$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: KdtkXilIV1wghJAOpVj8/prdg6r/PE+F/fSxEh2kSy4= Subject key identifier: C4:5F:2C:59:2D:E4:E5:E1:92:0B:51:02:ED:A4:63:25:AF:7E:E5:67 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 34BB Signing time: Thu 04 Sep 2025 14:51:52 +0000 Manifest this update: Thu 04 Sep 2025 14:51:51 +0000 Manifest next update: Thu 11 Sep 2025 14:51:51 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: 8IZW56B6ftZCSAja1SaTZ5S4pMiUas2uYgn5oCEf2/s=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: OUXfbXIv2KGUcMt1yzZeYDgmZBLfK/Afrx3klkuMb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: Sep 4 14:51:51 2025 GMT Not After : Sep 11 14:51:51 2025 GMT Subject: CN=68b9a788-b8da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4e:f2:cb:47:a9:c7:de:ef:8f:26:28:d7:1e: 9a:95:ea:fe:f2:4e:db:89:11:c8:48:22:dc:1a:5c: 11:3f:43:ca:a3:34:0e:66:c7:de:ad:e6:b4:3f:64: 51:d8:64:9b:04:80:7d:f1:05:ee:a6:42:a3:20:3a: c7:2f:7e:ff:21:e0:c0:d3:bf:5a:15:7d:d5:22:a2: 8b:36:e5:9f:ba:b9:e7:0b:4b:60:d8:b8:40:a5:0b: 48:3e:f4:79:a9:00:28:a8:b4:59:27:38:de:10:80: ac:0d:96:b3:ea:e6:9e:d1:d4:86:46:2f:cc:13:47: d8:c0:45:09:7f:01:a8:bc:a9:12:2d:0e:69:44:57: 86:eb:eb:76:2a:c5:19:bb:db:d1:11:ec:34:7b:56: d7:45:73:af:e2:c9:44:3a:f8:d8:a5:0f:ab:b2:63: 15:11:59:b9:23:30:68:48:2d:ca:fd:30:f4:87:3b: d7:01:a8:0b:6d:36:30:41:ee:d0:f1:62:66:70:77: 11:66:f0:80:21:04:50:2a:2b:8b:80:7f:fd:ca:5c: 5c:28:51:72:b2:0b:36:d1:fd:1e:ae:d9:70:8c:3a: b7:c1:26:a5:a2:bd:0f:bb:89:73:d9:2f:88:2f:4e: 34:a6:82:79:8d:13:4c:fe:14:c2:da:9c:26:1f:a8: b7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5F:2C:59:2D:E4:E5:E1:92:0B:51:02:ED:A4:63:25:AF:7E:E5:67 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:60:f2:36:0a:bb:30:4f:67:87:94:22:8c:18:98:86:40:6d: 4a:5c:2c:1e:88:9f:19:33:16:78:dc:eb:66:f7:f1:6d:82:9c: fe:9a:b8:2a:6f:62:04:0f:b2:96:3a:22:2e:9d:df:93:d4:6a: 4c:d5:06:2a:c6:8e:15:16:75:8c:e6:ad:6f:9f:24:65:5c:e3: fb:fb:df:a6:a1:a9:36:ad:6a:cc:99:00:a6:7d:dc:fd:e0:73: 76:86:26:f7:7f:29:10:35:51:12:2f:66:15:0c:90:d4:da:6e: 15:db:34:e8:51:07:db:5b:3c:8d:ca:e8:ec:42:9b:df:03:15: d9:fe:3a:3d:79:a0:d9:4b:cb:b6:60:a8:64:99:5d:0e:3e:42: 54:a1:94:ee:f2:75:9d:de:ef:c2:8b:f6:70:99:08:bc:fc:fe: 7c:9e:12:62:97:e2:a6:32:a0:33:46:29:89:36:f1:e1:c7:e6: 15:7a:9e:76:e5:a0:4c:2a:8e:ef:24:94:a1:74:7a:e1:aa:e8: b2:fc:4f:e7:98:6f:b9:5c:1b:c0:50:f8:7d:d9:4c:75:c7:64: 53:45:58:b9:93:34:66:d2:40:04:3e:97:99:08:6e:29:76:5f: c6:4d:90:2f:bd:f1:9e:76:43:f2:29:12:22:92:f2:71:97:e7: 37:20:4c:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUwOTA0MTQ1MTUxWhcNMjUwOTExMTQ1MTUxWjAYMRYwFAYD VQQDEw02OGI5YTc4OC1iOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA507yy0epx97vjyYo1x6aler+8k7biRHISCLcGlwRP0PKozQOZsferea0P2RR 2GSbBIB98QXupkKjIDrHL37/IeDA079aFX3VIqKLNuWfurnnC0tg2LhApQtIPvR5 qQAoqLRZJzjeEICsDZaz6uae0dSGRi/ME0fYwEUJfwGovKkSLQ5pRFeG6+t2KsUZ u9vREew0e1bXRXOv4slEOvjYpQ+rsmMVEVm5IzBoSC3K/TD0hzvXAagLbTYwQe7Q 8WJmcHcRZvCAIQRQKiuLgH/9ylxcKFFysgs20f0ertlwjDq3wSalor0Pu4lz2S+I L040poJ5jRNM/hTC2pwmH6i3CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRfLFkt 5OXhkgtRAu2kYyWvfuVnMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgYPI2CrswT2eHlCKMGJiGQG1KXCweiJ8ZMxZ43Otm9/Ftgpz+mrgq b2IED7KWOiIund+T1GpM1QYqxo4VFnWM5q1vnyRlXOP7+9+moak2rWrMmQCmfdz9 4HN2hib3fykQNVESL2YVDJDU2m4V2zToUQfbWzyNyujsQpvfAxXZ/jo9eaDZS8u2 YKhkmV0OPkJUoZTu8nWd3u/Ci/ZwmQi8/P58nhJil+KmMqAzRimJNvHhx+YVep52 5aBMKo7vJJShdHrhquiy/E/nmG+5XBvAUPh92Ux1x2RTRVi5kzRm0kAEPpeZCG4p dl/GTZAvvfGedkPyKRIikvJxl+c3IEyo -----END CERTIFICATE-----Generated at Sat Sep 6 13:47:42 2025 by rpki-client