$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: YMLJj6oph9Ru8Z3MmTKgwirXEIndEuhX3QyC1mY8VVY= Subject key identifier: 4B:95:18:D1:D1:28:E4:7C:31:B3:C1:02:8C:5D:FC:41:EB:9C:94:1E Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E25 Signing time: Mon 08 Sep 2025 17:52:18 +0000 Manifest this update: Mon 08 Sep 2025 17:52:18 +0000 Manifest next update: Mon 15 Sep 2025 17:52:18 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: EhB9YQ1gK8HpXrtwuV2l8hg0zVxsT4yq1hI3tYAXlV8=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3646 (0xe3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Sep 8 17:52:18 2025 GMT Not After : Sep 15 17:52:18 2025 GMT Subject: CN=68bf17d2-035c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e5:3d:38:6d:90:af:d3:ac:90:19:24:09:8a: df:16:35:df:20:34:c6:33:fe:5b:db:79:76:04:57: cd:86:64:bf:93:44:b1:94:8f:b8:63:52:a0:e3:6b: 73:17:a1:0e:88:e2:b2:91:fa:05:15:0f:33:eb:18: 3b:8a:ec:aa:4c:4f:56:70:65:50:7b:85:75:86:1b: 85:17:49:72:60:df:61:99:eb:39:da:2c:77:08:21: e7:fe:d3:36:59:06:01:59:91:1c:8b:8e:5c:78:ea: bf:5b:d0:48:19:83:65:cf:e4:1c:ac:9a:a3:0b:ee: 14:60:66:d4:02:62:b1:5e:d7:39:00:60:93:f2:3e: f1:4d:d1:ee:85:62:50:50:98:0f:9c:9a:db:d1:1a: 4e:31:81:d7:96:e9:bf:cb:c7:5c:f1:12:77:88:c4: e9:b9:c9:22:f1:89:1b:a8:64:d9:a1:6b:8e:99:24: 4f:1c:8e:f1:40:f5:dd:38:22:d2:e3:48:bd:f1:d5: a9:78:24:53:47:d5:39:9c:67:46:a7:21:62:52:78: 56:57:ff:e4:55:aa:2d:8e:f1:63:6c:dd:05:43:e4: 1f:bb:a5:e7:d7:12:27:0d:6b:48:75:19:20:98:5b: 80:8b:3a:ae:31:65:96:f4:e2:16:80:1f:5d:05:a4: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:95:18:D1:D1:28:E4:7C:31:B3:C1:02:8C:5D:FC:41:EB:9C:94:1E X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:f4:cd:da:51:dd:97:03:0e:a3:80:14:11:3b:93:59:d6:9e: 38:2d:c5:ff:d8:3c:71:d4:80:50:fd:b6:03:51:1b:3c:ee:73: d6:60:a1:bb:68:83:ef:b2:d1:f2:ec:bb:69:58:04:05:4a:cc: ee:89:32:5e:c8:a1:0b:5f:01:c1:e7:2b:66:43:86:d1:f4:db: af:c6:24:e8:98:c9:45:f3:06:df:9b:69:9f:52:1a:99:c1:b6: ee:6c:04:98:38:a9:0a:7a:be:cb:25:d0:a7:75:6b:f0:5c:c5: d8:22:19:5c:8c:fd:30:f0:fb:df:25:f0:2e:61:e4:4f:41:9a: c9:63:60:25:c8:0d:93:4c:48:f5:33:0f:00:5b:87:e4:a3:cd: d1:4b:e2:dd:65:a8:ae:a5:bc:62:29:5f:78:a3:da:b8:b2:e2: 62:15:f1:a3:05:c3:91:14:62:62:b0:2e:9e:93:20:d2:7e:3f: 26:63:f3:7a:6b:09:6d:a7:42:6a:31:4b:16:7a:90:4b:02:b6: dc:72:57:86:28:78:b2:d7:15:2c:de:fc:f9:ff:f3:b3:15:a4: 21:6b:fa:4e:cd:81:ad:1d:8a:fa:09:ec:04:33:09:6b:16:21: de:c2:5d:a4:e5:8a:9a:02:36:90:c2:53:85:1c:64:00:9c:d0: 2a:40:5e:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwOTA4MTc1MjE4WhcNMjUwOTE1MTc1MjE4WjAYMRYwFAYD VQQDEw02OGJmMTdkMi0wMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9uU9OG2Qr9OskBkkCYrfFjXfIDTGM/5b23l2BFfNhmS/k0SxlI+4Y1Kg42tz F6EOiOKykfoFFQ8z6xg7iuyqTE9WcGVQe4V1hhuFF0lyYN9hmes52ix3CCHn/tM2 WQYBWZEci45ceOq/W9BIGYNlz+QcrJqjC+4UYGbUAmKxXtc5AGCT8j7xTdHuhWJQ UJgPnJrb0RpOMYHXlum/y8dc8RJ3iMTpucki8YkbqGTZoWuOmSRPHI7xQPXdOCLS 40i98dWpeCRTR9U5nGdGpyFiUnhWV//kVaotjvFjbN0FQ+Qfu6Xn1xInDWtIdRkg mFuAizquMWWW9OIWgB9dBaQm3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuVGNHR KOR8MbPBAoxd/EHrnJQeMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU9M3aUd2XAw6jgBQRO5NZ1p44LcX/2Dxx1IBQ/bYDURs87nPWYKG7 aIPvstHy7LtpWAQFSszuiTJeyKELXwHB5ytmQ4bR9NuvxiTomMlF8wbfm2mfUhqZ wbbubASYOKkKer7LJdCndWvwXMXYIhlcjP0w8PvfJfAuYeRPQZrJY2AlyA2TTEj1 Mw8AW4fko83RS+LdZaiupbxiKV94o9q4suJiFfGjBcORFGJisC6ekyDSfj8mY/N6 awltp0JqMUsWepBLArbccleGKHiy1xUs3vz5//OzFaQha/pOzYGtHYr6CewEMwlr FiHewl2k5YqaAjaQwlOFHGQAnNAqQF4I -----END CERTIFICATE-----Generated at Tue Sep 9 10:21:37 2025 by rpki-client