$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: O7t8B1lNNTvTiwlZwxaoYrC8RApkiwBJLUECWySR684= Subject key identifier: E5:74:28:DA:1E:35:9F:A7:3D:2F:E3:40:3D:F8:D8:77:14:51:9C:E9 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 061C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05FF Signing time: Sat 06 Sep 2025 23:16:56 +0000 Manifest this update: Sat 06 Sep 2025 23:16:56 +0000 Manifest next update: Sat 13 Sep 2025 23:16:56 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: Y98SPXRiKM9Y4APp7rAUX5AqzPdJo2zRjV6bRZroHWA=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: /0z04vbtBaLcQrCFiK0+0jO4vvjWhm1cfohrqiT/hCc=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: MDnYgEyFU+utF3gs7xXTuOcFSWGPIOUc2y3lsVq3q/M=) 5: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: R8MAXcI9/yvxzT89z1WDBO8OZ5lHOE8A6WUOtaaft6k=) 6: D4413B92007C11EE99460918C4F9AE02.roa (hash: dvapbCE1SRB6K7VYhEw7q7mKxSFd63MycN7TcRuRtp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Sep 6 23:16:56 2025 GMT Not After : Sep 13 23:16:56 2025 GMT Subject: CN=68bcc0e8-f01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:be:fa:c5:61:42:cb:2d:0d:29:15:98:df:a4: 74:66:eb:cf:07:a0:83:c4:29:08:ad:c8:84:02:d6: f2:e8:be:7b:9b:93:c7:10:4d:cf:ef:8e:49:d8:5d: 66:ba:5c:96:04:98:73:0e:f5:b8:38:87:c7:d5:63: d1:39:a0:b9:df:a0:a1:0b:9f:6a:8f:61:d8:a3:85: 60:de:91:13:cf:05:08:a6:af:fb:49:6c:39:34:db: e2:c5:79:1e:02:93:92:fc:a4:aa:ce:d5:ee:0b:b7: 58:eb:05:e4:15:14:c9:e0:09:bb:43:6b:fd:dc:20: be:be:0a:f9:dd:b5:31:af:1c:9f:da:67:47:1f:46: 35:8e:f4:da:03:a9:e8:1b:79:db:31:c0:64:ed:d0: 04:f9:99:b3:e4:32:67:08:ea:5b:3e:32:2e:85:9b: 20:3c:e2:18:f8:a4:2b:e8:24:eb:0f:38:32:00:ce: 79:ee:2c:78:71:fb:8c:aa:f3:db:40:29:e1:db:13: 5e:5e:08:24:af:0e:1b:1b:91:85:57:eb:44:5d:3a: e5:29:2c:3f:12:49:9c:51:e2:06:5b:9f:e7:20:fa: dc:25:9c:bd:b7:f6:ba:6b:25:eb:8e:4f:d6:f5:f8: 52:5f:ec:7e:bf:72:dd:11:25:2b:10:f7:9a:15:08: 9d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:74:28:DA:1E:35:9F:A7:3D:2F:E3:40:3D:F8:D8:77:14:51:9C:E9 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:9f:21:2e:0b:c3:5f:67:7c:cd:c3:8f:ad:70:ae:74:f2:0e: 3e:a8:e2:a4:56:b1:7c:ce:a9:41:70:71:ed:71:c9:6d:8e:11: 43:10:8c:b1:bd:68:8c:9f:96:db:3e:af:d7:67:5d:e9:e3:54: f2:d5:d6:30:ca:bb:87:ff:91:6e:ea:95:38:77:5f:68:58:5e: aa:f1:16:12:8f:3c:8d:39:24:52:98:ad:3a:ff:d1:65:45:98: c7:fa:10:e7:3d:eb:50:4d:a1:ad:a9:b1:40:ea:89:29:d7:6f: 9a:f6:48:49:4a:9e:17:c8:06:5d:75:f2:67:f8:70:60:81:43: 10:18:13:e5:74:51:7b:27:af:ec:02:c8:f0:8c:cf:84:56:8d: 6f:5c:2e:b5:d2:eb:83:54:d3:d2:c6:09:cf:0f:8b:4e:2a:e2: ee:6b:6b:6e:fc:97:24:52:5a:91:de:e8:24:b1:4f:7f:8a:e9: f9:6d:3b:3c:de:e5:e7:bb:3b:c8:ac:84:82:91:3c:61:4b:0c: 30:85:95:c8:5e:a5:8e:cc:75:29:0f:9f:5c:8f:52:d1:b1:54: 0e:3b:6a:17:8a:81:04:24:85:87:ab:a3:d9:77:14:da:6a:1d: 66:aa:2e:dc:e6:8d:16:95:b4:ba:b3:a6:b1:b1:2d:98:ec:0c: 83:61:9f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwOTA2MjMxNjU2WhcNMjUwOTEzMjMxNjU2WjAYMRYwFAYD VQQDEw02OGJjYzBlOC1mMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt776xWFCyy0NKRWY36R0ZuvPB6CDxCkIrciEAtby6L57m5PHEE3P745J2F1m ulyWBJhzDvW4OIfH1WPROaC536ChC59qj2HYo4Vg3pETzwUIpq/7SWw5NNvixXke ApOS/KSqztXuC7dY6wXkFRTJ4Am7Q2v93CC+vgr53bUxrxyf2mdHH0Y1jvTaA6no G3nbMcBk7dAE+Zmz5DJnCOpbPjIuhZsgPOIY+KQr6CTrDzgyAM557ix4cfuMqvPb QCnh2xNeXggkrw4bG5GFV+tEXTrlKSw/EkmcUeIGW5/nIPrcJZy9t/a6ayXrjk/W 9fhSX+x+v3LdESUrEPeaFQidXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV0KNoe NZ+nPS/jQD342HcUUZzpMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjnyEuC8NfZ3zNw4+tcK508g4+qOKkVrF8zqlBcHHtccltjhFDEIyx vWiMn5bbPq/XZ13p41Ty1dYwyruH/5Fu6pU4d19oWF6q8RYSjzyNOSRSmK06/9Fl RZjH+hDnPetQTaGtqbFA6okp12+a9khJSp4XyAZddfJn+HBggUMQGBPldFF7J6/s AsjwjM+EVo1vXC610uuDVNPSxgnPD4tOKuLua2tu/JckUlqR3ugksU9/iun5bTs8 3uXnuzvIrISCkTxhSwwwhZXIXqWOzHUpD59cj1LRsVQOO2oXioEEJIWHq6PZdxTa ah1mqi7c5o0WlbS6s6axsS2Y7AyDYZ+g -----END CERTIFICATE-----Generated at Mon Sep 8 08:56:05 2025 by rpki-client