$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft File: 2IDvJluUDjHf7RxCrvUUS2RBNxc.mft (raw, json) Hash identifier: lsaUKqDdg8VbLaCPGRykbezz06IMiVpgMiE+OUcx2rs= Subject key identifier: E6:6A:15:2F:6D:85:DC:F4:33:1B:33:70:AC:32:29:75:26:25:B6:B5 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft Manifest number: 01D2 Signing time: Fri 05 Sep 2025 09:38:53 +0000 Manifest this update: Fri 05 Sep 2025 09:38:52 +0000 Manifest next update: Fri 12 Sep 2025 09:38:52 +0000 Files and hashes: 1: 2IDvJluUDjHf7RxCrvUUS2RBNxc.crl (hash: mvRPB+Lw4uPBv6DiwDuV0T2huA3E/ESL2muLAL+7rFk=) 2: 61663178F88311EDB1DF555DC4F9AE02.roa (hash: k3HEJ9wvbu9ApcNN6SolNcyih9kgJ7eIKA9lpd9mU50=) 3: 43E961E013E711EE8ECA2D3CC4F9AE02.roa (hash: +KpPTrvUJ0fhW59fFGMaGeaxnMDX3lJjTA7XrEuSgaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 09:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Sep 5 09:38:52 2025 GMT Not After : Sep 12 09:38:52 2025 GMT Subject: CN=68baafac-ab22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:23:0a:cb:9a:4b:1b:30:e9:41:b0:8a:f8:60: 8b:af:8f:e6:04:a4:19:3a:cd:2a:9e:e3:00:aa:b7: e0:04:c9:7a:49:53:5d:33:11:5c:43:8a:ec:0e:c8: 66:16:ea:c6:20:f6:fc:d0:3f:81:37:3a:0a:e6:f2: ca:3b:61:b0:8b:a9:96:3f:64:a9:e1:a2:80:44:8e: f1:d7:95:b4:16:d9:12:0b:32:9b:ae:d8:1a:5c:e7: 0a:ab:67:45:2d:fa:8e:d4:b4:f6:76:db:ad:cd:d8: 5d:3a:a8:9e:c0:02:87:6d:b5:12:90:58:d2:3c:5e: 01:82:50:b4:1f:d0:2b:a3:07:e0:c1:d3:21:94:35: 60:33:ea:d2:a7:29:9a:82:7b:b1:f9:ba:b4:6a:06: 08:28:6b:b2:88:11:97:60:ca:5f:45:ac:b1:cd:31: 23:c6:75:0a:63:5e:94:6b:7a:04:fd:3a:9e:3c:1d: 15:be:8d:05:8b:2c:11:56:db:96:60:64:d0:ef:ce: b3:7a:45:4d:85:eb:70:7e:5d:38:dc:4a:03:7e:db: 46:66:7b:b2:88:2f:5e:c7:8d:09:49:f0:e3:7d:41: af:bd:57:81:d4:bf:eb:be:eb:4c:ad:4f:07:c5:8f: d9:e6:07:5e:13:fb:9a:3b:af:1d:de:6e:ba:53:c8: df:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6A:15:2F:6D:85:DC:F4:33:1B:33:70:AC:32:29:75:26:25:B6:B5 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:4d:6b:a4:19:53:02:c8:11:ed:89:83:80:38:54:0d:06:16: 9a:26:e4:ce:c0:66:e9:a9:f8:ae:bd:05:b0:f5:bb:b4:0c:cc: 87:04:61:9a:25:31:6f:0d:bb:fc:b5:41:52:f6:3b:bd:3d:aa: e4:db:0a:2a:47:f4:f5:fc:58:3e:7d:ab:a1:f3:68:50:76:0d: 3a:ba:0c:5d:80:c0:b1:f2:1c:7e:0d:11:7d:6d:b7:9c:59:58: de:e3:ad:df:df:50:69:95:28:d7:25:68:59:e8:2d:c6:eb:cd: 93:38:fc:bb:12:f9:b4:cc:70:41:7a:58:ea:53:a5:12:51:12: 50:fc:7e:e2:dd:3c:55:a9:d3:bb:fe:0e:0d:a9:15:db:3b:26: 89:9a:fa:e5:0a:5a:8c:3d:8f:6b:85:9f:1b:96:5b:5e:00:37: 40:2d:9f:74:a0:00:16:2d:66:9d:d7:2d:2a:50:84:d1:4f:0a: 44:db:6e:e6:ca:bd:b3:86:69:88:df:6b:57:51:99:36:32:6c: f1:93:93:67:f4:79:44:76:d7:6f:17:17:12:8e:64:a3:63:6b: 52:b9:18:27:81:3e:9e:ab:e7:63:d3:b0:27:94:cf:7d:02:fa: d8:6f:50:ee:4f:e3:56:fa:5a:6e:77:b7:e0:e0:f8:58:bb:e5: 49:49:21:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjUwOTA1MDkzODUyWhcNMjUwOTEyMDkzODUyWjAYMRYwFAYD VQQDEw02OGJhYWZhYy1hYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiMKy5pLGzDpQbCK+GCLr4/mBKQZOs0qnuMAqrfgBMl6SVNdMxFcQ4rsDshm FurGIPb80D+BNzoK5vLKO2Gwi6mWP2Sp4aKARI7x15W0FtkSCzKbrtgaXOcKq2dF LfqO1LT2dtutzdhdOqiewAKHbbUSkFjSPF4BglC0H9ArowfgwdMhlDVgM+rSpyma gnux+bq0agYIKGuyiBGXYMpfRayxzTEjxnUKY16Ua3oE/TqePB0Vvo0FiywRVtuW YGTQ786zekVNhetwfl043EoDfttGZnuyiC9ex40JSfDjfUGvvVeB1L/rvutMrU8H xY/Z5gdeE/uaO68d3m66U8jfHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZqFS9t hdz0MxszcKwyKXUmJba1MB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82MUJBRDhFMEY4N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURq SGY3UnhDcnZVVVMyUkJOeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOTWukGVMCyBHtiYOAOFQNBhaaJuTOwGbpqfiuvQWw9bu0DMyHBGGa JTFvDbv8tUFS9ju9Park2woqR/T1/Fg+fauh82hQdg06ugxdgMCx8hx+DRF9bbec WVje463f31BplSjXJWhZ6C3G682TOPy7Evm0zHBBeljqU6USURJQ/H7i3TxVqdO7 /g4NqRXbOyaJmvrlClqMPY9rhZ8bllteADdALZ90oAAWLWad1y0qUITRTwpE227m yr2zhmmI32tXUZk2Mmzxk5Nn9HlEdtdvFxcSjmSjY2tSuRgngT6eq+dj07AnlM99 AvrYb1DuT+NW+lpud7fg4PhYu+VJSSGV -----END CERTIFICATE-----Generated at Sat Sep 6 14:15:44 2025 by rpki-client