$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: fFNG7GbV2XoO15sbMe84bE/8iuvZporT07u427nDNg4= Subject key identifier: 14:8B:6E:0E:06:6B:A4:BF:20:69:C5:B9:D6:F7:97:32:2E:86:66:FB Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1DD7 Signing time: Fri 22 Aug 2025 17:22:45 +0000 Manifest this update: Fri 22 Aug 2025 17:22:44 +0000 Manifest next update: Fri 29 Aug 2025 17:22:44 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: j3Q9o2f5pv1NnihgVAfbjvrdPdZHwe1aCz2a1t6Ww/w=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Aug 22 17:22:44 2025 GMT Not After : Aug 29 17:22:44 2025 GMT Subject: CN=68a8a765-3043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8f:b3:10:71:0c:20:65:dc:51:0a:7e:32:03: ba:9e:fb:3c:51:e9:38:fb:6e:68:0c:a5:d1:0b:10: fa:7a:ea:29:21:b0:30:cb:22:e9:db:c8:68:32:2a: 63:ed:f2:07:f3:58:85:be:d1:68:e1:bb:84:25:1c: e6:2e:5f:7b:30:c8:ed:f3:1f:f0:1e:d7:c6:b7:4c: 80:c0:27:7d:f2:a1:6c:0f:ce:16:f8:a6:60:bb:94: 8a:e1:21:c8:5d:7e:bf:98:9d:d7:e3:6b:bf:c0:e0: b4:20:cf:6c:a9:98:a7:e6:19:8f:4d:9a:1d:74:71: 99:1f:1e:34:ce:43:16:c7:33:57:9f:00:e6:44:4b: e9:6d:79:9a:a1:e0:7c:66:2c:6f:44:ed:b9:9f:99: 87:f7:44:8f:6b:e7:bf:1e:61:e3:13:1e:9d:e3:33: 25:e3:58:87:3d:ab:11:df:e8:35:15:7a:77:b4:c2: 5e:bc:57:d1:3c:b4:a7:55:0e:51:3c:6e:e9:95:81: 17:40:cf:cd:16:ff:e0:2a:39:ab:a0:b9:5d:98:a9: 9c:b6:14:35:ba:89:4a:c2:6c:bc:eb:ca:ac:f2:0b: 2f:33:c4:b2:d3:e2:e5:9f:d3:bb:35:57:57:2b:aa: 77:59:10:35:f9:15:37:75:fe:ba:33:86:4e:00:76: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8B:6E:0E:06:6B:A4:BF:20:69:C5:B9:D6:F7:97:32:2E:86:66:FB X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:1c:46:55:19:2e:cf:99:b0:78:b9:37:d3:22:f6:69:16:b5: 93:ca:1a:b0:ba:f9:d0:17:eb:a3:69:89:b5:2b:85:79:22:2c: 21:44:f8:e3:5b:91:0c:94:10:69:22:fd:b1:71:35:c7:34:1d: f1:10:de:e1:b3:33:ed:09:8f:0b:a4:7a:06:00:f9:97:16:27: 6d:7b:f7:8c:a2:a5:e8:e9:5a:5c:e2:28:4e:df:35:7d:7a:da: 0a:dd:bb:6c:8d:00:3a:a3:5c:dc:9f:e6:aa:d0:31:f6:b9:66: 57:e9:26:dd:1c:74:af:12:d7:6d:ed:6a:bb:89:34:4f:10:e2: ba:45:fd:b6:8f:36:5c:c9:05:ff:84:4c:23:5d:fc:1f:88:fc: f7:3e:94:e6:e9:14:84:9d:4d:e2:cd:ff:e2:a0:66:b4:a0:53: 71:d4:9b:7c:5a:13:03:b2:90:e1:95:d2:02:c8:be:f5:78:c6: e4:d3:17:ca:8d:56:cd:14:33:99:56:88:d7:85:8c:fe:7e:d9: 53:10:43:06:fc:f3:a2:35:d8:a2:39:b4:4a:39:27:02:fa:85: 20:bd:2b:a2:a3:6c:3b:ea:9c:a6:27:97:fa:8e:0d:fb:14:27: 73:f3:c6:6a:bd:52:b5:56:28:06:51:40:ce:e4:3f:02:bf:90: 49:2f:a2:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwODIyMTcyMjQ0WhcNMjUwODI5MTcyMjQ0WjAYMRYwFAYD VQQDEw02OGE4YTc2NS0zMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI+zEHEMIGXcUQp+MgO6nvs8Uek4+25oDKXRCxD6euopIbAwyyLp28hoMipj 7fIH81iFvtFo4buEJRzmLl97MMjt8x/wHtfGt0yAwCd98qFsD84W+KZgu5SK4SHI XX6/mJ3X42u/wOC0IM9sqZin5hmPTZoddHGZHx40zkMWxzNXnwDmREvpbXmaoeB8 ZixvRO25n5mH90SPa+e/HmHjEx6d4zMl41iHPasR3+g1FXp3tMJevFfRPLSnVQ5R PG7plYEXQM/NFv/gKjmroLldmKmcthQ1uolKwmy868qs8gsvM8Sy0+Lln9O7NVdX K6p3WRA1+RU3df66M4ZOAHbzaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSLbg4G a6S/IGnFudb3lzIuhmb7MB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRHEZVGS7PmbB4uTfTIvZpFrWTyhqwuvnQF+ujaYm1K4V5IiwhRPjj W5EMlBBpIv2xcTXHNB3xEN7hszPtCY8LpHoGAPmXFidte/eMoqXo6Vpc4ihO3zV9 etoK3btsjQA6o1zcn+aq0DH2uWZX6SbdHHSvEtdt7Wq7iTRPEOK6Rf22jzZcyQX/ hEwjXfwfiPz3PpTm6RSEnU3izf/ioGa0oFNx1Jt8WhMDspDhldICyL71eMbk0xfK jVbNFDOZVojXhYz+ftlTEEMG/POiNdiiObRKOScC+oUgvSuio2w76pymJ5f6jg37 FCdz88ZqvVK1VigGUUDO5D8Cv5BJL6Ln -----END CERTIFICATE-----Generated at Sat Aug 23 18:38:44 2025 by rpki-client