$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft File: R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json) Hash identifier: KJU2l5VOHpb9oIpxtzRLtE0MP8q/+UCOeJuC2Q6moE8= Subject key identifier: 16:7E:4A:53:E9:B1:61:B0:B7:C3:34:C8:84:BD:03:E8:A8:75:3C:5A Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft Manifest number: 5A Signing time: Sat 23 Aug 2025 07:24:45 +0000 Manifest this update: Sat 23 Aug 2025 07:24:44 +0000 Manifest next update: Sat 30 Aug 2025 07:24:44 +0000 Files and hashes: 1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: NjWjNGA+dxM1Z8NGia6GdI2LEi9+VlaqYcm2eiB1suk=) 2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: Ya8UAl3AvyfkYqVmnBZyGneXfArx61d1F2XHtbOSrtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Aug 23 07:24:44 2025 GMT Not After : Aug 30 07:24:44 2025 GMT Subject: CN=68a96cbc-37c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4c:76:4a:a6:d3:c6:f0:8f:02:4e:46:48:81: ff:0a:7c:78:c4:fd:6e:b1:da:88:64:85:c5:39:70: ce:ae:6e:41:05:01:a9:c7:fc:41:1f:d4:96:2f:0d: fe:77:44:60:be:5c:95:f3:a4:b9:45:4e:aa:f7:bb: 03:12:d6:14:10:a7:58:9d:e8:0c:43:93:9a:57:1c: 85:b4:08:fd:9e:7d:82:8f:70:16:59:58:66:7b:ff: 84:ed:cd:56:93:aa:56:10:c3:04:6b:56:54:70:fc: 4c:f2:2c:a2:46:96:49:80:f3:21:3a:fb:28:af:59: 97:46:97:d2:9b:ce:25:dd:c9:11:3c:71:68:c7:99: c4:21:6c:a1:a4:be:5f:df:71:fb:76:c0:3e:52:87: 42:8d:cb:90:96:34:c9:65:0b:c3:26:58:49:e4:59: ed:16:e7:5f:f1:d8:f3:9d:b5:2d:9f:05:78:0c:97: fc:b0:ee:1e:c4:d8:03:4f:0a:5f:b2:e3:f4:39:ae: a4:3d:f2:1f:5b:51:6d:40:21:43:3d:1b:bd:ca:51: ba:06:72:a1:40:d5:0d:de:70:71:1e:a0:c1:52:98: bd:96:fb:6a:bf:9e:b2:1c:9e:d0:05:3b:5f:e9:6f: a2:8a:48:95:ba:69:e1:70:cd:27:d6:bc:f5:5d:0a: e6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7E:4A:53:E9:B1:61:B0:B7:C3:34:C8:84:BD:03:E8:A8:75:3C:5A X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:37:79:d0:a7:6e:32:56:64:dd:71:3b:f6:8b:7f:ed:1b:df: 61:e2:62:9c:6c:4b:03:fb:75:1c:c9:06:65:38:67:f4:fd:14: 3c:3f:7a:47:69:11:c3:87:8d:e3:8a:86:fc:6d:7f:12:d6:23: b9:d3:63:f2:e8:3e:e0:26:06:fb:ac:48:a9:13:3d:39:00:17: 7c:0c:4d:f7:57:af:32:cf:47:df:21:97:11:7d:90:6a:54:82: 12:b6:92:7f:6d:3e:ea:81:43:82:6c:82:4a:ec:a3:63:e2:c5: 55:e1:85:85:88:d5:a8:82:86:54:64:50:8e:5c:44:53:58:ef: 11:0d:e2:82:cf:b4:83:ad:d4:63:fc:b4:9f:64:b2:32:f6:8c: 1c:11:9c:34:e9:58:be:8b:e3:15:da:fa:9a:b6:ef:51:1a:91: 94:8c:fe:6d:79:7a:bb:c4:17:42:6f:e5:57:eb:de:e0:cf:d1: 2b:45:94:d2:61:d9:f3:d6:9b:65:1c:49:99:66:c7:9f:1d:b0: 34:e9:11:1e:02:df:9d:e7:f5:1a:38:06:22:6c:eb:55:5b:d5: 57:c1:42:6a:c7:cf:81:e1:db:a5:55:18:20:1c:36:71:5d:0e: cf:b7:54:38:47:dc:59:7d:cb:d0:a7:93:62:3e:a1:6d:51:41: 2e:4f:a5:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUI2QzExMC8GA1UEBRMoNDc2N0I2OTNCRDg0NjJFRUFGQTgzRDlFODAzQzlEMjg2 QjYyMURDODAeFw0yNTA4MjMwNzI0NDRaFw0yNTA4MzAwNzI0NDRaMBgxFjAUBgNV BAMTDTY4YTk2Y2JjLTM3YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwTHZKptPG8I8CTkZIgf8KfHjE/W6x2ohkhcU5cM6ubkEFAanH/EEf1JYvDf53 RGC+XJXzpLlFTqr3uwMS1hQQp1id6AxDk5pXHIW0CP2efYKPcBZZWGZ7/4TtzVaT qlYQwwRrVlRw/EzyLKJGlkmA8yE6+yivWZdGl9KbziXdyRE8cWjHmcQhbKGkvl/f cft2wD5Sh0KNy5CWNMllC8MmWEnkWe0W51/x2POdtS2fBXgMl/yw7h7E2ANPCl+y 4/Q5rqQ98h9bUW1AIUM9G73KUboGcqFA1Q3ecHEeoMFSmL2W+2q/nrIcntAFO1/p b6KKSJW6aeFwzSfWvPVdCubjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFn5KU+mx YbC3wzTIhL0D6Kh1PFowHwYDVR0jBBgwFoAUR2e2k72EYu6vqD2egDydKGtiHcgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QjZDL0Q3REIwQTA4RkE1 RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhj Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjJlMms3MkVZdTZ2cUQyZWdEeWRLR3RpSGNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QjZDL0Q3REIwQTA4RkE1RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2 dnFEMmVnRHlkS0d0aUhjZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABs3edCnbjJWZN1xO/aLf+0b32HiYpxsSwP7dRzJBmU4Z/T9FDw/ekdp EcOHjeOKhvxtfxLWI7nTY/LoPuAmBvusSKkTPTkAF3wMTfdXrzLPR98hlxF9kGpU ghK2kn9tPuqBQ4Jsgkrso2PixVXhhYWI1aiChlRkUI5cRFNY7xEN4oLPtIOt1GP8 tJ9ksjL2jBwRnDTpWL6L4xXa+pq271EakZSM/m15ervEF0Jv5Vfr3uDP0StFlNJh 2fPWm2UcSZlmx58dsDTpER4C353n9Ro4BiJs61Vb1VfBQmrHz4Hh26VVGCAcNnFd Ds+3VDhH3Fl9y9Cnk2I+oW1RQS5PpfE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:20:25 2025 by rpki-client