$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: 0IKwcmkU+sZvzunxFal2ZSg8xGnNJ64qT/xUmToxGT0= Subject key identifier: A3:EE:1C:6A:E5:12:63:99:36:92:55:E3:C0:2E:45:BA:B9:A9:AD:34 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 066A Signing time: Tue 16 Sep 2025 22:52:08 +0000 Manifest this update: Tue 16 Sep 2025 22:52:07 +0000 Manifest next update: Tue 23 Sep 2025 22:52:07 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: SVLfv/cyKwf8kdnjrnpu3uWD5nTvtL9vNEJlJjrYMtA=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 22:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Sep 16 22:52:07 2025 GMT Not After : Sep 23 22:52:07 2025 GMT Subject: CN=68c9ea18-2a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e5:f7:d5:75:17:79:69:d2:8a:56:43:6b:fc: 8f:ac:75:13:cd:ba:10:2d:4a:90:33:80:78:3e:bd: be:31:e2:b9:99:dd:44:91:db:2f:ec:7a:86:8b:37: 37:39:99:b9:52:1d:a2:9c:50:18:9c:be:81:b4:16: 5f:d7:3c:ca:4a:b6:6f:f2:20:ec:60:60:c2:44:46: e3:83:6f:b5:63:60:28:5d:8c:f3:ce:a5:90:b4:9b: d7:4a:fb:cd:5d:39:2b:6f:fe:94:9e:be:a7:28:73: ae:64:0a:a9:13:7b:9d:54:e1:03:d9:74:f3:d1:38: 05:f7:6c:89:26:b0:31:31:79:55:34:11:78:ef:66: 1e:4e:89:9b:6c:3f:e2:ed:10:0b:ac:54:7c:3b:ac: 2c:9f:72:1f:e7:aa:e5:2b:92:30:9b:f2:ad:5f:32: 11:5e:34:10:c2:39:4a:a3:3b:a1:b6:ce:6a:ca:01: 89:e0:5d:22:22:66:9c:73:23:80:88:f8:16:d1:05: 9b:d0:1e:49:27:8b:9f:14:d4:84:20:35:81:99:6a: 4f:d0:22:ba:0e:af:4f:76:a7:47:91:58:bb:2e:60: b0:e8:2f:88:eb:36:aa:d5:82:39:ed:90:cd:d2:67: 66:12:8c:f1:64:1d:ec:9e:94:3e:3c:3d:ff:df:7a: fb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:EE:1C:6A:E5:12:63:99:36:92:55:E3:C0:2E:45:BA:B9:A9:AD:34 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b6:ba:05:86:30:42:0a:47:e1:06:64:ad:e7:3b:3f:7b:d1: e5:04:4d:09:c5:02:79:1b:f4:bc:f9:64:7a:1c:c6:c2:f9:bc: 70:fd:af:51:3d:7e:9e:11:43:b1:33:e9:b5:31:2d:e6:6f:75: b7:99:32:67:9e:dc:73:91:58:84:9f:cb:d9:01:2e:a0:af:93: 59:40:74:f4:3d:38:ba:94:fe:de:d8:2a:f5:6d:78:d7:0b:a2: fd:dc:4c:f4:26:96:ce:1d:42:00:50:7f:a2:ab:7b:3a:3e:ac: 93:74:05:5a:84:16:e5:5d:64:92:7e:1c:90:c0:a4:8b:3d:16: b1:d2:aa:3b:b1:f8:1b:9a:a5:71:00:af:d6:e8:4a:f3:2d:60: ca:1f:4a:5e:45:43:7a:7e:59:74:c5:e2:a6:6e:85:d3:7e:f8: 57:88:58:e7:f8:d1:59:2c:ab:2f:d7:13:fa:d4:3b:b3:2e:e6: 78:43:58:5d:72:9b:b9:c5:a4:82:ac:85:8d:fe:0f:84:da:fb: cd:68:9b:c4:e2:51:4b:4f:24:a3:43:45:68:71:04:be:94:3c: d3:9a:0b:03:75:8a:c8:73:8d:e4:cf:c4:20:35:a1:b4:1c:52: 78:08:56:77:a5:f6:dd:51:45:7a:1a:60:ad:d4:fd:b1:15:ce: 08:66:49:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUwOTE2MjI1MjA3WhcNMjUwOTIzMjI1MjA3WjAYMRYwFAYD VQQDEw02OGM5ZWExOC0yYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uX31XUXeWnSilZDa/yPrHUTzboQLUqQM4B4Pr2+MeK5md1Ekdsv7HqGizc3 OZm5Uh2inFAYnL6BtBZf1zzKSrZv8iDsYGDCREbjg2+1Y2AoXYzzzqWQtJvXSvvN XTkrb/6Unr6nKHOuZAqpE3udVOED2XTz0TgF92yJJrAxMXlVNBF472YeTombbD/i 7RALrFR8O6wsn3If56rlK5Iwm/KtXzIRXjQQwjlKozuhts5qygGJ4F0iImaccyOA iPgW0QWb0B5JJ4ufFNSEIDWBmWpP0CK6Dq9PdqdHkVi7LmCw6C+I6zaq1YI57ZDN 0mdmEozxZB3snpQ+PD3/33r7fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPuHGrl EmOZNpJV48AuRbq5qa00MB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9troFhjBCCkfhBmSt5zs/e9HlBE0JxQJ5G/S8+WR6HMbC+bxw/a9R PX6eEUOxM+m1MS3mb3W3mTJnntxzkViEn8vZAS6gr5NZQHT0PTi6lP7e2Cr1bXjX C6L93Ez0JpbOHUIAUH+iq3s6PqyTdAVahBblXWSSfhyQwKSLPRax0qo7sfgbmqVx AK/W6ErzLWDKH0peRUN6fll0xeKmboXTfvhXiFjn+NFZLKsv1xP61DuzLuZ4Q1hd cpu5xaSCrIWN/g+E2vvNaJvE4lFLTySjQ0VocQS+lDzTmgsDdYrIc43kz8QgNaG0 HFJ4CFZ3pfbdUUV6GmCt1P2xFc4IZkki -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:12 2025 by rpki-client