$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: OQFC1wIc9fMahT6M2Q9UWv9SE47miIw+/botoXH0Q3Q= Subject key identifier: 95:CC:0B:31:D6:EF:1E:86:EF:CE:D9:C3:E3:B3:00:96:7E:4A:D4:E3 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 019A Signing time: Thu 03 Jul 2025 03:29:45 +0000 Manifest this update: Thu 03 Jul 2025 03:29:44 +0000 Manifest next update: Thu 10 Jul 2025 03:29:44 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: WryuFfHY2wyrXiSDd79dlCA68opLyTBOw7OvKGhsIfg=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Jul 3 03:29:44 2025 GMT Not After : Jul 10 03:29:44 2025 GMT Subject: CN=6865f928-bddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3a:20:72:c1:d9:9e:d1:6d:1b:fa:a9:d2:36: 03:3e:51:7e:7c:c8:48:69:a0:e4:67:81:70:f6:1e: ac:f3:da:25:2e:e6:18:1a:c8:a5:cc:35:b4:5a:7d: 9c:2b:02:7e:bc:97:7f:a9:30:ae:3c:14:a3:02:e3: 7e:db:9d:76:bc:29:f9:c3:01:1a:a9:a1:fa:85:b3: d5:99:a4:df:de:08:cd:ef:0a:a9:56:89:0f:f2:bf: 5b:c8:86:9f:ae:33:a7:45:97:63:c1:2d:e5:78:0c: d9:ab:e1:79:f1:05:41:7e:92:1e:4b:e7:2d:25:77: 42:95:cf:0b:c5:be:cb:dc:9e:0a:43:1e:67:a9:07: 56:43:b4:30:a8:1e:a2:83:65:f9:ab:d1:20:c1:48: 46:e5:9f:fd:44:cf:d8:de:fc:ed:81:03:89:17:94: 8c:16:7d:d9:e5:c4:6a:a1:4e:9e:3b:17:7c:3d:17: 45:58:b3:64:d5:d6:56:90:d0:0a:da:aa:7a:32:9e: 69:d9:a0:00:fb:62:e0:93:2e:b7:66:39:ae:83:90: 53:00:0e:90:6c:bf:ae:7f:5e:29:1a:ef:be:2c:bd: b2:21:bb:83:a0:2d:f0:29:a3:c4:68:c9:cf:d1:75: 22:80:83:cc:e6:24:0a:90:41:b5:67:ad:e4:06:c2: 72:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CC:0B:31:D6:EF:1E:86:EF:CE:D9:C3:E3:B3:00:96:7E:4A:D4:E3 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:d7:24:91:f4:df:a9:9a:3d:44:92:a6:7e:d6:d9:67:7f:c5: 71:a3:de:0d:68:02:42:b0:1e:57:76:f6:c7:12:26:17:bf:80: 5c:6d:41:85:4e:3e:87:83:82:70:ec:af:b6:75:47:38:5a:61: b7:53:f2:a3:98:30:f7:f2:f5:53:69:9a:14:8b:33:c5:ca:02: 9c:12:d2:14:0d:22:4e:88:58:9b:9a:4c:6b:fc:d9:5a:6d:c1: b6:61:d1:23:08:7f:33:05:80:af:e1:24:c6:22:5f:39:37:b8: 54:25:dd:be:25:57:1f:ea:95:92:b2:27:c4:44:39:49:ff:fb: 5b:8d:2d:9d:71:76:8e:2f:cf:fb:7c:1e:e5:f3:fa:d6:16:96: 66:07:3b:03:9a:99:6e:91:d6:1a:9c:31:a3:9e:ea:55:7d:1a: 6d:c4:23:4f:9e:dd:ac:e9:95:32:5f:4d:09:7b:ff:22:e8:a0: c6:f7:73:2f:6e:60:78:fa:09:fe:c8:03:30:21:a3:1c:14:f5: cc:69:9b:e5:04:16:f9:83:41:30:99:41:00:4b:7c:7a:7c:3a: 34:cc:94:09:b0:9e:41:ef:8b:52:8e:17:d8:1e:91:61:ee:de: a0:24:38:6f:d1:ab:76:0a:b2:a3:db:d4:5f:06:6d:e9:84:24: 5a:dc:ac:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNzAzMDMyOTQ0WhcNMjUwNzEwMDMyOTQ0WjAYMRYwFAYD VQQDEw02ODY1ZjkyOC1iZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTogcsHZntFtG/qp0jYDPlF+fMhIaaDkZ4Fw9h6s89olLuYYGsilzDW0Wn2c KwJ+vJd/qTCuPBSjAuN+2512vCn5wwEaqaH6hbPVmaTf3gjN7wqpVokP8r9byIaf rjOnRZdjwS3leAzZq+F58QVBfpIeS+ctJXdClc8Lxb7L3J4KQx5nqQdWQ7QwqB6i g2X5q9EgwUhG5Z/9RM/Y3vztgQOJF5SMFn3Z5cRqoU6eOxd8PRdFWLNk1dZWkNAK 2qp6Mp5p2aAA+2Lgky63Zjmug5BTAA6QbL+uf14pGu++LL2yIbuDoC3wKaPEaMnP 0XUigIPM5iQKkEG1Z63kBsJyAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXMCzHW 7x6G787Zw+OzAJZ+StTjMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC81ySR9N+pmj1EkqZ+1tlnf8Vxo94NaAJCsB5XdvbHEiYXv4BcbUGF Tj6Hg4Jw7K+2dUc4WmG3U/KjmDD38vVTaZoUizPFygKcEtIUDSJOiFibmkxr/Nla bcG2YdEjCH8zBYCv4STGIl85N7hUJd2+JVcf6pWSsifERDlJ//tbjS2dcXaOL8/7 fB7l8/rWFpZmBzsDmplukdYanDGjnupVfRptxCNPnt2s6ZUyX00Je/8i6KDG93Mv bmB4+gn+yAMwIaMcFPXMaZvlBBb5g0EwmUEAS3x6fDo0zJQJsJ5B74tSjhfYHpFh 7t6gJDhv0at2CrKj29RfBm3phCRa3KyU -----END CERTIFICATE-----Generated at Fri Jul 4 13:35:51 2025 by rpki-client