$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: UvnHtLhgA+o2qa8apRt2Sz2KsxCKLpyWpzKEQ9c77+s= Subject key identifier: 49:60:B3:2E:A1:1D:93:1F:B0:04:84:C4:23:8E:24:2B:47:D1:46:28 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1403 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13E6 Signing time: Fri 22 Aug 2025 15:28:56 +0000 Manifest this update: Fri 22 Aug 2025 15:28:55 +0000 Manifest next update: Fri 29 Aug 2025 15:28:55 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: GYu8E0Vq/lhO7spUm4+rNlhp9fofZhKad/1vWZSL9lw=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5123 (0x1403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 22 15:28:55 2025 GMT Not After : Aug 29 15:28:55 2025 GMT Subject: CN=68a88cb7-b1f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:65:4e:76:06:4f:07:73:9b:80:c3:46:e2:65: 1d:e1:f7:5b:c8:d9:a0:c0:cf:3d:ea:be:87:13:6f: 05:6f:78:e1:ff:9f:cd:b0:05:80:91:ca:de:1a:5f: 1c:cb:b5:9e:f6:52:a5:6e:35:f0:ac:12:b0:c6:5c: b5:c0:e9:b2:f0:be:bf:e8:9d:88:47:9e:7a:57:4a: 71:c4:7f:4a:0d:e6:8b:2e:c8:9b:79:24:cb:6c:f4: bd:e9:6a:a1:2a:5f:b3:7f:c9:41:14:e9:27:60:5c: 7e:fc:b5:1e:df:98:9a:43:dc:85:05:73:b5:4c:43: bb:9d:8d:7b:4d:35:74:82:28:71:20:b4:b0:7d:44: 15:7b:2f:0f:81:da:6c:3b:fb:81:fa:74:5e:7f:82: 7c:18:b5:ac:72:b3:10:2c:c6:87:66:ab:74:b8:ee: 2a:b2:83:df:6b:24:7a:3b:3a:50:2c:94:db:16:b0: 36:b6:e6:59:93:b9:88:11:fa:f4:3a:cc:18:90:16: f3:a8:d9:fe:7f:40:17:ae:af:87:7f:2a:fd:45:20: 0f:5a:0b:6f:15:2c:49:d5:b5:94:83:9f:a4:3a:7e: d3:6f:9b:1f:1c:6c:11:7f:af:0b:3a:cc:8f:b4:49: 6a:f3:94:0a:ea:4a:9e:fa:25:7d:a5:96:19:8f:a2: 31:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:60:B3:2E:A1:1D:93:1F:B0:04:84:C4:23:8E:24:2B:47:D1:46:28 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a4:c0:38:be:9f:92:bd:c8:20:e4:0c:26:85:ad:18:df:b0: ed:11:01:94:4d:c4:06:f7:da:1b:97:46:ab:6b:23:3d:43:5f: 80:65:f4:19:90:a0:c7:97:2a:a1:ab:c6:07:f3:8b:20:a2:3b: 47:20:35:93:05:b8:da:da:b3:db:c4:6a:30:f5:47:3c:77:b1: 47:33:1c:09:ff:4a:fb:35:16:d0:d3:5c:09:d9:9e:ae:a4:dc: 6f:01:3c:26:6f:5e:1f:54:c5:1b:f0:bd:f2:78:da:7c:e5:d6: 8d:68:fe:0a:d1:c3:88:2c:b5:ac:26:2c:fb:40:4c:86:ec:71: b3:61:ac:c5:7c:f2:14:21:f3:06:2f:52:67:5c:4e:94:f8:ca: 4f:5d:2c:f0:6e:ba:38:20:52:8a:f7:7f:f5:c4:42:22:e2:cd: d5:ec:92:8a:7e:fc:23:0d:cd:c6:d7:4f:c7:56:77:e5:93:b7: c8:04:f6:9f:4b:62:56:e7:63:aa:22:4f:fa:04:2d:b5:ed:8c: ae:1e:ee:19:3c:cc:a8:69:26:cd:fd:eb:5b:81:83:c6:24:97: ba:0f:3a:46:c7:02:c1:50:c3:2e:86:3d:fd:12:34:0c:e5:43: c3:4d:af:cf:03:5e:f6:de:9a:2f:46:78:08:aa:10:41:37:91: 74:f3:36:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwODIyMTUyODU1WhcNMjUwODI5MTUyODU1WjAYMRYwFAYD VQQDEw02OGE4OGNiNy1iMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62VOdgZPB3ObgMNG4mUd4fdbyNmgwM896r6HE28Fb3jh/5/NsAWAkcreGl8c y7We9lKlbjXwrBKwxly1wOmy8L6/6J2IR556V0pxxH9KDeaLLsibeSTLbPS96Wqh Kl+zf8lBFOknYFx+/LUe35iaQ9yFBXO1TEO7nY17TTV0gihxILSwfUQVey8Pgdps O/uB+nRef4J8GLWscrMQLMaHZqt0uO4qsoPfayR6OzpQLJTbFrA2tuZZk7mIEfr0 OswYkBbzqNn+f0AXrq+Hfyr9RSAPWgtvFSxJ1bWUg5+kOn7Tb5sfHGwRf68LOsyP tElq85QK6kqe+iV9pZYZj6IxOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElgsy6h HZMfsASExCOOJCtH0UYoMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUpMA4vp+Svcgg5Awmha0Y37DtEQGUTcQG99obl0arayM9Q1+AZfQZ kKDHlyqhq8YH84sgojtHIDWTBbja2rPbxGow9Uc8d7FHMxwJ/0r7NRbQ01wJ2Z6u pNxvATwmb14fVMUb8L3yeNp85daNaP4K0cOILLWsJiz7QEyG7HGzYazFfPIUIfMG L1JnXE6U+MpPXSzwbro4IFKK93/1xEIi4s3V7JKKfvwjDc3G10/HVnflk7fIBPaf S2JW52OqIk/6BC217YyuHu4ZPMyoaSbN/etbgYPGJJe6DzpGxwLBUMMuhj39EjQM 5UPDTa/PA1723povRngIqhBBN5F08zYB -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:13 2025 by rpki-client