$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: 4Ah/rvP1uQFCns4iIpGQTzTDMV6/W8ttsqeq4j29IVA= Subject key identifier: 79:7B:92:B8:75:B7:2F:62:20:47:DE:8E:03:8B:50:AD:3C:0F:5B:67 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 19 Signing time: Mon 25 Aug 2025 08:36:26 +0000 Manifest this update: Mon 25 Aug 2025 08:36:25 +0000 Manifest next update: Mon 01 Sep 2025 08:36:24 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: nphNTeZSYbuZ0yGkEPi1U6m5enkQobOQK9cyi/mB7RM=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 08:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Aug 25 08:36:25 2025 GMT Not After : Sep 1 08:36:24 2025 GMT Subject: CN=68ac2089-1ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c0:8e:92:ea:57:c7:5c:1e:5a:24:80:89:34: 05:21:01:1f:5a:3f:ce:48:de:83:ea:e2:8c:1a:32: 31:d3:40:08:74:9a:a7:1f:28:86:b7:59:92:9b:37: 02:ed:31:00:5c:ec:69:91:a7:85:1d:2f:18:95:66: 1b:81:09:b3:2b:27:85:d6:0b:c8:71:a3:12:1b:fe: c9:d4:3e:47:39:5c:e0:01:a0:50:90:a2:32:b9:52: c0:18:71:e5:06:dd:9b:f3:07:77:02:bc:02:e3:fc: 3b:49:c5:b2:44:4c:8f:4e:77:c5:fc:1c:de:2c:bf: ef:bd:f7:ef:e5:af:48:60:62:55:30:1e:83:a8:98: ae:dd:b7:b6:12:a1:6b:d2:d0:23:1e:f2:06:ef:e7: 05:0f:e9:ea:9a:35:fc:05:14:23:2d:71:da:38:56: 5e:55:9f:a4:18:d1:05:de:47:ca:00:40:a3:ac:21: 88:9d:70:ac:cf:6f:db:a3:95:c3:9a:ac:9d:16:4e: e6:95:76:d8:d5:90:22:d6:11:70:9a:11:d0:80:ea: 0b:9e:3f:96:53:af:1d:b4:df:2d:ab:cb:89:ef:a1: c1:66:40:42:c3:f1:78:a7:29:86:9c:00:99:e2:62: c8:0c:67:18:f9:76:af:6f:92:ac:9b:38:b2:9c:3b: ef:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7B:92:B8:75:B7:2F:62:20:47:DE:8E:03:8B:50:AD:3C:0F:5B:67 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:b6:02:c3:a1:2e:2f:b9:18:a7:de:b5:81:43:1b:9f:ab:8a: ab:3f:7e:00:d2:79:68:74:a9:ca:65:a4:1a:5b:e4:ee:3d:e3: ac:7e:5e:9d:c3:dc:55:a6:e2:2e:84:c3:77:70:4e:3b:5a:b6: 21:ba:90:50:84:98:f4:64:2f:4e:0b:36:f2:df:53:b9:92:bc: d0:36:67:24:bd:02:13:97:2f:d4:1d:22:14:41:63:f6:e6:3f: 5c:70:a6:5f:ef:11:b6:cd:49:c9:ee:ee:c1:ed:c4:90:d4:2e: d7:79:5a:ec:b8:82:4f:14:da:c9:5a:33:ec:79:a2:c6:4b:c5: 08:74:81:31:5c:12:6f:d6:4f:4b:69:32:7c:04:e6:22:72:f1: b5:5a:8c:26:91:3d:81:26:ab:50:6a:fa:3f:5c:31:3d:5c:c3: bc:fe:d9:1c:be:9a:00:78:1b:b1:0d:23:1b:be:1a:07:20:57: 66:2f:dc:79:48:83:6a:d9:03:0d:72:e5:76:b3:9c:89:48:a2: 34:2a:ac:3f:5e:db:7e:fa:5d:c7:15:a5:79:c5:1c:69:5b:bc: 5c:b4:41:a5:1a:90:72:e1:08:3f:b8:c3:e0:41:91:ea:ff:66: 97:c0:d1:63:2f:83:3e:bf:32:cd:f3:21:70:1f:ef:93:42:31: 87:31:fd:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTA4MjUwODM2MjVaFw0yNTA5MDEwODM2MjRaMBgxFjAUBgNV BAMTDTY4YWMyMDg5LTFmZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOwI6S6lfHXB5aJICJNAUhAR9aP85I3oPq4owaMjHTQAh0mqcfKIa3WZKbNwLt MQBc7GmRp4UdLxiVZhuBCbMrJ4XWC8hxoxIb/snUPkc5XOABoFCQojK5UsAYceUG 3ZvzB3cCvALj/DtJxbJETI9Od8X8HN4sv++99+/lr0hgYlUwHoOomK7dt7YSoWvS 0CMe8gbv5wUP6eqaNfwFFCMtcdo4Vl5Vn6QY0QXeR8oAQKOsIYidcKzPb9ujlcOa rJ0WTuaVdtjVkCLWEXCaEdCA6gueP5ZTrx203y2ry4nvocFmQELD8XinKYacAJni YsgMZxj5dq9vkqybOLKcO+/jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeXuSuHW3 L2IgR96OA4tQrTwPW2cwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK62AsOhLi+5GKfetYFDG5+riqs/fgDSeWh0qcplpBpb5O4946x+Xp3D 3FWm4i6Ew3dwTjtatiG6kFCEmPRkL04LNvLfU7mSvNA2ZyS9AhOXL9QdIhRBY/bm P1xwpl/vEbbNScnu7sHtxJDULtd5Wuy4gk8U2slaM+x5osZLxQh0gTFcEm/WT0tp MnwE5iJy8bVajCaRPYEmq1Bq+j9cMT1cw7z+2Ry+mgB4G7ENIxu+GgcgV2Yv3HlI g2rZAw1y5XaznIlIojQqrD9e2376XccVpXnFHGlbvFy0QaUakHLhCD+4w+BBker/ ZpfA0WMvgz6/Ms3zIXAf75NCMYcx/SM= -----END CERTIFICATE-----Generated at Mon Aug 25 20:01:28 2025 by rpki-client