$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: +KhEal23ou3EcCd5gRYSoLG/g+voaKiibxR0Qf+ZHnI= Subject key identifier: E1:2D:94:0E:C2:7A:2A:E3:0A:DB:2E:18:92:E1:F8:D6:6C:4C:97:76 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 34A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 34A3 Signing time: Sun 20 Jul 2025 14:51:27 +0000 Manifest this update: Sun 20 Jul 2025 14:51:26 +0000 Manifest next update: Sun 27 Jul 2025 14:51:26 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: /wbZrfjSRrjePmaszeRVwy2ATd2a+2YwpqircR0AJfg=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: OUXfbXIv2KGUcMt1yzZeYDgmZBLfK/Afrx3klkuMb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13478 (0x34a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: Jul 20 14:51:26 2025 GMT Not After : Jul 27 14:51:26 2025 GMT Subject: CN=687d026f-baf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:fd:b0:c1:ea:91:26:5c:b4:ed:b0:04:19: 11:36:24:ba:f8:9f:ef:cc:17:2b:48:01:da:9c:80: 0e:51:4d:4a:38:a5:fa:4e:71:5a:d8:57:04:56:5c: 34:0a:21:9f:ec:a8:45:68:a3:74:5b:f6:fb:61:d1: cb:f3:1b:57:1b:7c:9c:d2:6a:6f:24:ae:37:6b:ac: 74:fc:4b:8b:97:68:da:9f:db:9c:b0:84:15:2e:3d: 75:32:94:1f:23:b4:9a:c1:a8:69:89:89:4c:41:60: ca:34:09:4a:c2:e6:f1:78:7e:8a:21:6c:c3:79:98: 54:59:f0:4b:ec:ff:5b:45:70:b6:ae:c1:73:d2:13: f8:f2:9f:fd:d0:9f:24:7f:71:df:58:b1:dd:bd:d7: f7:27:40:2a:b4:93:24:c0:04:55:c5:d0:25:b0:e0: 5e:90:04:c2:2b:3d:c2:d5:7d:46:d0:5c:38:a3:7a: 17:12:07:0f:20:94:6a:fa:c7:ce:82:70:b9:76:af: fc:71:f5:4c:7d:ea:22:31:af:e9:7a:a9:07:99:9a: bb:d5:40:74:6a:ec:23:9e:bd:2f:28:88:19:d5:ff: 73:ea:60:51:93:f2:91:03:15:25:15:4b:c3:01:10: 29:f7:7d:79:f4:36:8c:89:b1:6e:d6:0e:ee:6b:1d: 28:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2D:94:0E:C2:7A:2A:E3:0A:DB:2E:18:92:E1:F8:D6:6C:4C:97:76 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:17:51:78:33:2d:d3:d3:fd:9c:8a:c6:76:1d:dc:18:f1:8d: 94:71:be:47:c6:86:90:51:b4:8a:9c:62:b3:2d:83:ea:db:e5: 42:ce:e9:24:98:15:1e:6f:83:69:74:7a:b8:05:19:4d:e8:e6: a6:ce:5f:6c:46:44:0e:9d:03:c0:3d:ae:b8:06:7c:ca:bf:58: 5e:40:c6:f7:0b:92:9e:38:be:2e:cd:0b:0b:d0:cf:ac:a9:52: ca:c1:94:74:c5:0c:d8:32:69:42:ab:f5:95:45:b5:38:4e:71: 90:d9:3c:29:0b:fc:11:c0:15:81:d3:63:0c:f8:a5:aa:84:78: f0:a1:ab:c5:1b:58:6d:47:8a:d7:c8:47:ac:f6:74:57:fa:bb: d1:9b:a7:cb:35:f1:ea:86:09:1f:f0:46:c7:cc:c9:14:3c:c9: fc:33:39:7c:c8:91:7f:16:55:c0:2d:76:68:88:14:41:17:f5: 9b:70:37:71:85:7a:fc:88:83:8d:1d:a0:47:75:c7:c4:3d:28: 2f:15:f8:cc:75:e5:8e:87:26:a3:0f:22:10:71:05:d6:f9:5a: 02:1e:d1:fa:a7:39:15:35:99:6f:7a:06:6c:5d:a1:de:c6:17: 82:ab:06:fd:82:cf:67:3b:c0:5d:b2:cf:a7:d5:de:1e:f1:e0: 66:9b:53:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUwNzIwMTQ1MTI2WhcNMjUwNzI3MTQ1MTI2WjAYMRYwFAYD VQQDEw02ODdkMDI2Zi1iYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5X9sMHqkSZctO2wBBkRNiS6+J/vzBcrSAHanIAOUU1KOKX6TnFa2FcEVlw0 CiGf7KhFaKN0W/b7YdHL8xtXG3yc0mpvJK43a6x0/EuLl2jan9ucsIQVLj11MpQf I7SawahpiYlMQWDKNAlKwubxeH6KIWzDeZhUWfBL7P9bRXC2rsFz0hP48p/90J8k f3HfWLHdvdf3J0AqtJMkwARVxdAlsOBekATCKz3C1X1G0Fw4o3oXEgcPIJRq+sfO gnC5dq/8cfVMfeoiMa/peqkHmZq71UB0auwjnr0vKIgZ1f9z6mBRk/KRAxUlFUvD ARAp93159DaMibFu1g7uax0oFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEtlA7C eirjCtsuGJLh+NZsTJd2MB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaF1F4My3T0/2cisZ2HdwY8Y2Ucb5HxoaQUbSKnGKzLYPq2+VCzukk mBUeb4NpdHq4BRlN6Oamzl9sRkQOnQPAPa64BnzKv1heQMb3C5KeOL4uzQsL0M+s qVLKwZR0xQzYMmlCq/WVRbU4TnGQ2TwpC/wRwBWB02MM+KWqhHjwoavFG1htR4rX yEes9nRX+rvRm6fLNfHqhgkf8EbHzMkUPMn8Mzl8yJF/FlXALXZoiBRBF/WbcDdx hXr8iIONHaBHdcfEPSgvFfjMdeWOhyajDyIQcQXW+VoCHtH6pzkVNZlvegZsXaHe xheCqwb9gs9nO8Bdss+n1d4e8eBmm1P/ -----END CERTIFICATE-----Generated at Mon Jul 21 12:49:57 2025 by rpki-client