$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: o0nwaDFE2IeXDLWNyQZfnFaRPZ+2xNCYPRvclcbD2/g= Subject key identifier: 61:29:A6:F4:3F:45:7A:37:1E:5D:72:CA:9C:5C:AD:63:2E:22:E9:DD Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 0684 Signing time: Fri 18 Jul 2025 22:38:37 +0000 Manifest this update: Fri 18 Jul 2025 22:38:37 +0000 Manifest next update: Fri 25 Jul 2025 22:38:37 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: IaYGRyXKzKHGV1QkSzivPCW8SsIJiHyBR+iKIKrrShY=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: 6WUJgqskzShx2CRmJsEzW4Lp5E25NIFa3cIFrPQTpQE=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: bchSnNZ1JAHUbuS+ZuP7bZtOW8CbMzZJlPlo9vXpT60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Jul 18 22:38:37 2025 GMT Not After : Jul 25 22:38:37 2025 GMT Subject: CN=687acced-b8a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:08:bf:91:4b:33:67:85:df:ae:30:5d:4a: 61:99:cb:59:9d:71:cf:65:13:c2:a8:67:74:b7:a0: 27:f2:0e:55:47:e1:e8:3e:a4:42:8e:8b:7d:10:4f: e3:82:42:1f:32:eb:7b:93:cf:8b:20:0b:52:a4:77: b4:7d:d6:e1:b6:ac:d4:b8:32:f3:55:a6:5e:a0:ae: ec:2d:45:4c:04:76:6b:59:6a:de:6e:a4:cb:06:c6: 78:6c:ac:f3:c6:96:c8:2b:4c:21:ca:5c:82:ea:c9: 55:a7:d3:e7:ab:b9:65:50:8b:cc:a0:52:09:fb:7f: 17:9d:dd:61:93:95:7b:9d:dd:7d:cd:ad:06:97:be: 8c:10:ce:0e:58:20:1d:a7:24:bf:1e:a7:b3:0a:85: 06:ac:97:f3:34:26:76:c4:fd:58:fe:1d:a1:ea:14: a5:c1:f0:c3:9e:7a:d1:54:d1:2f:a9:5c:10:b3:dc: 55:2a:f0:d8:33:a8:93:a1:9a:d8:17:40:2d:12:c2: 68:5e:66:c3:fd:5f:5e:5e:30:ef:75:48:81:59:86: 11:7f:46:aa:c4:ee:5d:6c:f4:68:ab:f6:f3:22:1d: 83:bd:68:c3:e9:04:88:75:21:61:68:a8:16:02:4c: d6:e9:07:7e:19:b7:e1:5c:47:1f:39:be:19:cd:a9: 87:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:29:A6:F4:3F:45:7A:37:1E:5D:72:CA:9C:5C:AD:63:2E:22:E9:DD X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:36:09:c2:34:33:22:75:6d:3c:a4:70:09:f4:e9:73:0f:c2: cf:c2:ef:d3:d6:2c:5e:b6:5e:39:53:ae:7d:af:4b:9c:e5:ab: 0c:14:e7:e0:68:7c:c7:a9:ab:53:b8:7c:d5:57:47:2d:1c:a7: 2e:d0:21:c5:d6:c3:80:0c:90:bf:0b:6d:02:81:0a:b4:43:e4: 3a:26:44:fc:36:61:15:c0:6d:12:7e:eb:12:3b:7c:22:e6:37: ae:22:d8:59:9d:11:71:6c:3b:0a:ee:2d:9a:49:dc:29:01:e3: b6:5c:8d:78:09:5b:6b:9c:a7:9a:c1:e2:6c:2a:6d:9d:85:a8: cc:64:09:03:1f:f9:fa:ca:be:4c:cd:22:d6:85:b7:7d:75:4f: 99:34:2a:f5:9f:d9:08:b6:df:5e:88:7c:f5:62:67:61:2a:0d: af:3f:12:e7:73:2b:b5:4f:d9:e8:a4:3d:bb:d5:f0:8e:0d:80: 4f:2a:d2:03:39:53:12:ce:82:fa:62:83:b1:e2:72:58:ec:d8: aa:6a:c2:73:b5:0b:74:84:2e:0f:c9:44:bb:bb:6c:3d:9c:85: 1b:d3:22:91:40:41:5f:80:8b:60:cc:7e:97:45:9c:8d:8d:29: 78:5c:d8:80:1f:75:67:1f:3a:e3:71:08:d8:f4:d6:6e:a4:01: 4a:43:9e:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUwNzE4MjIzODM3WhcNMjUwNzI1MjIzODM3WjAYMRYwFAYD VQQDEw02ODdhY2NlZC1iOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQgIv5FLM2eF364wXUphmctZnXHPZRPCqGd0t6An8g5VR+HoPqRCjot9EE/j gkIfMut7k8+LIAtSpHe0fdbhtqzUuDLzVaZeoK7sLUVMBHZrWWrebqTLBsZ4bKzz xpbIK0whylyC6slVp9Pnq7llUIvMoFIJ+38Xnd1hk5V7nd19za0Gl76MEM4OWCAd pyS/HqezCoUGrJfzNCZ2xP1Y/h2h6hSlwfDDnnrRVNEvqVwQs9xVKvDYM6iToZrY F0AtEsJoXmbD/V9eXjDvdUiBWYYRf0aqxO5dbPRoq/bzIh2DvWjD6QSIdSFhaKgW AkzW6Qd+GbfhXEcfOb4ZzamHZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEppvQ/ RXo3Hl1yypxcrWMuIundMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpNgnCNDMidW08pHAJ9OlzD8LPwu/T1ixetl45U659r0uc5asMFOfg aHzHqatTuHzVV0ctHKcu0CHF1sOADJC/C20CgQq0Q+Q6JkT8NmEVwG0SfusSO3wi 5jeuIthZnRFxbDsK7i2aSdwpAeO2XI14CVtrnKeaweJsKm2dhajMZAkDH/n6yr5M zSLWhbd9dU+ZNCr1n9kItt9eiHz1YmdhKg2vPxLncyu1T9nopD271fCODYBPKtID OVMSzoL6YoOx4nJY7NiqasJztQt0hC4PyUS7u2w9nIUb0yKRQEFfgItgzH6XRZyN jSl4XNiAH3VnHzrjcQjY9NZupAFKQ54+ -----END CERTIFICATE-----Generated at Sun Jul 20 15:15:45 2025 by rpki-client