$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft (raw, json) Hash identifier: x7WltDVtDKDoFlVb5IH24hoTZrOqW/WVD4t4mIDXIcs= Subject key identifier: 08:64:78:4A:E8:7F:34:24:55:2E:3E:04:45:A7:A5:3A:54:6A:91:E6 Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft Manifest number: 025C Signing time: Fri 19 Sep 2025 02:12:45 +0000 Manifest this update: Fri 19 Sep 2025 02:12:44 +0000 Manifest next update: Fri 26 Sep 2025 02:12:44 +0000 Files and hashes: 1: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl (hash: 7HcNiFHRMC3zhMJLBzsB/wRIOi5VQLtfEJDM164fGU4=) 2: E9399E722E7211EDAE100C3DC4F9AE02.roa (hash: D0U/04LVw+4iZc1LWZSDtE7FA2UlXVxHf7VWpO51OsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848, serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: Sep 19 02:12:44 2025 GMT Not After : Sep 26 02:12:44 2025 GMT Subject: CN=68ccbc1c-281c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:19:7f:ff:b6:27:1a:cb:3b:25:ec:a3:cc:a4: 3f:2e:b8:d8:0a:ee:11:b0:5b:07:b6:dd:b6:ef:7a: 77:90:e9:0d:5c:ae:60:87:03:a3:0f:39:d6:d7:18: f1:61:0e:c3:46:ac:7b:c3:2c:57:be:19:be:aa:c6: cf:5d:f6:8d:c8:af:b6:29:34:70:5a:7c:63:0a:52: f2:cf:b5:5c:f9:7d:32:cd:1e:00:67:db:9d:27:97: 47:bc:45:bd:bf:c8:28:f1:19:25:51:4e:5b:63:d1: 4b:13:99:ee:a7:f3:28:a5:96:d6:24:d9:47:bd:d0: b7:1d:45:17:dd:72:55:ed:9f:49:be:95:b1:e0:ea: 2d:17:96:42:9e:b2:20:59:ea:c8:e7:32:fa:80:44: d0:17:3f:bc:68:29:2e:5b:43:3e:ea:f6:c9:6f:48: 3c:ec:38:a0:45:93:69:02:9c:0a:0a:1e:05:c9:ae: cb:fa:ed:8f:09:2c:2a:79:3b:63:db:35:5b:1d:50: 8b:94:ef:13:bd:46:67:f4:a1:e1:06:74:2e:8a:3e: 2c:9d:6d:c8:9a:a5:63:df:b0:65:a2:e2:a7:59:b7: bc:d2:ea:14:b4:1a:f5:b2:f3:d1:17:f0:cc:d1:a9: c6:df:1e:90:07:3d:6d:92:c7:93:98:98:5b:ed:15: b5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:64:78:4A:E8:7F:34:24:55:2E:3E:04:45:A7:A5:3A:54:6A:91:E6 X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:94:bc:ae:da:d0:0d:14:69:11:58:8d:81:3d:a1:37:5d:4e: 2b:95:24:de:22:c1:78:ce:b1:0d:67:66:23:aa:39:a9:42:01: 4f:61:cc:cc:65:4f:56:74:81:e0:20:96:71:a7:68:71:b3:9c: ab:80:2b:b7:67:4a:32:46:f3:1c:4d:51:73:aa:0b:48:ce:fb: 52:bc:8a:ce:b6:a1:e5:d8:24:af:00:9a:01:23:56:dd:25:65: 74:2c:47:be:41:51:dc:f6:e6:50:f9:f8:ca:c6:60:0d:21:69: 7a:7f:32:e5:8c:29:5e:20:7f:49:f5:2f:7a:6f:68:ba:36:c2: ce:c9:13:9f:58:2f:7b:0a:65:1b:ab:b5:c4:98:87:e6:3d:e4: 8e:7e:77:3d:5b:65:c1:d9:a8:37:3b:59:9f:30:42:7e:ac:ad: cc:f0:34:79:1c:64:7c:d5:e9:68:da:12:a5:42:59:98:d3:0a: 95:e2:08:3f:59:a8:1b:c6:cc:e0:d8:5e:6e:49:78:20:35:69: 17:ee:0d:e6:b3:b2:e1:bf:74:ec:35:44:17:04:35:dd:3b:7d: 30:df:0b:7d:77:c1:a8:a8:02:4c:91:8f:13:c7:c2:4b:a4:b8: fc:8f:3f:81:20:48:32:d8:c4:f7:a6:a3:fd:30:a3:7e:9c:55: a7:43:49:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjUwOTE5MDIxMjQ0WhcNMjUwOTI2MDIxMjQ0WjAYMRYwFAYD VQQDEw02OGNjYmMxYy0yODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xl//7YnGss7JeyjzKQ/LrjYCu4RsFsHtt2273p3kOkNXK5ghwOjDznW1xjx YQ7DRqx7wyxXvhm+qsbPXfaNyK+2KTRwWnxjClLyz7Vc+X0yzR4AZ9udJ5dHvEW9 v8go8RklUU5bY9FLE5nup/MopZbWJNlHvdC3HUUX3XJV7Z9JvpWx4OotF5ZCnrIg WerI5zL6gETQFz+8aCkuW0M+6vbJb0g87DigRZNpApwKCh4Fya7L+u2PCSwqeTtj 2zVbHVCLlO8TvUZn9KHhBnQuij4snW3ImqVj37BlouKnWbe80uoUtBr1svPRF/DM 0anG3x6QBz1tkseTmJhb7RW1QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhkeEro fzQkVS4+BEWnpTpUapHmMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjg0OC9DQURBQjdCMjJFNkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxO MU1Id2phRzhGcF91V05jeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQlLyu2tANFGkRWI2BPaE3XU4rlSTeIsF4zrENZ2YjqjmpQgFPYczM ZU9WdIHgIJZxp2hxs5yrgCu3Z0oyRvMcTVFzqgtIzvtSvIrOtqHl2CSvAJoBI1bd JWV0LEe+QVHc9uZQ+fjKxmANIWl6fzLljCleIH9J9S96b2i6NsLOyROfWC97CmUb q7XEmIfmPeSOfnc9W2XB2ag3O1mfMEJ+rK3M8DR5HGR81elo2hKlQlmY0wqV4gg/ Wagbxszg2F5uSXggNWkX7g3ms7Lhv3TsNUQXBDXdO30w3wt9d8GoqAJMkY8Tx8JL pLj8jz+BIEgy2MT3pqP9MKN+nFWnQ0lr -----END CERTIFICATE-----Generated at Fri Sep 19 14:29:02 2025 by rpki-client