$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft File: 2spjaZboGaoflR3Gb_Ka0JecBcg.mft (raw, json) Hash identifier: VZFt0oEmXQhhBdQAVHn4bWF2TIjSfUtCYHzhFgHnNVA= Subject key identifier: 29:55:5F:6F:E6:52:17:E1:B7:9C:72:EE:40:6E:97:38:14:9C:85:3B Authority key identifier: DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 Certificate issuer: /CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Certificate serial: 0C47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft Manifest number: 0C32 Signing time: Sun 20 Jul 2025 18:44:44 +0000 Manifest this update: Sun 20 Jul 2025 18:44:43 +0000 Manifest next update: Sun 27 Jul 2025 18:44:43 +0000 Files and hashes: 1: 2spjaZboGaoflR3Gb_Ka0JecBcg.crl (hash: jUyx9lNXvg2xZHBVHwdINMZGDg88jx41bBhm/ztY/LY=) 2: 15FB452EE46E11EABA2FD316C4F9AE02.roa (hash: Dj1n5Ws5ZOwUHxV0iXhdVuXnGHZDTpjS0z8ntITqHGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3143 (0xc47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E0E, serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Validity Not Before: Jul 20 18:44:43 2025 GMT Not After : Jul 27 18:44:43 2025 GMT Subject: CN=687d391b-015a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:78:31:f5:3d:15:b7:c7:a9:b3:9b:0b:b1: aa:85:48:93:59:32:61:af:c7:01:71:53:b9:45:cd: fb:65:71:98:0a:72:9c:93:e0:61:90:84:27:5c:da: 34:c7:7a:eb:6e:43:d6:a3:06:3a:2f:34:19:42:b5: b6:2d:62:96:05:14:bf:58:84:18:60:ab:1a:db:36: 77:a6:3a:54:08:e9:12:4b:f4:27:35:f6:50:7e:e6: a7:f1:fa:65:03:75:33:de:a8:b2:d2:ea:d8:d1:cd: 1f:c4:fd:9f:b3:a1:4d:b5:e2:0a:16:2d:cc:68:d0: 92:2d:3c:ef:18:af:09:81:07:e4:2e:eb:e4:35:cd: 68:40:d2:bd:d7:bf:81:6f:e4:16:f1:1d:c3:65:9a: d1:50:28:6c:01:0d:ee:83:ec:72:c4:22:30:f9:85: cd:e6:31:22:ce:d0:d5:90:c2:49:3d:59:0c:57:36: 95:99:e6:a3:50:cb:a1:7b:2a:40:9d:92:19:f0:fb: bb:6e:29:47:5b:97:c0:af:8c:47:6a:46:97:6f:68: 81:c8:ca:cd:5c:99:09:dc:a3:c2:75:93:7a:4e:11: 10:c3:de:ad:6a:f9:14:0e:46:36:7a:be:83:90:41: b6:ae:c0:d0:f9:5c:45:cd:ee:82:57:3d:35:1f:68: 4d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:55:5F:6F:E6:52:17:E1:B7:9C:72:EE:40:6E:97:38:14:9C:85:3B X509v3 Authority Key Identifier: keyid:DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:2a:0b:d1:86:28:b4:75:3b:32:af:11:d3:74:26:4b:29:48: 8f:1b:00:3f:73:69:ce:45:00:60:03:fe:9d:66:53:8f:8c:b3: a5:c8:21:a9:4f:27:b4:f1:35:c1:38:8e:31:e5:67:5a:06:24: 9d:49:a6:5b:d2:9e:1c:38:95:3a:e1:dd:7e:76:b8:4e:de:54: d8:18:53:83:7e:9b:6c:2a:c1:a6:98:77:f2:cc:b7:c0:22:7e: e9:31:3b:2b:3c:a2:35:ed:0e:a0:9f:eb:33:1b:a0:33:9a:4c: 12:80:f2:4b:bf:c3:ac:94:88:bf:21:2b:42:28:f2:e2:c3:78: 0f:fe:ff:1b:51:ae:63:b6:84:0c:bf:4e:ad:5e:57:36:ec:0a: 32:f5:8e:36:40:68:80:e6:5c:81:62:0c:dd:d0:2b:20:a2:1b: 3a:85:b4:48:c5:d4:c0:49:de:88:31:cd:60:1b:ca:4e:71:a4: 86:d4:ce:f8:b9:82:3b:d9:18:2c:f2:e9:a0:76:85:a1:4c:c4: 93:7e:f7:b0:a9:12:06:e5:e7:16:f5:7c:71:cd:25:09:de:00: a9:62:d2:bb:77:95:db:71:67:86:98:bf:a0:12:c8:0f:01:47: 92:4c:29:7d:60:89:7b:05:d0:eb:2b:88:a0:5d:30:4a:a2:07: b7:22:0a:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFMEUxMTAvBgNVBAUTKERBQ0E2MzY5OTZFODE5QUExRjk1MURDNjZGRjI5QUQw OTc5QzA1QzgwHhcNMjUwNzIwMTg0NDQzWhcNMjUwNzI3MTg0NDQzWjAYMRYwFAYD VQQDEw02ODdkMzkxYi0wMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Cd4MfU9FbfHqbObC7GqhUiTWTJhr8cBcVO5Rc37ZXGYCnKck+BhkIQnXNo0 x3rrbkPWowY6LzQZQrW2LWKWBRS/WIQYYKsa2zZ3pjpUCOkSS/QnNfZQfuan8fpl A3Uz3qiy0urY0c0fxP2fs6FNteIKFi3MaNCSLTzvGK8JgQfkLuvkNc1oQNK917+B b+QW8R3DZZrRUChsAQ3ug+xyxCIw+YXN5jEiztDVkMJJPVkMVzaVmeajUMuheypA nZIZ8Pu7bilHW5fAr4xHakaXb2iByMrNXJkJ3KPCdZN6ThEQw96tavkUDkY2er6D kEG2rsDQ+VxFze6CVz01H2hNxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClVX2/m Uhfht5xy7kBulzgUnIU7MB8GA1UdIwQYMBaAFNrKY2mW6BmqH5Udxm/ymtCXnAXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUUwRS80NzJDMzkyMjEw RUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dhb2ZsUjNHYl9LYTBKZWNC Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzcGphWmJvR2FvZmxSM0diX0thMEplY0JjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUUwRS80NzJDMzkyMjEwRUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dh b2ZsUjNHYl9LYTBKZWNCY2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqKgvRhii0dTsyrxHTdCZLKUiPGwA/c2nORQBgA/6dZlOPjLOlyCGp Tye08TXBOI4x5WdaBiSdSaZb0p4cOJU64d1+drhO3lTYGFODfptsKsGmmHfyzLfA In7pMTsrPKI17Q6gn+szG6AzmkwSgPJLv8OslIi/IStCKPLiw3gP/v8bUa5jtoQM v06tXlc27Aoy9Y42QGiA5lyBYgzd0Csgohs6hbRIxdTASd6IMc1gG8pOcaSG1M74 uYI72Rgs8umgdoWhTMSTfvewqRIG5ecW9XxxzSUJ3gCpYtK7d5XbcWeGmL+gEsgP AUeSTCl9YIl7BdDrK4igXTBKoge3IgpL -----END CERTIFICATE-----Generated at Mon Jul 21 13:24:54 2025 by rpki-client