$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: r8A3ZXAf+phMsG9ypAIC3lkVPfGLewDb85/FWD8udow= Subject key identifier: F7:D0:8F:B6:00:76:13:62:5F:9F:C8:FF:71:CB:CF:69:6B:38:AF:A0 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 15F2 Signing time: Sun 20 Jul 2025 16:47:19 +0000 Manifest this update: Sun 20 Jul 2025 16:47:19 +0000 Manifest next update: Sun 27 Jul 2025 16:47:19 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: QgTLv0LiV0Wfl1z7DkjlxjxNqh30EDWnUl5X7oe9dOM=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: IzneJg8uANhMNifeTA7mpjTNJJeW/3cdEs9nqqZnnZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5635 (0x1603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA, serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: Jul 20 16:47:19 2025 GMT Not After : Jul 27 16:47:19 2025 GMT Subject: CN=687d1d97-cd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a0:ab:e0:70:35:5e:37:cb:cd:23:fd:48:0a: 15:e7:bf:07:1d:96:d7:67:8b:01:fc:e8:9d:30:76: 11:64:b7:46:c8:98:de:4a:91:7f:bb:56:b3:65:75: 6e:48:87:24:b5:6d:c8:88:1d:f6:b1:55:0f:26:f1: cf:6d:5b:4a:7a:8d:fd:c6:37:85:c8:4f:f2:1e:b1: 13:49:96:db:d7:27:70:15:e9:f9:21:b8:5f:33:d0: 92:78:07:12:dc:6f:be:60:74:ea:94:2f:37:f4:5a: a1:db:8b:68:a0:23:9b:14:ad:eb:8d:c5:8c:c0:45: c1:63:40:aa:32:e9:83:04:ab:43:b8:f1:4e:28:b6: 2c:c4:f7:5a:ca:82:dc:be:82:24:e0:81:e2:00:2d: e0:00:eb:af:0e:3c:3e:be:b2:27:03:37:00:8d:70: aa:bf:e4:a0:85:7d:eb:e2:95:c5:c9:6b:45:9b:ee: 20:16:92:c9:af:d2:75:51:9e:f6:a9:74:60:5d:6a: 9c:6a:22:58:d4:cc:b3:29:08:b2:fc:ed:a6:48:09: 07:c8:eb:96:95:53:4a:6c:5c:e4:1a:05:f0:19:54: 58:b6:14:9b:93:25:c7:dd:a8:42:91:16:cd:4d:4f: d3:b2:38:62:15:40:43:e5:75:6a:c3:71:b9:a7:6c: 34:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D0:8F:B6:00:76:13:62:5F:9F:C8:FF:71:CB:CF:69:6B:38:AF:A0 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:41:91:d1:2e:53:85:32:0c:18:02:0d:92:38:88:d2:9e:4b: c4:9b:1f:f7:90:40:78:d4:91:56:8f:51:bb:bf:21:19:9d:e8: c0:e1:10:b5:26:fd:dd:37:db:21:62:3b:9a:09:2d:07:d5:cf: 53:aa:da:a4:fc:d8:41:c0:47:98:7b:25:8e:99:3b:fe:d2:8c: e5:c4:b3:8f:44:fe:5e:f9:3b:9e:c6:26:ae:cc:88:14:0a:6c: ea:05:d2:ca:25:5c:83:56:11:02:33:1b:c5:48:bc:99:d8:bc: c4:e5:32:69:cc:4c:ef:8e:a9:73:c2:54:38:e2:ff:55:28:92: 24:fe:51:cf:ee:64:98:fc:f1:0a:ea:e4:d0:94:d2:55:1b:99: aa:38:02:4b:c8:c3:5a:76:fb:52:6d:16:02:43:c7:bc:e9:d9: e8:0f:b7:64:69:0e:75:d7:d4:eb:d4:27:70:c6:69:42:38:8e: f3:05:b7:9c:36:27:fc:bf:76:11:6c:b9:9d:8a:41:35:4e:65: 0a:8f:d3:cc:74:23:0e:91:af:3f:f1:44:fa:5f:03:93:79:42: 92:da:1a:49:0d:2d:f4:0b:1c:85:32:4e:b8:94:c0:b6:13:7e: 4a:d4:9f:cb:85:5a:d6:6a:14:b8:d9:16:a5:34:d9:37:af:7a: 37:d3:76:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjUwNzIwMTY0NzE5WhcNMjUwNzI3MTY0NzE5WjAYMRYwFAYD VQQDEw02ODdkMWQ5Ny1jZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36Cr4HA1XjfLzSP9SAoV578HHZbXZ4sB/OidMHYRZLdGyJjeSpF/u1azZXVu SIcktW3IiB32sVUPJvHPbVtKeo39xjeFyE/yHrETSZbb1ydwFen5IbhfM9CSeAcS 3G++YHTqlC839Fqh24tooCObFK3rjcWMwEXBY0CqMumDBKtDuPFOKLYsxPdayoLc voIk4IHiAC3gAOuvDjw+vrInAzcAjXCqv+SghX3r4pXFyWtFm+4gFpLJr9J1UZ72 qXRgXWqcaiJY1MyzKQiy/O2mSAkHyOuWlVNKbFzkGgXwGVRYthSbkyXH3ahCkRbN TU/TsjhiFUBD5XVqw3G5p2w0qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfQj7YA dhNiX5/I/3HLz2lrOK+gMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvQZHRLlOFMgwYAg2SOIjSnkvEmx/3kEB41JFWj1G7vyEZnejA4RC1 Jv3dN9shYjuaCS0H1c9Tqtqk/NhBwEeYeyWOmTv+0ozlxLOPRP5e+TuexiauzIgU CmzqBdLKJVyDVhECMxvFSLyZ2LzE5TJpzEzvjqlzwlQ44v9VKJIk/lHP7mSY/PEK 6uTQlNJVG5mqOAJLyMNadvtSbRYCQ8e86dnoD7dkaQ5119Tr1CdwxmlCOI7zBbec Nif8v3YRbLmdikE1TmUKj9PMdCMOka8/8UT6XwOTeUKS2hpJDS30CxyFMk64lMC2 E35K1J/LhVrWahS42RalNNk3r3o303bf -----END CERTIFICATE-----Generated at Mon Jul 21 06:55:15 2025 by rpki-client