$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: zSVW43yZVtGJMNCFtP73ZPpR2c7oHo5A2prgKJfwFuU= Subject key identifier: 05:50:DF:2B:0F:9D:A2:60:38:EF:D8:6B:89:28:E9:9A:31:62:CE:7B Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01A5 Signing time: Fri 25 Jul 2025 03:27:57 +0000 Manifest this update: Fri 25 Jul 2025 03:27:57 +0000 Manifest next update: Fri 01 Aug 2025 03:27:57 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: 3Gw8bUeuZWQULogfWbboRKsY14aWVoSJl4B1K0p01JE=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 03:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Jul 25 03:27:57 2025 GMT Not After : Aug 1 03:27:57 2025 GMT Subject: CN=6882f9bd-3b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5a:61:66:6e:ff:1b:e3:5f:59:79:bb:f9:70: c5:0b:5c:0e:b8:1e:9c:15:fe:5b:5a:44:28:3b:2c: a1:1c:1a:92:ac:75:df:03:5b:81:eb:e4:a3:fa:f4: a5:83:c6:05:86:4e:89:38:ed:88:4f:da:af:1c:6d: 32:47:a7:5b:2c:9c:98:ce:9e:61:74:89:c8:a0:4b: 2b:4f:d9:8d:6d:9c:29:50:9e:15:49:4b:5e:94:3d: 23:7a:ff:40:70:e1:bf:10:58:f4:70:42:5d:4a:c3: ef:df:c7:f3:f0:fa:38:be:f1:ab:46:36:98:ee:ca: 5a:e4:e0:e1:82:50:b9:b1:f7:5b:61:1b:a1:b4:d4: 91:d2:33:4d:39:af:f8:33:64:02:a5:04:c7:ca:95: 5d:cc:5f:d6:d4:1d:63:b8:7b:7c:13:c8:61:6b:6c: 6f:44:ba:21:53:de:ca:48:da:1e:ed:88:ac:e3:95: dc:c4:bf:92:b9:69:52:cd:42:0d:69:22:d7:2b:7f: 27:5f:86:8e:91:f4:7b:01:f8:d0:b6:4f:6f:4f:73: 50:10:5b:87:e7:a1:d3:c8:76:e1:b3:e7:d4:a1:9e: 1e:e2:41:41:64:b1:23:e8:90:22:ff:06:17:90:9d: 85:6e:53:76:ac:96:ce:dc:39:de:fc:d3:10:98:b4: 03:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:50:DF:2B:0F:9D:A2:60:38:EF:D8:6B:89:28:E9:9A:31:62:CE:7B X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:64:41:bf:c1:39:59:98:7e:f5:59:d0:3d:91:c1:0a:64:f9: 40:5b:04:d2:fd:d4:14:1d:e7:3c:be:19:b9:5c:4e:2c:44:d2: 5e:34:99:4d:0d:06:31:81:68:33:a2:bb:ff:5b:30:f6:d2:0f: c6:05:92:83:e2:7f:57:34:05:0e:30:8b:bc:37:33:7d:b1:78: 37:48:3b:b2:d2:10:8b:e7:2f:3e:fa:ad:c1:bb:1e:8b:6d:96: 5e:90:d5:3f:fc:c0:46:77:b2:82:c4:a0:f6:5b:92:ab:d5:43: d0:c0:ab:71:89:c4:7a:47:2b:df:97:8e:c2:27:61:e1:a6:56: 2c:65:4f:1f:0b:55:14:5e:61:bd:d5:76:c5:e2:a6:55:b6:fb: 52:64:0f:bc:60:04:c9:e6:dd:dc:25:4e:89:b0:ab:9f:ba:ce: 17:7c:38:75:4d:c2:77:84:ad:64:9b:74:41:29:c2:41:91:e5: f8:7c:8a:57:6b:08:d0:63:6a:29:d2:03:18:1d:38:c3:4f:95: 76:b7:1a:36:7f:db:d7:7d:5e:90:3b:b7:df:19:7b:fd:00:b4: 3b:df:9b:5b:bb:ee:90:41:06:bb:71:df:0a:10:f9:36:13:e5: db:71:e5:94:58:37:bc:36:6c:3e:52:5d:47:9f:be:6c:b0:ba: 6e:b8:71:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNzI1MDMyNzU3WhcNMjUwODAxMDMyNzU3WjAYMRYwFAYD VQQDEw02ODgyZjliZC0zYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFphZm7/G+NfWXm7+XDFC1wOuB6cFf5bWkQoOyyhHBqSrHXfA1uB6+Sj+vSl g8YFhk6JOO2IT9qvHG0yR6dbLJyYzp5hdInIoEsrT9mNbZwpUJ4VSUtelD0jev9A cOG/EFj0cEJdSsPv38fz8Po4vvGrRjaY7spa5ODhglC5sfdbYRuhtNSR0jNNOa/4 M2QCpQTHypVdzF/W1B1juHt8E8hha2xvRLohU97KSNoe7Yis45XcxL+SuWlSzUIN aSLXK38nX4aOkfR7AfjQtk9vT3NQEFuH56HTyHbhs+fUoZ4e4kFBZLEj6JAi/wYX kJ2FblN2rJbO3Dne/NMQmLQDZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVQ3ysP naJgOO/Ya4ko6ZoxYs57MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJZEG/wTlZmH71WdA9kcEKZPlAWwTS/dQUHec8vhm5XE4sRNJeNJlN DQYxgWgzorv/WzD20g/GBZKD4n9XNAUOMIu8NzN9sXg3SDuy0hCL5y8++q3Bux6L bZZekNU//MBGd7KCxKD2W5Kr1UPQwKtxicR6Ryvfl47CJ2HhplYsZU8fC1UUXmG9 1XbF4qZVtvtSZA+8YATJ5t3cJU6JsKufus4XfDh1TcJ3hK1km3RBKcJBkeX4fIpX awjQY2op0gMYHTjDT5V2txo2f9vXfV6QO7ffGXv9ALQ735tbu+6QQQa7cd8KEPk2 E+XbceWUWDe8Nmw+Ul1Hn75ssLpuuHHo -----END CERTIFICATE-----Generated at Sat Jul 26 01:52:45 2025 by rpki-client