$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 2YURMvUV/L0FTAUjdgVzbCRee3OFC5eadtkogX95X0E= Subject key identifier: 71:83:E6:46:5C:E7:0A:99:00:63:C9:82:FF:36:90:F6:08:4F:E4:47 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 0102 Signing time: Fri 05 Sep 2025 05:28:19 +0000 Manifest this update: Fri 05 Sep 2025 05:28:19 +0000 Manifest next update: Fri 12 Sep 2025 05:28:19 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: FNW3lGi260QS0nWD2D2GD73W/EXPAk0BVP7oW4MkwX4=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Sep 5 05:28:19 2025 GMT Not After : Sep 12 05:28:19 2025 GMT Subject: CN=68ba74f3-5d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:97:ed:be:1f:01:b0:1d:e8:12:39:38:b6:44: 9c:0c:14:da:5b:58:c7:cc:41:fa:a9:8f:7c:bd:e3: 0d:51:aa:51:25:71:ba:27:7f:d9:84:cf:b1:f6:52: 1d:cf:d3:b6:39:9d:6e:07:3c:0a:93:26:71:17:5d: 30:44:54:d4:9b:08:9d:f3:43:c2:e7:75:ac:9f:e4: ed:da:4b:70:b9:57:af:71:d6:97:d4:57:fa:b0:dc: 61:87:5d:91:84:d9:15:ba:36:df:aa:74:2b:c7:9c: bb:5f:49:05:21:6b:b9:fa:02:70:f1:7b:f4:66:3e: 46:01:97:73:1f:b8:bd:8b:38:76:4d:de:bb:56:2b: 13:7e:5c:d1:eb:c8:c7:35:a1:80:e0:37:c1:b4:12: 95:11:2a:6c:5e:30:f2:95:e5:ea:23:6d:8a:14:bd: 91:eb:b7:1e:f1:22:da:6c:c1:08:ee:93:52:d3:06: 21:3c:fd:38:ab:c5:56:e7:d1:36:07:bc:1b:21:dc: 13:6b:85:88:4f:6f:4b:63:76:4c:32:59:ae:f1:79: d8:f5:eb:fd:a7:30:b0:e9:46:ba:b8:a6:de:b0:b8: 72:20:41:6d:ec:5a:14:5c:75:cd:df:38:43:7d:fc: 66:19:22:e1:62:05:14:64:62:dc:b4:cf:68:48:67: 7d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:83:E6:46:5C:E7:0A:99:00:63:C9:82:FF:36:90:F6:08:4F:E4:47 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:6c:9c:12:fa:5f:76:2f:1f:9f:a7:a1:f7:ba:fb:03:b3:8e: c2:64:7b:98:60:49:23:25:25:c5:f4:37:b4:a8:21:36:70:50: d0:28:4c:49:29:f3:e9:08:00:bc:90:9c:7a:64:ad:fc:69:e3: ff:8f:7a:95:42:3e:9f:44:52:59:9e:42:82:f6:c1:75:e5:6b: 3c:05:3f:1a:1c:c8:c1:c1:5b:61:14:e7:fe:da:bd:13:e0:46: c3:a0:0c:ae:51:88:a2:b2:b3:2c:a9:f2:3c:fe:97:a9:f3:ad: ad:bc:c1:87:c7:70:2b:dd:f5:f4:8b:bd:d9:6e:ad:21:fe:e6: 51:7a:7c:d5:88:c9:60:26:d5:48:0a:a4:94:d7:03:42:7e:e5: 25:87:5e:6a:6c:ca:a8:aa:fc:e5:92:7a:c1:6f:44:0a:b5:4d: 2e:f0:c7:82:bc:2b:0a:da:cd:08:e4:b1:69:af:e1:7e:34:fa: eb:16:27:39:9b:07:f2:df:27:9e:e6:d9:6e:b2:27:52:0d:6b: 96:d6:ba:19:15:26:16:b8:bd:31:8d:ff:fe:f8:bb:3c:f4:c7: 06:42:76:54:ba:e4:8a:18:bf:22:81:19:f5:35:bd:a9:d6:ed: cb:db:1b:83:0c:d1:3d:b1:f5:f5:75:36:55:d1:d8:c8:c0:73: da:72:fe:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwOTA1MDUyODE5WhcNMjUwOTEyMDUyODE5WjAYMRYwFAYD VQQDEw02OGJhNzRmMy01ZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55ftvh8BsB3oEjk4tkScDBTaW1jHzEH6qY98veMNUapRJXG6J3/ZhM+x9lId z9O2OZ1uBzwKkyZxF10wRFTUmwid80PC53Wsn+Tt2ktwuVevcdaX1Ff6sNxhh12R hNkVujbfqnQrx5y7X0kFIWu5+gJw8Xv0Zj5GAZdzH7i9izh2Td67VisTflzR68jH NaGA4DfBtBKVESpsXjDyleXqI22KFL2R67ce8SLabMEI7pNS0wYhPP04q8VW59E2 B7wbIdwTa4WIT29LY3ZMMlmu8XnY9ev9pzCw6Ua6uKbesLhyIEFt7FoUXHXN3zhD ffxmGSLhYgUUZGLctM9oSGd9dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGD5kZc 5wqZAGPJgv82kPYIT+RHMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9bJwS+l92Lx+fp6H3uvsDs47CZHuYYEkjJSXF9De0qCE2cFDQKExJ KfPpCAC8kJx6ZK38aeP/j3qVQj6fRFJZnkKC9sF15Ws8BT8aHMjBwVthFOf+2r0T 4EbDoAyuUYiisrMsqfI8/pep862tvMGHx3Ar3fX0i73Zbq0h/uZRenzViMlgJtVI CqSU1wNCfuUlh15qbMqoqvzlknrBb0QKtU0u8MeCvCsK2s0I5LFpr+F+NPrrFic5 mwfy3yee5tlusidSDWuW1roZFSYWuL0xjf/++Ls89McGQnZUuuSKGL8igRn1Nb2p 1u3L2xuDDNE9sfX1dTZV0djIwHPacv5w -----END CERTIFICATE-----Generated at Sat Sep 6 13:45:21 2025 by rpki-client