIlCrN1Tn3p0pTCLeA4kFnTrVLj3fsR4fSSg4buJ5ZtGrAFVJJ4F6IN 81zxDsVUcjxXDZ74rZDNxjMDvJScusn1BKJx0ColzCJymU85igerHGjvsEfqeyV3 h++/IxBSjQbkIkFS3EL0M1SXPdy781l2NdZVJXPl7unwGBj6Gwb/lx50pQCGnOcz qXPQveP5xGLb6Kev9czxroamJYw4srVfjZZKyuKDGFwV4/2BYZ9FttqCXpnY9TRX ERatapDUOgovRjLwzD9Laiu4gxlUQFY7 -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:15 2025 by rpki-client