$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: oDcZALsdc/06+ZEDaeCF5E/E6tD5wvDNHtxc0H+Kj7M= Subject key identifier: CE:CD:90:D7:2F:B9:81:FB:40:65:0E:92:FE:C6:AA:D3:C5:D3:19:C5 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01B4 Signing time: Sat 23 Aug 2025 03:14:47 +0000 Manifest this update: Sat 23 Aug 2025 03:14:47 +0000 Manifest next update: Sat 30 Aug 2025 03:14:47 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: SEBymqlQE5Xdr9s1b8FkMvGqxCN1QPYOBQwuXQIx4XQ=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Aug 23 03:14:47 2025 GMT Not After : Aug 30 03:14:47 2025 GMT Subject: CN=68a93227-b326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:7b:11:a2:57:63:6a:bd:68:09:e0:c0:0f: fe:19:cb:93:96:43:52:e2:97:b8:0b:9a:83:8b:d0: 18:d0:86:37:c1:b9:1d:2f:de:8c:c0:46:66:7b:2d: 26:26:f2:99:ee:30:76:da:58:67:4b:fd:af:e7:69: 2b:1d:44:a2:4f:2c:6d:82:73:59:93:09:00:5f:1a: 55:41:e2:27:c0:fd:71:be:ea:07:fa:32:9f:e6:88: 0d:af:a2:cb:20:1f:ad:01:6a:89:ab:18:92:5b:c1: 2b:2b:96:9f:43:18:9a:de:57:9e:1d:be:54:01:65: 53:af:4d:3d:a9:a6:eb:73:29:71:e3:87:d0:74:b6: 37:ce:c5:46:73:d7:85:e2:42:57:0d:88:d1:3e:c2: a3:fd:fe:cb:25:dd:ca:1c:08:1b:d6:2b:89:e2:7b: 94:1f:41:26:49:8b:7e:2b:00:95:a2:9b:dc:6c:2e: 1f:7d:d0:6d:a7:57:1d:85:d3:fa:d7:6c:be:b8:e8: 4f:19:ea:35:ae:9d:85:45:19:1d:d7:a6:c5:15:aa: 6b:f7:7d:e4:b8:d8:d2:28:57:bd:6d:51:64:1c:2c: 68:bc:b9:a9:ba:23:17:7f:5f:2d:0f:59:5d:7e:03: 46:fd:5c:40:70:3e:6c:5a:5f:4b:51:3e:8e:dc:64: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CD:90:D7:2F:B9:81:FB:40:65:0E:92:FE:C6:AA:D3:C5:D3:19:C5 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:38:85:fb:12:c4:7b:f5:5e:f6:bf:0b:08:e9:19:0e:c3:bc: ad:aa:df:ef:4e:6f:36:d6:40:59:21:1c:64:30:7c:4b:a0:34: f2:18:81:c0:a4:02:b8:a0:0c:a8:51:34:1a:5f:0e:f3:70:17: b6:f6:6d:54:6d:88:ad:f3:99:6f:26:63:d0:74:cc:b2:df:33: e8:f4:c3:44:81:e4:47:b1:a0:c2:9c:af:6a:aa:22:8c:42:13: f7:e8:f9:ef:16:40:8a:43:16:b4:03:1a:53:0f:2a:81:9b:c1: 3f:f5:0c:17:01:0c:38:cf:63:08:52:30:1f:55:e8:ec:89:b5: 18:0a:a6:75:b6:f7:46:f3:62:97:68:36:d0:2d:80:f8:2c:99: 90:82:50:97:6f:23:15:14:cd:36:6e:d9:07:c5:78:95:2f:c3: 08:80:46:7b:1a:b7:2b:b0:cc:dd:4d:6c:37:e3:74:10:2e:20: c0:3f:a0:75:6f:91:38:de:b9:74:b3:1e:60:68:cd:c7:00:ab: c3:95:99:6e:eb:ad:17:59:a7:ae:c8:cd:83:ef:d4:29:1a:cc: cc:40:49:05:dd:7a:e5:f3:2e:23:36:ce:62:f8:b7:54:ab:29: 59:fe:61:7a:0f:09:7e:79:75:fd:39:ea:96:02:b0:00:c5:27: 8e:32:79:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwODIzMDMxNDQ3WhcNMjUwODMwMDMxNDQ3WjAYMRYwFAYD VQQDEw02OGE5MzIyNy1iMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHV7EaJXY2q9aAngwA/+GcuTlkNS4pe4C5qDi9AY0IY3wbkdL96MwEZmey0m JvKZ7jB22lhnS/2v52krHUSiTyxtgnNZkwkAXxpVQeInwP1xvuoH+jKf5ogNr6LL IB+tAWqJqxiSW8ErK5afQxia3leeHb5UAWVTr009qabrcylx44fQdLY3zsVGc9eF 4kJXDYjRPsKj/f7LJd3KHAgb1iuJ4nuUH0EmSYt+KwCVopvcbC4ffdBtp1cdhdP6 12y+uOhPGeo1rp2FRRkd16bFFapr933kuNjSKFe9bVFkHCxovLmpuiMXf18tD1ld fgNG/VxAcD5sWl9LUT6O3GSTyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7NkNcv uYH7QGUOkv7GqtPF0xnFMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiOIX7EsR79V72vwsI6RkOw7ytqt/vTm821kBZIRxkMHxLoDTyGIHA pAK4oAyoUTQaXw7zcBe29m1UbYit85lvJmPQdMyy3zPo9MNEgeRHsaDCnK9qqiKM QhP36PnvFkCKQxa0AxpTDyqBm8E/9QwXAQw4z2MIUjAfVejsibUYCqZ1tvdG82KX aDbQLYD4LJmQglCXbyMVFM02btkHxXiVL8MIgEZ7GrcrsMzdTWw343QQLiDAP6B1 b5E43rl0sx5gaM3HAKvDlZlu660XWaeuyM2D79QpGszMQEkF3Xrl8y4jNs5i+LdU qylZ/mF6Dwl+eXX9OeqWArAAxSeOMnn5 -----END CERTIFICATE-----Generated at Sat Aug 23 16:30:00 2025 by rpki-client