$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: ZvIhFvccMHn2JNBNJtRGs1AgI1xiyp7qlL26qhdyA5c= Subject key identifier: 9B:E9:82:A8:4B:58:4E:24:19:1D:F6:3D:20:01:2E:5C:A7:31:EB:AE Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13D9 Signing time: Mon 28 Jul 2025 15:34:24 +0000 Manifest this update: Mon 28 Jul 2025 15:34:24 +0000 Manifest next update: Mon 04 Aug 2025 15:34:24 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: covVsloYO6SAtUjl+RjTZe+ngCqYYgTTBElK1YNiqAA=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 Aug 2025 15:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5110 (0x13f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Jul 28 15:34:24 2025 GMT Not After : Aug 4 15:34:24 2025 GMT Subject: CN=68879880-ab42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:40:01:93:0a:5d:10:8d:95:f7:fd:72:b3:88: 22:fa:4b:4f:d5:1b:f2:1d:06:d5:bd:69:16:b6:a2: 04:46:da:da:c7:57:b8:de:79:68:b5:a5:de:bb:76: b4:5d:ad:e5:e7:33:e9:55:37:32:25:9f:77:e4:b9: b5:82:e5:53:50:3d:1f:6b:20:46:ba:31:82:b5:d2: c4:81:ff:d0:5a:c2:98:00:2e:25:28:76:11:b5:fb: 23:7d:63:60:4d:ce:19:c7:2b:35:cb:9b:23:11:16: 43:eb:be:92:66:e5:6e:21:b4:a0:06:09:80:dd:27: 4a:3e:03:5a:41:95:77:d3:8d:60:bb:fc:4f:b7:b2: 0d:0c:60:08:8b:d9:f3:fa:8e:1b:39:6d:e2:c4:fc: 94:65:9c:02:55:76:dd:af:1c:2e:6c:32:81:83:00: 3e:28:dd:dd:8f:b0:2c:5e:7c:0c:37:ff:a5:74:15: 68:09:20:f7:0e:2a:cd:45:53:2e:a4:46:70:db:32: 5a:66:87:e4:7e:c9:fc:14:b1:68:77:7a:80:ba:0c: 50:77:f7:12:fe:58:d8:a4:b2:78:c3:18:7d:c1:2e: b2:58:67:e4:c1:b3:c7:02:8e:5c:f5:83:f6:e9:77: de:5a:22:3a:b0:84:b2:77:a9:df:6a:36:91:bb:35: ce:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E9:82:A8:4B:58:4E:24:19:1D:F6:3D:20:01:2E:5C:A7:31:EB:AE X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:44:f8:62:6f:0e:43:f2:41:38:ad:7e:f2:b6:15:c6:eb:c1: 65:d3:85:93:2b:c4:55:01:c8:a0:35:fd:ad:e3:38:c2:bb:06: d9:3d:e0:d7:ed:a0:78:9d:1c:f8:00:2c:bd:3b:5d:93:0e:f3: 41:97:58:bf:dc:d6:4c:e7:4c:5c:11:12:15:de:c4:d6:df:7f: 2a:b0:c7:b1:aa:da:0e:ce:1b:f2:c1:ab:ce:19:81:51:2d:62: e6:1b:1d:83:eb:fe:b8:e1:f7:6c:9e:41:14:e9:9b:3b:55:b1: 52:ab:41:fd:71:69:aa:b3:2b:75:11:4b:95:9d:14:5e:85:62: fe:5f:cb:da:a3:e1:a2:6a:c3:3a:0a:0a:2c:14:05:fd:3e:94: 90:eb:36:08:6e:65:7e:0c:02:35:be:af:77:29:f6:13:57:fe: 14:d5:48:6e:e0:6d:bb:e9:b5:75:5a:95:66:fc:74:b9:b7:d2: c0:da:20:2f:86:02:a0:bc:4e:54:7f:ef:51:2b:ff:d6:7d:2b: 83:41:8f:e7:87:8c:e8:e5:36:74:8f:61:ef:99:d7:de:04:dc: 32:03:ef:10:d9:1d:3e:3d:ee:df:cb:ab:86:dd:6b:cc:d4:83: 1c:23:ae:aa:4b:b5:20:85:58:3c:a0:3a:09:2f:21:ce:50:d6: 39:5c:70:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNzI4MTUzNDI0WhcNMjUwODA0MTUzNDI0WjAYMRYwFAYD VQQDEw02ODg3OTg4MC1hYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUABkwpdEI2V9/1ys4gi+ktP1RvyHQbVvWkWtqIERtrax1e43nlotaXeu3a0 Xa3l5zPpVTcyJZ935Lm1guVTUD0fayBGujGCtdLEgf/QWsKYAC4lKHYRtfsjfWNg Tc4Zxys1y5sjERZD676SZuVuIbSgBgmA3SdKPgNaQZV3041gu/xPt7INDGAIi9nz +o4bOW3ixPyUZZwCVXbdrxwubDKBgwA+KN3dj7AsXnwMN/+ldBVoCSD3DirNRVMu pEZw2zJaZofkfsn8FLFod3qAugxQd/cS/ljYpLJ4wxh9wS6yWGfkwbPHAo5c9YP2 6XfeWiI6sISyd6nfajaRuzXO3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvpgqhL WE4kGR32PSABLlynMeuuMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcRPhibw5D8kE4rX7ythXG68Fl04WTK8RVAcigNf2t4zjCuwbZPeDX 7aB4nRz4ACy9O12TDvNBl1i/3NZM50xcERIV3sTW338qsMexqtoOzhvywavOGYFR LWLmGx2D6/644fdsnkEU6Zs7VbFSq0H9cWmqsyt1EUuVnRRehWL+X8vao+GiasM6 CgosFAX9PpSQ6zYIbmV+DAI1vq93KfYTV/4U1Uhu4G276bV1WpVm/HS5t9LA2iAv hgKgvE5Uf+9RK//WfSuDQY/nh4zo5TZ0j2HvmdfeBNwyA+8Q2R0+Pe7fy6uG3WvM 1IMcI66qS7UghVg8oDoJLyHOUNY5XHCd -----END CERTIFICATE-----Generated at Tue Jul 29 07:50:36 2025 by rpki-client