$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft File: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft (raw, json) Hash identifier: QS8flh2hwVsBkypiDwt24CFP5cLs04wy4xp/3zAkkAQ= Subject key identifier: 65:8C:1A:72:AC:D2:F5:A1:3A:45:34:6D:37:B4:E5:1A:5F:37:FB:28 Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft Manifest number: 0677 Signing time: Thu 04 Sep 2025 22:45:43 +0000 Manifest this update: Thu 04 Sep 2025 22:45:43 +0000 Manifest next update: Thu 11 Sep 2025 22:45:43 +0000 Files and hashes: 1: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl (hash: Y4WI2rLu4E9hvsZi0Rav+ucwUJniUPHlN78N+z84bVU=) 2: 0A7BC528913611EBBD9B811AC4F9AE02.roa (hash: NzOCnKqg2qahRXEOik1xyZlxFZ3lrtlDe5hks5SrPJA=) 3: 09A1853E913611EBBD9B811AC4F9AE02.roa (hash: IqmyGbo6lE5IdQOfP9xw6QgI0Xcsu+xkWZJJhr6ZiRQ=) 4: 8A345D2891A111EB87E23C38C4F9AE02.roa (hash: lgtMLH6i/g97QEVVbiDk03F8pSWOlpowm/3LEp7TGhw=) 5: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (hash: xoqWpk6kq9UDnJpAtKinOiTxbgS2kwe2RRE2npE/Mm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7, serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: Sep 4 22:45:43 2025 GMT Not After : Sep 11 22:45:43 2025 GMT Subject: CN=68ba1697-6f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fa:67:7c:31:a3:cd:02:7b:f4:65:ad:9f:2f: 4f:ac:56:a3:0a:cb:e3:3d:6a:91:3a:26:61:37:49: 0f:ba:8c:9d:65:65:9a:e6:50:47:87:39:17:76:23: fa:ac:ed:87:6c:eb:74:9d:77:e9:e1:98:b6:85:6e: 1e:58:ab:b4:a0:12:e0:14:f2:ad:34:d6:88:2b:33: 31:14:45:c5:1f:2d:3d:6e:a2:a8:87:95:9c:7b:c2: 48:74:f5:12:20:a9:96:f8:4c:d9:d0:fd:ed:61:b7: 4c:44:26:24:bf:f9:d0:d7:47:e8:4f:dc:63:db:7e: 2e:3a:4c:c8:3a:50:eb:32:cd:c8:5d:da:6d:b9:2e: 2a:66:04:33:8b:c4:88:1d:2b:ec:23:01:66:fb:4e: 9e:18:04:b7:3c:e0:92:9d:2b:5c:29:69:ad:c1:9e: 2a:33:19:aa:a9:0c:35:6e:ce:cf:07:e5:3b:4c:a4: 8c:1f:4c:46:d4:70:bf:3f:26:4e:f4:a3:29:f3:04: d1:f9:e5:e5:23:e4:e6:60:a0:f3:5a:1c:dd:c0:f5: 33:54:01:4d:be:f8:41:86:c0:45:d3:43:40:75:b4: ac:9d:39:f7:37:08:d1:6b:13:c6:f8:2e:21:55:37: 94:07:98:1a:27:01:31:ed:ea:82:bc:1b:77:21:67: 23:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8C:1A:72:AC:D2:F5:A1:3A:45:34:6D:37:B4:E5:1A:5F:37:FB:28 X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8c:8f:67:66:30:64:34:58:34:5e:c8:c5:e9:e7:66:0f:8c: 42:8a:59:1c:39:ad:a2:a8:11:ab:81:cd:6e:f7:0e:f3:42:04: 46:56:55:66:f4:b8:d1:65:b8:57:67:b1:88:bc:21:48:d0:9b: 60:18:e1:14:82:61:ec:7d:a1:d2:2b:99:5d:81:8b:17:d6:64: bb:e0:31:27:a3:81:67:84:bf:f1:66:04:a9:1d:aa:eb:40:e5: 17:ef:ae:ad:99:be:41:4b:f8:2d:1a:8b:4d:d7:a8:7b:f5:31: 9f:1a:61:ea:75:8a:68:13:2e:5b:6a:56:44:c8:5d:78:1d:db: 2f:d7:87:c3:55:10:44:65:58:c9:46:f8:5b:7e:1d:c6:d1:51: 9a:26:da:6d:ed:53:c4:9b:e2:66:e9:94:7a:92:42:13:05:06: da:43:98:4b:42:fd:06:36:ea:ae:dd:28:84:0c:a1:c9:df:1f: 98:b0:fe:86:eb:df:5c:13:44:d8:fe:97:a9:6d:9d:32:d1:e2: 05:1b:b4:fb:7d:ea:22:38:f2:68:de:b0:b1:fa:e5:36:92:29: 1b:de:2e:57:d1:b3:1e:93:d1:8a:00:32:57:eb:44:bd:00:8e: 01:48:f5:b9:f8:36:5c:20:1d:47:c7:d3:a9:28:40:4b:58:32: 74:d9:da:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjUwOTA0MjI0NTQzWhcNMjUwOTExMjI0NTQzWjAYMRYwFAYD VQQDEw02OGJhMTY5Ny02ZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/pnfDGjzQJ79GWtny9PrFajCsvjPWqROiZhN0kPuoydZWWa5lBHhzkXdiP6 rO2HbOt0nXfp4Zi2hW4eWKu0oBLgFPKtNNaIKzMxFEXFHy09bqKoh5Wce8JIdPUS IKmW+EzZ0P3tYbdMRCYkv/nQ10foT9xj234uOkzIOlDrMs3IXdptuS4qZgQzi8SI HSvsIwFm+06eGAS3POCSnStcKWmtwZ4qMxmqqQw1bs7PB+U7TKSMH0xG1HC/PyZO 9KMp8wTR+eXlI+TmYKDzWhzdwPUzVAFNvvhBhsBF00NAdbSsnTn3NwjRaxPG+C4h VTeUB5gaJwEx7eqCvBt3IWcj6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWMGnKs 0vWhOkU0bTe05RpfN/soMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUFFNy9FMTgyNTc5NjkwRjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNX X1ZMVVduUWE4Vm12ZnE5N28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jI9nZjBkNFg0XsjF6edmD4xCilkcOa2iqBGrgc1u9w7zQgRGVlVm 9LjRZbhXZ7GIvCFI0JtgGOEUgmHsfaHSK5ldgYsX1mS74DEno4FnhL/xZgSpHarr QOUX766tmb5BS/gtGotN16h79TGfGmHqdYpoEy5balZEyF14Hdsv14fDVRBEZVjJ Rvhbfh3G0VGaJtpt7VPEm+Jm6ZR6kkITBQbaQ5hLQv0GNuqu3SiEDKHJ3x+YsP6G 699cE0TY/pepbZ0y0eIFG7T7feoiOPJo3rCx+uU2kikb3i5X0bMek9GKADJX60S9 AI4BSPW5+DZcIB1Hx9OpKEBLWDJ02dpO -----END CERTIFICATE-----Generated at Sat Sep 6 15:50:14 2025 by rpki-client