$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: 7L8eydF/Fn9rDc9Vrn9L+4+ODZhIU4v2k4nKOHBIcqs= Subject key identifier: 92:39:5E:C4:F8:AF:EE:43:0A:EE:18:92:43:F8:3B:40:1A:78:63:97 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34C4 Signing time: Thu 18 Sep 2025 15:01:11 +0000 Manifest this update: Thu 18 Sep 2025 15:01:11 +0000 Manifest next update: Thu 25 Sep 2025 15:01:11 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: pP+qpubMkKjgaFGau+mBOck0yD99RxfxDUO4FP6+3nI=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Sep 18 15:01:11 2025 GMT Not After : Sep 25 15:01:11 2025 GMT Subject: CN=68cc1eb7-48fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:00:58:10:5d:19:87:7a:9c:29:db:cf:36:ce: d0:76:b8:fb:c4:1f:c0:95:54:72:d2:d7:ed:e0:ad: 84:1e:eb:3d:86:15:3d:2c:b6:b0:79:19:c3:bd:b7: 9f:a6:38:81:da:c2:a3:04:d4:b3:4f:20:f7:7d:9e: 39:de:2d:c0:d3:4f:ec:2f:f5:17:b1:01:0d:2f:bc: 01:e5:8e:61:13:ce:27:7d:dd:b0:91:50:df:57:ac: 10:63:66:c9:a4:16:10:07:25:9e:62:65:2b:7e:c6: 3e:2b:90:87:f1:63:8a:99:e0:60:be:4f:78:df:73: 3f:80:38:cb:ce:f0:0b:fa:73:30:c4:d7:fe:cb:a2: 35:f1:ee:8f:d0:fd:11:f8:e9:b6:8a:7d:0b:1c:d8: bc:a7:ec:2e:ff:64:71:e0:eb:79:00:1b:68:0a:d1: 10:f5:39:16:a1:fe:3a:50:61:12:e0:a1:ab:75:de: 1f:17:d4:d1:6a:78:40:9c:1a:e1:b3:93:6d:9a:c1: 32:61:ba:a8:33:de:24:49:41:4a:05:1f:09:61:4c: 09:25:9b:c4:63:af:27:5f:72:75:40:0f:13:a2:a9: ac:03:60:26:e6:69:c6:d1:93:8c:48:e4:21:b0:b6: f0:60:1d:a4:c2:85:6b:ff:03:50:41:59:9a:87:13: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:39:5E:C4:F8:AF:EE:43:0A:EE:18:92:43:F8:3B:40:1A:78:63:97 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:24:e3:95:aa:5d:8e:fb:15:f7:9f:09:f1:c1:6e:3d:62:74: d2:19:17:e8:7f:0b:c1:8b:c3:79:dc:14:d9:8d:b2:57:ec:8e: b1:9f:ff:35:8f:43:f7:c1:bd:8b:05:7c:b9:2a:b1:b9:19:d0: 0d:dc:d3:98:6b:1e:37:e9:13:d7:0b:7c:a2:d9:89:94:93:2f: eb:9e:91:89:b4:5d:82:78:06:09:81:0f:15:3b:6d:ef:24:71: da:e1:9f:60:e8:b7:22:4a:68:ba:70:c8:43:24:87:e0:c8:d7: 1b:4d:52:9a:3d:4a:4e:d0:20:40:99:d0:5d:05:9f:ef:ca:47: bf:e0:99:e4:22:94:fc:35:ca:56:ff:50:06:2a:bf:93:92:9d: d1:1a:0b:7e:83:00:1a:aa:c9:69:66:07:a7:b3:9e:88:09:eb: 20:91:94:70:d7:ee:55:33:3d:48:a4:b6:06:37:8b:e7:e5:59: 9b:4a:b1:69:22:01:19:70:8c:8f:bc:75:7f:5a:30:b1:27:a3: e5:86:14:2a:b2:bc:12:0d:3a:2a:89:46:6b:e7:81:b4:0b:60: b3:d0:70:4e:29:c4:77:2a:c9:01:f9:33:0b:89:97:f0:f8:d9: 77:9f:5a:7a:be:af:0e:93:d8:ab:e1:67:c5:eb:5f:f6:9c:3d: e4:c5:99:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwOTE4MTUwMTExWhcNMjUwOTI1MTUwMTExWjAYMRYwFAYD VQQDEw02OGNjMWViNy00OGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wBYEF0Zh3qcKdvPNs7Qdrj7xB/AlVRy0tft4K2EHus9hhU9LLaweRnDvbef pjiB2sKjBNSzTyD3fZ453i3A00/sL/UXsQENL7wB5Y5hE84nfd2wkVDfV6wQY2bJ pBYQByWeYmUrfsY+K5CH8WOKmeBgvk9433M/gDjLzvAL+nMwxNf+y6I18e6P0P0R +Om2in0LHNi8p+wu/2Rx4Ot5ABtoCtEQ9TkWof46UGES4KGrdd4fF9TRanhAnBrh s5NtmsEyYbqoM94kSUFKBR8JYUwJJZvEY68nX3J1QA8ToqmsA2Am5mnG0ZOMSOQh sLbwYB2kwoVr/wNQQVmahxMcJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI5XsT4 r+5DCu4YkkP4O0AaeGOXMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALJOOVql2O+xX3nwnxwW49YnTSGRfofwvBi8N53BTZjbJX7I6xn/81 j0P3wb2LBXy5KrG5GdAN3NOYax436RPXC3yi2YmUky/rnpGJtF2CeAYJgQ8VO23v JHHa4Z9g6LciSmi6cMhDJIfgyNcbTVKaPUpO0CBAmdBdBZ/vyke/4JnkIpT8NcpW /1AGKr+Tkp3RGgt+gwAaqslpZgens56ICesgkZRw1+5VMz1IpLYGN4vn5VmbSrFp IgEZcIyPvHV/WjCxJ6PlhhQqsrwSDToqiUZr54G0C2Cz0HBOKcR3KskB+TMLiZfw +Nl3n1p6vq8Ok9ir4WfF61/2nD3kxZlN -----END CERTIFICATE-----Generated at Thu Sep 18 19:13:33 2025 by rpki-client