$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: mp/6TFxiPOT+VaoIvKa+LCYzwgVeTNEVk9g8v3jT/PI= Subject key identifier: DA:14:B7:FB:D9:B3:A2:7A:2E:17:82:16:85:9F:BC:B4:D8:FB:39:15 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05E3 Signing time: Sun 20 Jul 2025 23:13:00 +0000 Manifest this update: Sun 20 Jul 2025 23:12:59 +0000 Manifest next update: Sun 27 Jul 2025 23:12:59 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: h26AUXpQCinb5LQHJFe/DQtY0tQhgS+fDMWlpTsLUz0=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: sZRPuyEc2obrRDqUdXXwQYNHmHFhne08Q0DhhbP/fKU=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: MDnYgEyFU+utF3gs7xXTuOcFSWGPIOUc2y3lsVq3q/M=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: dvapbCE1SRB6K7VYhEw7q7mKxSFd63MycN7TcRuRtp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Jul 20 23:12:59 2025 GMT Not After : Jul 27 23:12:59 2025 GMT Subject: CN=687d77fb-a9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:92:cc:4e:78:55:1c:1a:4f:61:f1:b3:db: 18:eb:c9:3e:d9:5f:e4:c8:8a:27:ab:f5:0f:b2:bb: d2:26:dd:12:98:65:54:69:e5:0b:2d:4b:11:db:75: 68:3a:98:d4:04:c9:5b:a3:61:d6:e5:3e:75:9b:c1: a6:83:b6:5c:12:71:39:f2:3d:7f:85:ac:7e:b7:6f: ce:7f:6a:6f:8a:77:04:1b:a3:91:98:56:cf:cf:13: 40:3a:f0:fa:98:d1:80:89:d7:21:2a:49:64:11:43: f2:91:74:9a:6b:31:13:53:f0:1f:84:b9:86:71:98: cd:4e:95:73:80:d0:dc:3d:fb:09:85:d6:48:ac:ae: a3:99:a2:50:61:df:ec:5a:b9:81:28:a4:91:55:6f: 0b:04:c8:8b:2b:69:ab:f8:5c:54:32:37:db:2c:db: f3:bb:4a:16:71:66:51:fd:c6:5f:03:aa:2c:8d:da: 24:2c:c6:36:fe:60:9d:3a:9e:aa:65:e3:1d:4c:1a: 7f:d7:ba:f4:9f:1f:78:43:c8:67:ef:df:61:6a:74: 99:1b:23:b6:fd:18:34:3f:31:33:c0:f4:34:25:f2: 06:18:e4:4b:c0:1e:21:2e:60:65:0c:71:c0:9f:49: fa:2b:11:32:a2:03:d2:4c:16:48:f4:8b:81:7a:75: e5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:14:B7:FB:D9:B3:A2:7A:2E:17:82:16:85:9F:BC:B4:D8:FB:39:15 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f1:21:73:03:81:40:46:15:29:92:92:b5:04:66:86:6d:35: 1f:c4:ce:23:5f:5a:09:a8:79:3c:6d:47:f5:e4:f4:a8:94:d8: 56:c5:6f:f8:23:cf:d6:d2:8a:b7:c0:3b:d3:8d:7e:76:85:65: f3:d4:f5:25:4b:0d:34:bd:a5:e9:1f:a4:b3:f4:86:b4:ac:d7: bd:a0:0f:2a:d2:fe:86:74:fa:61:ec:44:4e:e7:f4:5e:4d:09: c9:51:50:0e:0f:42:03:4f:a6:51:ad:2b:3d:b9:74:ee:22:62: 02:66:37:28:c4:8c:a8:81:67:00:b1:19:c0:3f:a8:6e:91:6f: 97:a9:1a:25:d0:27:ce:88:80:e1:0a:99:c8:a0:1c:e2:40:0e: 4c:7d:27:a9:39:6f:ce:2c:fa:73:57:f6:93:21:b6:4f:57:61: 14:ad:dc:14:c5:06:be:e0:68:8a:08:17:67:f2:00:91:fe:58: 2c:ce:13:f2:90:49:2e:ae:55:bd:e5:b8:5b:15:5f:fd:19:b7: d4:52:b1:a8:1a:17:64:3d:97:eb:cd:d5:8e:13:6a:33:b9:83: 15:a0:7e:b9:d4:13:2d:14:c2:02:48:f6:d0:93:fb:93:be:d6: 64:6f:75:11:7e:aa:c7:08:7e:07:6e:7a:ed:d3:bb:fd:8a:7a: 6c:14:b6:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNzIwMjMxMjU5WhcNMjUwNzI3MjMxMjU5WjAYMRYwFAYD VQQDEw02ODdkNzdmYi1hOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+KSzE54VRwaT2Hxs9sY68k+2V/kyIonq/UPsrvSJt0SmGVUaeULLUsR23Vo OpjUBMlbo2HW5T51m8Gmg7ZcEnE58j1/hax+t2/Of2pvincEG6ORmFbPzxNAOvD6 mNGAidchKklkEUPykXSaazETU/AfhLmGcZjNTpVzgNDcPfsJhdZIrK6jmaJQYd/s WrmBKKSRVW8LBMiLK2mr+FxUMjfbLNvzu0oWcWZR/cZfA6osjdokLMY2/mCdOp6q ZeMdTBp/17r0nx94Q8hn799hanSZGyO2/Rg0PzEzwPQ0JfIGGORLwB4hLmBlDHHA n0n6KxEyogPSTBZI9IuBenXl8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoUt/vZ s6J6LheCFoWfvLTY+zkVMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN8SFzA4FARhUpkpK1BGaGbTUfxM4jX1oJqHk8bUf15PSolNhWxW/4 I8/W0oq3wDvTjX52hWXz1PUlSw00vaXpH6Sz9Ia0rNe9oA8q0v6GdPph7ERO5/Re TQnJUVAOD0IDT6ZRrSs9uXTuImICZjcoxIyogWcAsRnAP6hukW+XqRol0CfOiIDh CpnIoBziQA5MfSepOW/OLPpzV/aTIbZPV2EUrdwUxQa+4GiKCBdn8gCR/lgszhPy kEkurlW95bhbFV/9GbfUUrGoGhdkPZfrzdWOE2ozuYMVoH651BMtFMICSPbQk/uT vtZkb3URfqrHCH4Hbnrt07v9inpsFLZr -----END CERTIFICATE-----Generated at Tue Jul 22 00:00:23 2025 by rpki-client