$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: qw0Voob9Q5uTbdfWtk+EbXiaAdf+GA+zjVAFg7yDvjg= Subject key identifier: 4A:F7:10:48:3B:CD:26:2F:4C:C4:92:43:64:0E:14:D7:05:42:70:52 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A67 Signing time: Sat 06 Sep 2025 16:24:44 +0000 Manifest this update: Sat 06 Sep 2025 16:24:44 +0000 Manifest next update: Sat 13 Sep 2025 16:24:44 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: RYxYOwsyL7O4V6CdMeUUFUAtaXz1+rC3cGC0X6Xqk6k=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6786 (0x1a82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Sep 6 16:24:44 2025 GMT Not After : Sep 13 16:24:44 2025 GMT Subject: CN=68bc604c-db76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bc:75:bc:75:00:79:d6:ca:0a:5c:fa:4f:2a: ff:2f:25:7e:6b:b4:6f:a7:bd:58:de:20:fd:9c:fa: 36:51:72:d2:c9:c4:f9:e2:11:bd:78:aa:0d:51:2e: b6:ea:96:ca:5a:c3:1c:26:c7:79:b6:f2:be:f4:e4: 75:62:74:d4:bc:14:55:83:bc:e6:05:c4:d5:5f:31: 3a:ce:1d:9d:ee:ef:59:20:8c:df:15:a3:79:d4:d8: a5:af:bc:aa:de:7a:7c:fb:9c:3d:34:08:61:25:7c: 48:51:07:4b:cf:1a:d5:9e:6f:e7:0d:c7:93:27:e9: 28:a2:e9:64:0d:3c:d2:fc:3e:a4:af:58:38:c6:3e: c9:b2:64:3b:3a:1a:fb:8c:1e:b1:fc:bb:f1:c3:4f: a8:70:1b:47:73:d4:0a:9a:be:26:b6:9d:62:7a:80: f0:a4:8e:b7:67:03:91:68:de:24:a5:1c:97:1b:5a: 3c:70:cb:1a:e3:4d:af:33:4f:f7:69:76:78:10:5d: da:a6:72:8d:20:de:bd:cc:ac:f8:7f:fd:0d:33:b1: ae:0b:88:3e:7d:ce:63:59:40:0e:0a:c7:f1:3b:2f: 6b:64:71:cb:ff:22:2e:11:8f:6e:8f:97:33:06:72: 5b:b2:84:b2:fa:17:74:c8:15:53:60:9b:f3:10:88: 1f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F7:10:48:3B:CD:26:2F:4C:C4:92:43:64:0E:14:D7:05:42:70:52 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:bb:2b:e2:07:22:36:84:85:db:b7:35:89:de:9d:b2:24:3f: a4:06:fa:0a:d1:75:a1:51:8d:2e:85:3a:cd:67:90:d6:1b:95: ea:19:b9:9a:15:ef:ec:65:0a:8b:f0:7f:04:8c:f5:7d:90:4c: 28:d6:b7:d2:b3:e2:34:2e:33:4b:30:fe:5b:7f:bd:ef:a1:ef: 23:ed:89:57:55:7f:76:dd:08:a7:93:d5:6c:64:5d:5b:81:30: 8e:6a:fd:c9:c1:55:99:7e:78:82:4e:3b:81:f3:a8:f6:14:57: 6e:d9:fe:52:7d:93:16:d7:ba:f8:c2:48:d7:c4:64:aa:c7:24: dc:3f:79:4b:ae:0a:e7:aa:bd:5d:cd:06:c3:c4:f8:c8:10:e6: b4:c2:c5:94:31:97:0e:a6:f6:28:ab:30:a7:5a:fa:83:87:eb: 17:af:96:4a:be:94:d4:7a:84:fa:2d:eb:54:4c:87:42:66:e4: 23:a5:00:e6:8b:77:58:3f:03:32:e3:fc:a9:75:70:62:b5:ae: 77:1a:18:2d:79:99:a4:1d:8f:9a:94:55:90:40:5b:93:7a:a5: df:2f:c7:44:f5:6e:af:33:be:ec:7a:aa:50:e8:63:20:04:91: 56:26:2e:62:e8:08:5b:93:9e:df:44:04:ad:71:e6:dd:5b:70: 9d:f2:08:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUwOTA2MTYyNDQ0WhcNMjUwOTEzMTYyNDQ0WjAYMRYwFAYD VQQDEw02OGJjNjA0Yy1kYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrx1vHUAedbKClz6Tyr/LyV+a7Rvp71Y3iD9nPo2UXLSycT54hG9eKoNUS62 6pbKWsMcJsd5tvK+9OR1YnTUvBRVg7zmBcTVXzE6zh2d7u9ZIIzfFaN51Nilr7yq 3np8+5w9NAhhJXxIUQdLzxrVnm/nDceTJ+kooulkDTzS/D6kr1g4xj7JsmQ7Ohr7 jB6x/Lvxw0+ocBtHc9QKmr4mtp1ieoDwpI63ZwORaN4kpRyXG1o8cMsa402vM0/3 aXZ4EF3apnKNIN69zKz4f/0NM7GuC4g+fc5jWUAOCsfxOy9rZHHL/yIuEY9uj5cz BnJbsoSy+hd0yBVTYJvzEIgfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr3EEg7 zSYvTMSSQ2QOFNcFQnBSMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYuyviByI2hIXbtzWJ3p2yJD+kBvoK0XWhUY0uhTrNZ5DWG5XqGbma Fe/sZQqL8H8EjPV9kEwo1rfSs+I0LjNLMP5bf73voe8j7YlXVX923Qink9VsZF1b gTCOav3JwVWZfniCTjuB86j2FFdu2f5SfZMW17r4wkjXxGSqxyTcP3lLrgrnqr1d zQbDxPjIEOa0wsWUMZcOpvYoqzCnWvqDh+sXr5ZKvpTUeoT6LetUTIdCZuQjpQDm i3dYPwMy4/ypdXBita53GhgteZmkHY+alFWQQFuTeqXfL8dE9W6vM77seqpQ6GMg BJFWJi5i6Ahbk57fRAStcebdW3Cd8ggs -----END CERTIFICATE-----Generated at Mon Sep 8 14:23:19 2025 by rpki-client