$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: 9ch0Tuw28NUI/yqtgWUK4SSvHxNRnpfOox1AGAFXGTs= Subject key identifier: C3:CE:CC:27:ED:0C:0E:B7:C2:96:02:1A:6A:0B:4B:74:19:8B:92:C4 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: CB Signing time: Fri 05 Sep 2025 06:06:57 +0000 Manifest this update: Fri 05 Sep 2025 06:06:56 +0000 Manifest next update: Fri 12 Sep 2025 06:06:56 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: Uzvx5e4EeVrSTPN61bYy3eWIwm8ttOd4STU/ILKwsBA=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: yG8pJzZvCKmicDw0dwhTP12v3DvDJugGeiv6wIDOe9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Sep 5 06:06:56 2025 GMT Not After : Sep 12 06:06:56 2025 GMT Subject: CN=68ba7e00-8b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:46:90:44:ab:50:6f:7e:52:b3:89:c2:1d:b4: 2f:d9:76:c1:23:0d:0d:1a:79:f4:7d:48:96:2b:08: ce:36:dd:80:ab:cd:56:f8:2e:03:77:d0:35:f7:0d: 1e:5f:9d:49:fa:0c:98:71:35:e9:89:b5:d6:c2:2e: 65:49:3d:3e:e7:17:0c:25:08:d3:fa:72:ce:70:d7: 63:1c:0d:1f:25:7a:53:5f:f2:7e:96:42:c9:3c:19: 47:2d:9e:51:01:6c:ad:77:b1:50:be:1a:2b:f0:de: 05:2c:f2:5a:82:15:26:f9:c7:7c:0a:dc:63:6a:44: 99:1d:ee:ff:bc:cb:f8:ca:3c:07:70:e6:6c:ed:80: 38:88:62:0e:45:31:5b:d0:d4:50:2d:a9:82:98:3c: fc:93:12:bf:64:df:23:e0:cc:51:aa:bd:13:bb:4a: 44:98:11:1b:bb:86:1b:e3:41:a6:1c:ae:13:f3:42: e6:58:b0:4e:37:c3:cf:70:9d:8e:f2:ac:57:f9:0c: d4:4b:21:3e:7a:71:04:fb:f1:5c:36:38:1b:5c:3f: f2:5b:7a:58:a9:84:47:8b:d4:c3:cb:cf:b8:9f:f4: 17:d5:fb:6c:05:c0:19:2b:12:e8:c9:ee:ea:62:67: 12:a9:a5:15:cf:82:a3:48:5e:e5:ee:dd:48:50:e6: 49:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CE:CC:27:ED:0C:0E:B7:C2:96:02:1A:6A:0B:4B:74:19:8B:92:C4 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:44:8e:31:4c:17:3d:ea:b3:77:4d:05:64:14:2f:e1:61:71: 16:4f:a7:e7:6b:6c:28:f1:f4:ec:6f:ee:62:45:d4:cf:c6:b9: 9f:6a:18:f9:e9:cf:c4:3a:76:af:22:a0:fa:88:85:ad:19:f8: 64:80:ed:86:6d:0c:08:51:c0:a3:30:bd:d5:85:5f:71:a2:6d: 83:8b:5b:8d:3f:08:00:45:53:e2:28:4e:fa:b3:9c:79:24:9a: 13:75:e0:66:8c:19:f6:c9:86:95:1b:ef:fd:db:cd:68:bd:06: c8:67:95:2f:3f:6a:f0:d6:a5:f9:f2:8d:79:a7:b3:97:1f:f1: d8:44:bf:f2:cd:10:78:6f:74:de:35:5d:82:f6:64:ee:2e:4c: 96:65:13:f2:05:bf:55:0e:09:03:52:e7:94:50:8d:df:d2:89: c4:6f:a7:e9:c1:3f:9b:a3:8e:ff:11:51:38:97:7e:42:42:b2: 53:20:c2:1b:29:c0:67:4e:04:30:02:94:4c:1b:5d:82:43:4c: 36:4e:89:85:f6:8e:41:b1:67:aa:b0:c0:27:11:f6:fa:ec:b2: a4:4a:fd:9a:5a:6f:cb:6e:88:1e:5a:b5:d6:88:62:e7:b7:6c: 5d:b8:36:54:82:1c:7f:c8:2f:c2:0a:d7:16:da:18:81:40:8b: 01:fc:98:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE QjA3Njk1NkIwHhcNMjUwOTA1MDYwNjU2WhcNMjUwOTEyMDYwNjU2WjAYMRYwFAYD VQQDEw02OGJhN2UwMC04YjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UaQRKtQb35Ss4nCHbQv2XbBIw0NGnn0fUiWKwjONt2Aq81W+C4Dd9A19w0e X51J+gyYcTXpibXWwi5lST0+5xcMJQjT+nLOcNdjHA0fJXpTX/J+lkLJPBlHLZ5R AWytd7FQvhor8N4FLPJaghUm+cd8CtxjakSZHe7/vMv4yjwHcOZs7YA4iGIORTFb 0NRQLamCmDz8kxK/ZN8j4MxRqr0Tu0pEmBEbu4Yb40GmHK4T80LmWLBON8PPcJ2O 8qxX+QzUSyE+enEE+/FcNjgbXD/yW3pYqYRHi9TDy8+4n/QX1ftsBcAZKxLoye7q YmcSqaUVz4KjSF7l7t1IUOZJXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPOzCft DA63wpYCGmoLS3QZi5LEMB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVRI4xTBc96rN3TQVkFC/hYXEWT6fna2wo8fTsb+5iRdTPxrmfahj5 6c/EOnavIqD6iIWtGfhkgO2GbQwIUcCjML3VhV9xom2Di1uNPwgARVPiKE76s5x5 JJoTdeBmjBn2yYaVG+/9281ovQbIZ5UvP2rw1qX58o15p7OXH/HYRL/yzRB4b3Te NV2C9mTuLkyWZRPyBb9VDgkDUueUUI3f0onEb6fpwT+bo47/EVE4l35CQrJTIMIb KcBnTgQwApRMG12CQ0w2TomF9o5BsWeqsMAnEfb67LKkSv2aWm/LbogeWrXWiGLn t2xduDZUghx/yC/CCtcW2hiBQIsB/JjK -----END CERTIFICATE-----Generated at Sat Sep 6 15:16:18 2025 by rpki-client