$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: RqyapCXXdMp1Uu/EuKO5SsaTsIPTTJfkRGi738Xat4A= Subject key identifier: 21:47:A9:05:5F:A6:D8:69:EB:E8:56:55:58:0E:93:8C:2B:8A:EE:FE Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B86 Signing time: Sun 20 Jul 2025 15:34:01 +0000 Manifest this update: Sun 20 Jul 2025 15:34:01 +0000 Manifest next update: Sun 27 Jul 2025 15:34:01 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: uRbkJLsiYFaHKgl5IZSpwIbXnwPB+5MenM3XbYwU6Us=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11178 (0x2baa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Jul 20 15:34:01 2025 GMT Not After : Jul 27 15:34:01 2025 GMT Subject: CN=687d0c69-f6f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f4:8d:63:c9:b4:dc:bd:d6:8c:7c:6e:fc:ce: 49:e9:df:ef:5e:64:55:b5:d4:cd:1d:ec:e9:63:b2: a1:ca:3a:54:c4:9d:99:da:a5:1c:34:b4:99:5e:35: 95:1c:e5:1c:ae:87:e9:97:bc:b0:20:fc:a3:b9:34: f8:96:7d:19:15:05:55:17:d2:5a:e6:8e:e5:a1:4a: 15:2a:ec:bb:e8:75:76:d8:60:85:04:6d:49:9b:d2: 95:58:00:43:29:63:09:47:1e:2c:cf:8c:02:db:96: bc:83:a7:71:7e:b7:22:45:1f:1a:1b:2f:70:64:23: 45:f1:91:0d:72:7f:1b:63:1b:4c:13:cc:b8:39:6c: 15:ba:da:4b:0b:5e:0c:da:28:f4:41:dc:75:e0:8a: a4:43:2d:a6:8b:d9:6e:76:13:48:f2:ba:b6:e2:03: ac:dc:a8:f9:aa:92:83:32:f5:1d:f6:93:64:ce:e8: b7:69:88:48:1c:4b:84:82:70:c0:35:ff:a9:b6:d9: 98:6d:45:b5:88:97:fd:34:9c:f5:1b:1d:91:5b:0c: 60:17:5d:77:cc:a8:97:14:81:9f:af:f7:26:76:6b: 45:20:d8:b3:f6:08:1c:a8:78:7d:03:f3:2b:5d:5e: ab:8d:8d:b3:09:c6:3d:d1:6f:88:e0:8a:ee:5b:f7: 48:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:47:A9:05:5F:A6:D8:69:EB:E8:56:55:58:0E:93:8C:2B:8A:EE:FE X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:88:be:30:2f:62:b1:47:1b:73:20:1a:06:3d:d9:04:7a:73: 2d:1e:53:46:04:d9:01:3a:27:2b:13:65:16:32:58:1d:b2:4c: 45:e9:9a:eb:1b:64:af:8d:42:7a:e2:cc:61:42:3d:58:60:fa: cf:be:9d:44:e4:73:fb:0a:4c:6d:51:af:de:b3:d3:1f:74:c5: e1:02:f9:10:62:f0:d5:87:5e:29:24:ee:ee:0b:86:03:88:23: 78:9f:12:77:5f:34:b7:2f:46:08:2f:17:35:ef:39:97:35:2d: dd:ac:96:a7:3b:d5:a1:9d:35:60:ea:b3:59:ea:76:7f:1f:32: 50:89:88:5e:ab:c1:5d:83:9d:a7:d2:6c:66:07:b1:5b:4f:25: eb:91:64:cd:07:41:eb:26:b8:f6:6c:f8:13:8a:ac:06:f5:27: 32:4f:cb:cf:80:a2:f9:3d:6d:79:10:a9:83:01:81:7d:15:5a: 08:7b:4a:91:a6:ad:81:70:97:b8:0b:52:1b:17:88:11:96:35: ac:a4:2f:2e:1f:62:54:6a:cf:33:13:41:a0:bb:6f:33:21:36: bd:b7:f9:d3:27:bc:1c:42:bb:02:b0:32:ca:20:a9:a9:57:cb: d5:76:2a:51:73:ea:cc:ae:ca:8e:07:40:aa:d4:0f:39:ed:66: 58:62:f7:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwNzIwMTUzNDAxWhcNMjUwNzI3MTUzNDAxWjAYMRYwFAYD VQQDEw02ODdkMGM2OS1mNmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/SNY8m03L3WjHxu/M5J6d/vXmRVtdTNHezpY7KhyjpUxJ2Z2qUcNLSZXjWV HOUcrofpl7ywIPyjuTT4ln0ZFQVVF9Ja5o7loUoVKuy76HV22GCFBG1Jm9KVWABD KWMJRx4sz4wC25a8g6dxfrciRR8aGy9wZCNF8ZENcn8bYxtME8y4OWwVutpLC14M 2ij0Qdx14IqkQy2mi9ludhNI8rq24gOs3Kj5qpKDMvUd9pNkzui3aYhIHEuEgnDA Nf+pttmYbUW1iJf9NJz1Gx2RWwxgF113zKiXFIGfr/cmdmtFINiz9ggcqHh9A/Mr XV6rjY2zCcY90W+I4IruW/dICQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFHqQVf pthp6+hWVVgOk4wriu7+MB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRiL4wL2KxRxtzIBoGPdkEenMtHlNGBNkBOicrE2UWMlgdskxF6Zrr G2SvjUJ64sxhQj1YYPrPvp1E5HP7CkxtUa/es9MfdMXhAvkQYvDVh14pJO7uC4YD iCN4nxJ3XzS3L0YILxc17zmXNS3drJanO9WhnTVg6rNZ6nZ/HzJQiYheq8Fdg52n 0mxmB7FbTyXrkWTNB0HrJrj2bPgTiqwG9ScyT8vPgKL5PW15EKmDAYF9FVoIe0qR pq2BcJe4C1IbF4gRljWspC8uH2JUas8zE0Ggu28zITa9t/nTJ7wcQrsCsDLKIKmp V8vVdipRc+rMrsqOB0Cq1A857WZYYvdB -----END CERTIFICATE-----Generated at Mon Jul 21 07:16:05 2025 by rpki-client