$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft File: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft (raw, json) Hash identifier: PMJ8e2A/LMYjsdKBSiiQhFjwaert3nypA3VV2u0bino= Subject key identifier: 5C:81:4A:55:53:E3:27:F1:9B:92:12:BE:78:41:1E:E7:D8:B7:B2:D6 Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft Manifest number: 3B Signing time: Fri 05 Sep 2025 08:01:43 +0000 Manifest this update: Fri 05 Sep 2025 08:01:43 +0000 Manifest next update: Fri 12 Sep 2025 08:01:43 +0000 Files and hashes: 1: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl (hash: MUVL+z+801Hq+qbtP8s5J/jrVhjAGEqowYu74q9/YbM=) 2: D474730E311C11F08B197B65C4F9AE02.roa (hash: Pu/QPbX6etZqKvOsEtAWX426lG3kK44YjXzpJvX5ecs=) 3: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (hash: OuYK59uWIga3ZAzcT5ocu0lcjNK1alPA7Ti+SUQJrh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: Sep 5 08:01:43 2025 GMT Not After : Sep 12 08:01:43 2025 GMT Subject: CN=68ba98e7-d357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:75:e4:e9:e3:5e:60:c9:0f:d5:c1:d5:90: 09:98:e4:39:21:24:06:5f:b5:40:ba:2d:37:ea:49: d8:67:3a:25:a2:c1:10:10:26:ef:96:d7:5d:12:1d: 87:7b:42:c3:a6:12:00:8c:d1:0d:b2:b6:6b:2a:1d: 14:b1:88:1f:c4:53:f4:8f:3e:f2:52:33:29:ad:39: 81:0a:7d:b0:2e:a0:88:da:1a:39:ae:b7:8d:f8:d1: d0:3a:b7:1d:8d:59:4f:59:a2:b6:1d:4c:3b:00:f5: 77:a5:1c:4e:af:c6:8b:67:2c:e4:9d:f1:68:68:df: 4e:6c:a6:4d:80:da:cb:39:86:1e:30:f0:5c:3e:9d: 59:4e:89:43:c0:4f:8d:cc:d0:82:83:13:25:3d:55: e7:22:53:92:d9:73:83:21:af:a7:99:94:b7:d4:2d: 73:d3:77:fa:ff:4a:e2:37:08:46:ff:23:f2:bb:73: f2:cb:ee:0d:95:16:10:1d:fa:1e:aa:fd:98:c5:14: 00:1e:db:22:3d:e4:0d:e9:18:f8:f0:72:30:b0:7e: 28:12:c9:5c:0e:74:8e:25:99:74:26:52:ab:b6:ed: 53:4d:1b:0e:e4:75:6e:df:cb:30:4d:c0:55:6d:a2: 82:92:10:94:4c:e8:d5:b8:e3:d2:b5:c9:d5:0b:c5: 35:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:81:4A:55:53:E3:27:F1:9B:92:12:BE:78:41:1E:E7:D8:B7:B2:D6 X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:b2:77:66:09:4e:a4:bf:38:23:dd:3d:6c:5c:74:0b:af:7a: 05:14:a5:90:01:da:cb:31:f4:79:5c:8c:12:a7:dc:a5:40:01: 7d:0b:ed:c8:76:ec:af:72:2a:18:6b:d9:5c:36:a9:4f:0d:44: 5a:8a:4f:2a:24:85:b8:d7:65:fa:36:8e:e1:9c:a1:d1:27:ea: 82:a3:80:3f:e1:6f:5a:9d:8d:a6:42:b6:f6:51:6b:f0:56:f8: 5f:46:77:b2:2c:d7:1b:f3:14:36:1a:6f:ac:46:a2:2b:c5:01: 68:55:dd:83:c2:8d:d1:aa:fa:98:1a:1a:79:53:b4:3f:83:15: 33:53:2e:8a:ea:2a:8e:e6:32:40:a0:23:c0:22:54:2e:b6:49: 31:64:4f:ce:a1:c3:69:2a:69:07:2d:56:83:db:43:7e:99:05: 8e:7f:14:54:89:e9:aa:d9:e8:62:a2:71:ce:96:22:df:91:83: 6d:1f:76:6f:cc:38:4f:8d:28:ff:54:f8:0a:41:7c:e1:4a:6a: 16:08:8b:95:f7:10:af:c9:77:ef:98:30:68:1c:8c:ff:fd:d6: 50:78:a9:c5:d6:50:54:26:7d:8e:54:ff:72:64:47:41:5f:57: 15:5e:a3:fc:a1:b2:d7:f7:f0:36:7d:ee:5b:ba:d9:1a:c7:3f: d4:77:61:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVEMjExMC8GA1UEBRMoRDkwNEQ1NTJDMEVGMzJGMjQ5QUJBNDU5N0JEODRBMTVF RTU1NTVDMTAeFw0yNTA5MDUwODAxNDNaFw0yNTA5MTIwODAxNDNaMBgxFjAUBgNV BAMTDTY4YmE5OGU3LWQzNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCmnXk6eNeYMkP1cHVkAmY5DkhJAZftUC6LTfqSdhnOiWiwRAQJu+W110SHYd7 QsOmEgCM0Q2ytmsqHRSxiB/EU/SPPvJSMymtOYEKfbAuoIjaGjmut4340dA6tx2N WU9ZorYdTDsA9XelHE6vxotnLOSd8Who305spk2A2ss5hh4w8Fw+nVlOiUPAT43M 0IKDEyU9VeciU5LZc4Mhr6eZlLfULXPTd/r/SuI3CEb/I/K7c/LL7g2VFhAd+h6q /ZjFFAAe2yI95A3pGPjwcjCwfigSyVwOdI4lmXQmUqu27VNNGw7kdW7fyzBNwFVt ooKSEJRM6NW449K1ydULxTWJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXIFKVVPj J/GbkhK+eEEe59i3stYwHwYDVR0jBBgwFoAU2QTVUsDvMvJJq6RZe9hKFe5VVcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUQyL0YyNDVCMkQ2MzEx QjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFUVlVzRHZNdkpKcTZSWmU5aEtGZTVWVmNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 RUQyL0YyNDVCMkQ2MzExQjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZK SnE2UlplOWhLRmU1VlZjRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAiyd2YJTqS/OCPdPWxcdAuvegUUpZAB2ssx9HlcjBKn3KVAAX0L7ch2 7K9yKhhr2Vw2qU8NRFqKTyokhbjXZfo2juGcodEn6oKjgD/hb1qdjaZCtvZRa/BW +F9Gd7Is1xvzFDYab6xGoivFAWhV3YPCjdGq+pgaGnlTtD+DFTNTLorqKo7mMkCg I8AiVC62STFkT86hw2kqaQctVoPbQ36ZBY5/FFSJ6arZ6GKicc6WIt+Rg20fdm/M OE+NKP9U+ApBfOFKahYIi5X3EK/Jd++YMGgcjP/91lB4qcXWUFQmfY5U/3JkR0Ff VxVeo/yhstf38DZ97lu62RrHP9R3YQQ= -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:30 2025 by rpki-client