$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 3CBqM6b7YwqoeQl2z3SdnlY4d6KxrME7ADFPDr6u+mk= Subject key identifier: CB:BD:20:14:C7:6C:26:A0:4C:5C:C0:1C:60:3E:E3:11:7A:56:4A:E5 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: E9 Signing time: Sat 19 Jul 2025 05:35:46 +0000 Manifest this update: Sat 19 Jul 2025 05:35:46 +0000 Manifest next update: Sat 26 Jul 2025 05:35:46 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: 0yN+wFQp7DAMc2v90OloE2XpjpAi2CidXwx9ZsEo/aQ=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Jul 19 05:35:46 2025 GMT Not After : Jul 26 05:35:46 2025 GMT Subject: CN=687b2eb2-a062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:16:32:a0:ac:13:37:c7:a9:cf:07:4d:be: 88:c6:81:bc:b8:0c:14:30:60:37:83:32:35:cb:93: b7:88:ac:18:e8:40:2e:8d:ed:28:2e:1a:06:68:10: d9:e5:32:99:09:4f:da:8f:48:a6:be:08:e2:43:53: 6a:2d:f5:dc:d9:ae:c9:8d:a2:60:11:95:c2:91:71: 16:a7:42:f5:56:c9:a0:6b:0e:3e:67:59:42:cb:ae: 95:98:f4:c3:53:79:18:ed:af:13:88:99:cd:d6:14: 12:e8:aa:a8:8b:2a:f3:65:a8:1e:79:e7:af:b8:1c: cd:c2:4f:68:78:37:e8:01:50:05:74:27:e5:4d:06: db:f3:e4:c1:04:0f:1e:b5:7b:a9:fd:38:4e:40:16: d8:35:97:7b:70:4b:f6:76:34:59:8c:9d:d3:63:06: c9:35:bf:25:f0:d6:76:75:a8:4c:a2:d3:a8:56:02: 61:0f:8e:c0:af:ba:4a:35:ab:e9:74:29:17:97:8b: 99:57:13:25:9d:27:80:95:7c:a8:43:e0:5a:1d:12: 68:bb:27:c4:a2:19:6e:4a:e4:ed:e4:5a:11:c2:d8: d4:f8:03:61:0a:ca:4b:81:9e:7a:2e:29:4d:e7:92: 56:28:a7:04:3f:3b:10:51:93:cf:ce:08:15:b4:e9: c0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:BD:20:14:C7:6C:26:A0:4C:5C:C0:1C:60:3E:E3:11:7A:56:4A:E5 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d6:33:68:8a:0b:e4:fc:ef:f9:28:1c:68:a3:98:5a:d9:e8: 0d:af:4a:75:19:cd:19:75:ea:bb:8d:3d:c2:8e:4b:49:fa:87: a6:0b:8d:a7:5b:f7:25:14:65:42:80:74:58:52:ae:fc:5d:d0: ae:f5:ba:9e:22:a4:81:e9:8e:91:85:2d:da:b9:24:4a:d3:b8: 74:53:24:18:01:3e:64:7c:0e:9a:cb:2a:5c:ff:00:26:68:b7: 8b:ae:b7:67:69:b5:45:a6:25:2c:88:35:da:45:2b:f4:4a:04: 47:f5:9f:a3:80:5c:2f:a4:fe:4f:3a:49:74:49:e4:00:f9:95: 9b:ee:16:23:13:90:81:99:4e:cf:d2:14:3b:40:6c:bb:59:76: 72:fe:ad:60:ec:43:d3:e1:5f:09:74:fe:57:56:53:65:93:e9: 9b:84:5a:6c:de:45:72:f8:fb:61:dc:67:c1:02:4a:12:a6:d8: 98:be:8f:96:49:3e:d6:10:68:80:2f:a1:9f:59:9b:08:b8:8d: 66:18:07:8a:8d:4a:48:98:4d:4b:63:77:c0:5b:64:52:f3:f8: 79:49:4f:58:02:f8:8c:94:16:4e:83:cf:11:e2:70:cf:e7:e3: 72:e2:75:0f:ec:bb:3e:9d:79:33:30:70:97:fb:d2:a9:4a:dd: b7:a6:88:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNzE5MDUzNTQ2WhcNMjUwNzI2MDUzNTQ2WjAYMRYwFAYD VQQDEw02ODdiMmViMi1hMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6UWMqCsEzfHqc8HTb6IxoG8uAwUMGA3gzI1y5O3iKwY6EAuje0oLhoGaBDZ 5TKZCU/aj0imvgjiQ1NqLfXc2a7JjaJgEZXCkXEWp0L1Vsmgaw4+Z1lCy66VmPTD U3kY7a8TiJnN1hQS6KqoiyrzZageeeevuBzNwk9oeDfoAVAFdCflTQbb8+TBBA8e tXup/ThOQBbYNZd7cEv2djRZjJ3TYwbJNb8l8NZ2dahMotOoVgJhD47Ar7pKNavp dCkXl4uZVxMlnSeAlXyoQ+BaHRJouyfEohluSuTt5FoRwtjU+ANhCspLgZ56LilN 55JWKKcEPzsQUZPPzggVtOnA6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMu9IBTH bCagTFzAHGA+4xF6VkrlMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG1jNoigvk/O/5KBxoo5ha2egNr0p1Gc0Zdeq7jT3CjktJ+oemC42n W/clFGVCgHRYUq78XdCu9bqeIqSB6Y6RhS3auSRK07h0UyQYAT5kfA6ayypc/wAm aLeLrrdnabVFpiUsiDXaRSv0SgRH9Z+jgFwvpP5POkl0SeQA+ZWb7hYjE5CBmU7P 0hQ7QGy7WXZy/q1g7EPT4V8JdP5XVlNlk+mbhFps3kVy+Pth3GfBAkoSptiYvo+W ST7WEGiAL6GfWZsIuI1mGAeKjUpImE1LY3fAW2RS8/h5SU9YAviMlBZOg88R4nDP 5+Ny4nUP7Ls+nXkzMHCX+9KpSt23poga -----END CERTIFICATE-----Generated at Sun Jul 20 21:06:04 2025 by rpki-client