$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: XPVCH8sUllUStw6RM1tfm0WXxGZfpir/awzGDFCpGIA= Subject key identifier: 54:DC:F1:79:15:C8:70:65:14:45:F5:32:29:FB:08:CD:6D:8C:6E:54 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 2F Signing time: Sat 19 Jul 2025 07:56:46 +0000 Manifest this update: Sat 19 Jul 2025 07:56:46 +0000 Manifest next update: Sat 26 Jul 2025 07:56:46 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: iE3PHiBNirC/ACXqZ0gFNup4CohlhTL9jNvPtQ5PrfI=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Jul 19 07:56:46 2025 GMT Not After : Jul 26 07:56:46 2025 GMT Subject: CN=687b4fbe-0bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bd:75:43:32:af:bc:56:54:0f:08:bd:f9:00: 64:81:a4:c6:d8:c6:26:79:48:cd:12:e2:9b:d0:fe: 8e:d1:eb:94:a0:72:e0:46:24:27:34:cf:ba:51:3f: 3d:df:7a:8c:73:ad:f4:f6:17:ea:9d:24:f6:2e:ee: af:f3:19:86:6c:55:80:d0:f0:2e:4a:7c:a0:3a:57: 4f:8f:5a:64:6e:63:6c:f1:a2:db:57:c3:f8:87:b6: d4:46:88:53:87:56:e8:26:ac:dd:94:8c:ad:78:65: 44:11:fd:fc:ca:5b:10:84:8a:83:0b:8c:86:fe:74: f7:65:29:60:9c:53:40:d7:d0:00:df:1d:ae:f0:c2: e9:02:7e:97:69:74:c2:b9:f6:71:df:c6:75:e8:32: 20:ea:95:4e:2f:0c:3a:34:9f:91:ae:78:de:52:eb: 5d:38:11:d9:88:60:ef:b9:53:b8:07:c9:1e:07:9d: 77:fb:cd:b3:a3:a7:62:0e:72:ce:db:18:c6:a4:3b: 10:62:ac:ee:c4:cd:60:34:d0:03:ad:1c:d7:73:88: c7:b2:98:fd:32:81:e9:a8:fc:f3:e7:b5:d5:ed:8d: e7:d1:4c:dc:67:b9:07:c6:63:23:ad:e5:03:67:05: f0:92:22:2b:6b:7a:a5:76:5d:f4:bc:fd:c6:c0:9d: 6f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:F1:79:15:C8:70:65:14:45:F5:32:29:FB:08:CD:6D:8C:6E:54 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a5:d0:e2:31:7d:40:19:b0:51:3d:5c:64:1d:48:f0:79:28: b2:8a:b1:1f:a9:72:18:ca:6b:31:06:17:c3:2b:24:ed:10:98: 59:b9:e2:35:6e:46:b0:1b:ea:00:88:b0:bd:13:a3:99:cb:65: 00:96:27:c6:c1:a6:b8:3c:57:3e:d4:88:b2:b5:1a:3a:89:b6: a8:8a:4f:30:68:c8:19:ce:db:22:58:57:3d:ab:5c:4a:c3:8d: 64:75:a5:4c:8e:3a:f9:3e:b6:80:37:6f:2e:3d:c0:14:54:b0: 1b:26:c7:76:dc:11:c2:cc:d4:f6:95:c7:7f:6f:9b:85:ea:bb: cc:88:be:f8:d4:e6:07:e9:56:b7:ea:16:a7:b7:14:dc:2a:2b: c5:bc:fa:d8:d4:83:9d:6b:63:46:07:77:8f:04:d4:c8:ab:43: ac:39:31:6e:dd:ad:2e:40:dc:a7:85:61:22:c2:67:84:84:0d: a7:43:3c:0e:e6:d5:82:4b:4e:2a:f9:06:e5:d3:dc:56:fc:5a: f6:b7:b4:a2:15:b4:db:3c:de:fd:b9:a0:7a:1d:ff:e5:5f:a8: 00:d2:fc:82:6f:a7:49:39:7f:f6:af:58:6a:14:b4:db:93:42: 2e:4f:f6:00:96:8e:28:57:76:19:9c:ca:a1:a8:9d:cc:c0:1e: eb:0b:08:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA3MTkwNzU2NDZaFw0yNTA3MjYwNzU2NDZaMBgxFjAUBgNV BAMTDTY4N2I0ZmJlLTBiZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBvXVDMq+8VlQPCL35AGSBpMbYxiZ5SM0S4pvQ/o7R65SgcuBGJCc0z7pRPz3f eoxzrfT2F+qdJPYu7q/zGYZsVYDQ8C5KfKA6V0+PWmRuY2zxottXw/iHttRGiFOH VugmrN2UjK14ZUQR/fzKWxCEioMLjIb+dPdlKWCcU0DX0ADfHa7wwukCfpdpdMK5 9nHfxnXoMiDqlU4vDDo0n5GueN5S6104EdmIYO+5U7gHyR4HnXf7zbOjp2IOcs7b GMakOxBirO7EzWA00AOtHNdziMeymP0ygemo/PPntdXtjefRTNxnuQfGYyOt5QNn BfCSIitreqV2XfS8/cbAnW/FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVNzxeRXI cGUURfUyKfsIzW2MblQwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABql0OIxfUAZsFE9XGQdSPB5KLKKsR+pchjKazEGF8MrJO0QmFm54jVu RrAb6gCIsL0To5nLZQCWJ8bBprg8Vz7UiLK1GjqJtqiKTzBoyBnO2yJYVz2rXErD jWR1pUyOOvk+toA3by49wBRUsBsmx3bcEcLM1PaVx39vm4Xqu8yIvvjU5gfpVrfq Fqe3FNwqK8W8+tjUg51rY0YHd48E1MirQ6w5MW7drS5A3KeFYSLCZ4SEDadDPA7m 1YJLTir5BuXT3Fb8Wva3tKIVtNs83v25oHod/+VfqADS/IJvp0k5f/avWGoUtNuT Qi5P9gCWjihXdhmcyqGonczAHusLCIs= -----END CERTIFICATE-----Generated at Sun Jul 20 11:23:57 2025 by rpki-client