$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft File: K2gwqzfLNO8nOiCi8ugmQplgE9o.mft (raw, json) Hash identifier: SKnT8Tz9VU3ygs9ENu1T9l/qNBonzuN889d/ZxYhACA= Subject key identifier: 17:D2:2C:C7:0F:C5:8A:AB:EE:7D:18:43:1E:5A:A4:6C:FE:DC:4D:9F Authority key identifier: 2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA Certificate issuer: /CN=A91E3E80/serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft Manifest number: 24 Signing time: Sat 23 Aug 2025 08:03:08 +0000 Manifest this update: Sat 23 Aug 2025 08:03:07 +0000 Manifest next update: Sat 30 Aug 2025 08:03:07 +0000 Files and hashes: 1: K2gwqzfLNO8nOiCi8ugmQplgE9o.crl (hash: pD+hw/Gct4hhxTGUtsX2UXtEXyxq1vPuGVDRGa/5HFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Validity Not Before: Aug 23 08:03:07 2025 GMT Not After : Aug 30 08:03:07 2025 GMT Subject: CN=68a975bc-3924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5f:51:fa:3a:32:67:aa:eb:6f:9b:43:0d:d9: 67:e1:4d:a8:64:61:f0:86:96:ca:4c:d9:e6:5b:bd: a5:26:95:5b:cf:23:79:1e:d5:02:ea:86:df:6c:96: 9d:92:4d:3e:7d:6e:f7:57:d1:b9:a9:73:03:72:b6: 39:e0:d5:b1:74:14:f7:fe:19:8f:ae:5f:c1:b5:17: b0:91:8d:40:da:b6:f3:6d:5e:5f:12:42:8e:db:0a: b1:61:ab:b6:a2:c2:af:db:1e:8c:39:83:0b:cc:ea: a0:e6:e0:5e:25:9e:c7:cc:52:13:d8:51:49:62:35: 6b:9b:f2:d8:17:99:18:80:c0:83:56:33:40:a2:7f: f8:f6:11:a2:0b:6b:71:1b:68:74:78:9a:83:df:21: d0:1f:14:e6:6b:67:10:02:48:7f:ae:c1:b4:d1:ed: 45:ac:0b:e1:77:2b:fa:04:46:56:0d:e5:5a:e0:b0: 7e:47:15:0a:34:53:1f:7e:3d:25:5e:bb:bd:8a:ec: 12:cf:82:42:87:70:3f:f1:7d:44:2a:4a:04:e2:86: 24:7c:59:19:5f:66:ab:2b:55:ec:b0:7e:3f:f9:31: 31:fe:5a:3a:0d:3e:57:5b:2b:46:55:e7:84:fc:4a: c1:c5:80:78:fe:91:f8:6b:06:42:f8:ac:e9:5e:c8: cc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D2:2C:C7:0F:C5:8A:AB:EE:7D:18:43:1E:5A:A4:6C:FE:DC:4D:9F X509v3 Authority Key Identifier: keyid:2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ba:29:18:4b:68:3e:4d:59:77:c0:9b:cc:47:20:2c:ca:e1: 32:6e:3a:34:f6:20:20:1d:dd:81:e6:81:df:d3:af:b3:02:7a: 04:a0:68:70:c3:f9:2b:47:1d:d5:9d:3d:e1:2b:62:3c:c8:fc: 8f:ff:d9:b1:da:d4:c6:1a:a6:22:9e:d9:9c:9f:9d:01:0e:d4: ff:6d:bc:85:25:f9:df:51:71:a0:b8:2f:dd:04:5a:e6:3a:5c: 1c:72:94:ef:ca:3d:27:a5:b3:bb:c6:43:6c:f9:02:b5:cc:1d: ee:a5:96:f5:7d:cb:25:94:50:5a:60:64:13:92:77:ea:b2:68: 62:4b:e4:24:9f:0a:55:1f:da:84:2b:4e:28:df:45:b0:0b:ba: c0:9d:35:4f:63:a8:f8:92:a2:75:9e:1d:b4:36:51:fa:3d:08: 3d:7b:f4:90:b9:b1:a2:16:a7:6e:26:88:0a:2f:00:dd:a9:0d: 80:22:05:2e:08:e7:5a:1f:f1:79:82:6c:12:d5:fe:1f:a6:a7: 46:7c:eb:af:4e:29:bd:f8:16:bc:52:a9:7b:61:67:b1:47:09: 3b:02:6e:eb:97:d1:41:79:bf:c4:d7:63:c3:e3:67:e2:c3:82: 8b:f9:ab:87:a2:22:26:94:16:e6:46:63:8a:37:48:3d:06:a7: ed:0f:9d:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoMkI2ODMwQUIzN0NCMzRFRjI3M0EyMEEyRjJFODI2NDI5 OTYwMTNEQTAeFw0yNTA4MjMwODAzMDdaFw0yNTA4MzAwODAzMDdaMBgxFjAUBgNV BAMTDTY4YTk3NWJjLTM5MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLX1H6OjJnqutvm0MN2WfhTahkYfCGlspM2eZbvaUmlVvPI3ke1QLqht9slp2S TT59bvdX0bmpcwNytjng1bF0FPf+GY+uX8G1F7CRjUDatvNtXl8SQo7bCrFhq7ai wq/bHow5gwvM6qDm4F4lnsfMUhPYUUliNWub8tgXmRiAwINWM0Cif/j2EaILa3Eb aHR4moPfIdAfFOZrZxACSH+uwbTR7UWsC+F3K/oERlYN5VrgsH5HFQo0Ux9+PSVe u72K7BLPgkKHcD/xfUQqSgTihiR8WRlfZqsrVeywfj/5MTH+WjoNPldbK0ZV54T8 SsHFgHj+kfhrBkL4rOleyMwLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF9Isxw/F iqvufRhDHlqkbP7cTZ8wHwYDVR0jBBgwFoAUK2gwqzfLNO8nOiCi8ugmQplgE9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzNFNDAyQUVBNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84bk9pQ2k4dWdtUXBsZ0U5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzJnd3F6ZkxOTzhuT2lDaTh1Z21RcGxnRTlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzNFNDAyQUVBNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84 bk9pQ2k4dWdtUXBsZ0U5by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHu6KRhLaD5NWXfAm8xHICzK4TJuOjT2ICAd3YHmgd/Tr7MCegSgaHDD +StHHdWdPeErYjzI/I//2bHa1MYapiKe2ZyfnQEO1P9tvIUl+d9RcaC4L90EWuY6 XBxylO/KPSels7vGQ2z5ArXMHe6llvV9yyWUUFpgZBOSd+qyaGJL5CSfClUf2oQr TijfRbALusCdNU9jqPiSonWeHbQ2Ufo9CD179JC5saIWp24miAovAN2pDYAiBS4I 51of8XmCbBLV/h+mp0Z8669OKb34FrxSqXthZ7FHCTsCbuuX0UF5v8TXY8PjZ+LD gov5q4eiIiaUFuZGY4o3SD0Gp+0PnTc= -----END CERTIFICATE-----Generated at Sat Aug 23 19:30:47 2025 by rpki-client