$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft File: C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft (raw, json) Hash identifier: k2GYK7tV1XNf+IldPL6UIHYhJFkZagyMaJu71a5wTrM= Subject key identifier: E9:63:2E:51:70:FB:46:AA:17:5D:60:CD:13:FB:32:6F:73:8A:9A:F1 Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 24E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft Manifest number: 24CB Signing time: Thu 04 Sep 2025 15:51:32 +0000 Manifest this update: Thu 04 Sep 2025 15:51:31 +0000 Manifest next update: Thu 11 Sep 2025 15:51:31 +0000 Files and hashes: 1: C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl (hash: cgX7p+XO41Jjb8MyZDpACH5WRt21o1JJgdsouAGL8iQ=) 2: EBC23D9A041E11ECA959B779C4F9AE02.roa (hash: CE+jGBv1hmvPpnjcj/lZMkYxYBXBElFQLbmvrCZoU3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9440 (0x24e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4, serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Sep 4 15:51:31 2025 GMT Not After : Sep 11 15:51:31 2025 GMT Subject: CN=68b9b584-d630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2c:ba:f9:8f:3d:cb:cc:1b:9b:51:ae:dd:8e: 40:d9:61:b4:ac:db:66:66:10:e4:8b:78:94:2a:ee: 28:b8:52:b7:45:ee:15:25:4f:4b:5b:55:12:ea:91: a6:3b:62:be:9d:3b:2a:56:09:eb:3a:20:3f:f8:7d: 78:4e:1b:c8:dc:e3:84:76:dc:c0:07:16:fa:4d:a8: 7d:40:44:70:58:da:5d:2e:c8:f5:c6:06:38:e8:f2: 33:c4:c7:d6:a0:6a:f8:98:10:69:33:2b:29:f8:9d: e4:a2:05:8a:de:8b:3b:19:b7:e3:ae:c4:33:de:dc: 84:ae:8c:0a:bf:74:a7:2f:8f:6e:1e:94:34:15:e0: e7:d2:bc:ab:11:95:5e:75:3a:75:33:1f:f7:5b:dd: 34:0f:32:11:9b:de:ed:aa:7c:61:67:9d:67:0c:6c: 36:e7:06:af:d4:e9:b5:56:6e:a7:fa:ba:95:f5:80: 10:4a:52:13:d3:14:77:41:56:07:80:ef:eb:4b:08: 92:fb:cc:53:e2:5f:8c:5d:57:5e:2d:b6:39:59:47: 62:a8:18:10:76:08:e0:eb:2f:a9:af:a5:d2:a4:0e: d7:bc:a3:ab:49:cb:0a:dc:8d:e2:41:48:eb:c1:7c: 72:7f:05:d8:60:3c:c9:6a:64:30:88:45:12:fd:75: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:63:2E:51:70:FB:46:AA:17:5D:60:CD:13:FB:32:6F:73:8A:9A:F1 X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:3b:2b:33:08:45:50:26:7b:9f:af:a2:ce:7d:0e:a5:86:98: 20:ac:da:04:e6:ee:02:1b:e2:f9:7b:56:ac:fc:b5:ab:01:33: 03:18:8e:88:d4:27:77:24:e4:4f:4a:c9:b8:dc:3e:90:7f:e1: ba:b0:69:e9:ce:e5:3c:10:ef:db:70:5d:29:78:57:b0:f7:da: 74:0e:a3:3f:dd:99:bb:1e:87:7b:0d:19:3b:f8:45:9a:b0:ed: a3:29:6a:18:aa:51:a2:92:53:21:4e:71:0f:8c:69:af:e4:c7: ed:0e:1f:63:1c:c1:84:15:7a:65:9e:97:bc:e5:f2:04:c7:91: 0f:20:8d:65:0b:37:e8:db:75:17:99:af:60:ac:ae:7c:f3:f8: 00:89:db:61:ee:c4:4d:51:8c:69:cd:e1:08:38:b8:a5:44:5f: 36:3c:9c:5d:05:1a:d2:fc:57:89:f9:da:62:55:80:c2:9c:25: 01:0d:93:02:99:97:03:00:96:94:98:1f:3d:c1:4b:1e:a6:42: ce:a9:9f:87:79:9c:ea:a3:7c:f9:06:c3:57:03:3d:f6:0a:4a: d0:d2:14:c1:0a:4d:b5:89:c9:a7:07:67:80:9b:fe:af:a3:78: d8:64:bf:1c:b3:fd:95:3a:23:2f:99:c0:c2:b8:8c:15:30:03: 4d:8d:f6:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjUwOTA0MTU1MTMxWhcNMjUwOTExMTU1MTMxWjAYMRYwFAYD VQQDEw02OGI5YjU4NC1kNjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziy6+Y89y8wbm1Gu3Y5A2WG0rNtmZhDki3iUKu4ouFK3Re4VJU9LW1US6pGm O2K+nTsqVgnrOiA/+H14ThvI3OOEdtzABxb6Tah9QERwWNpdLsj1xgY46PIzxMfW oGr4mBBpMysp+J3kogWK3os7GbfjrsQz3tyErowKv3SnL49uHpQ0FeDn0ryrEZVe dTp1Mx/3W900DzIRm97tqnxhZ51nDGw25wav1Om1Vm6n+rqV9YAQSlIT0xR3QVYH gO/rSwiS+8xT4l+MXVdeLbY5WUdiqBgQdgjg6y+pr6XSpA7XvKOrScsK3I3iQUjr wXxyfwXYYDzJamQwiEUS/XXrOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOljLlFw +0aqF11gzRP7Mm9ziprxMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNGNC8xN0FDMkE3MDQxOUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1 UE11Wk1PajJ5TTdNSkZpMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfOyszCEVQJnufr6LOfQ6lhpggrNoE5u4CG+L5e1as/LWrATMDGI6I 1Cd3JORPSsm43D6Qf+G6sGnpzuU8EO/bcF0peFew99p0DqM/3Zm7Hod7DRk7+EWa sO2jKWoYqlGiklMhTnEPjGmv5MftDh9jHMGEFXplnpe85fIEx5EPII1lCzfo23UX ma9grK588/gAidth7sRNUYxpzeEIOLilRF82PJxdBRrS/FeJ+dpiVYDCnCUBDZMC mZcDAJaUmB89wUsepkLOqZ+HeZzqo3z5BsNXAz32CkrQ0hTBCk21icmnB2eAm/6v o3jYZL8cs/2VOiMvmcDCuIwVMANNjfac -----END CERTIFICATE-----Generated at Fri Sep 5 18:36:06 2025 by rpki-client