$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: 41X6NVeX+QBIExKGAKXSAYQhQFtmvBzFsvsvVddhfD4= Subject key identifier: EA:EB:0A:89:DF:83:81:B0:88:C4:B5:09:B9:FA:E9:4A:D5:8F:52:CA Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 48 Signing time: Fri 05 Sep 2025 07:52:17 +0000 Manifest this update: Fri 05 Sep 2025 07:52:16 +0000 Manifest next update: Fri 12 Sep 2025 07:52:16 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: MjKrLiLxEAY4uCi+5LSOWx3UKHFLLL7uDFCkFB7WcNU=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Sep 5 07:52:16 2025 GMT Not After : Sep 12 07:52:16 2025 GMT Subject: CN=68ba96b1-22f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9c:72:14:6b:6a:08:fc:21:d2:0b:c5:71:e7: 79:ee:e6:e9:3d:ce:c3:56:27:5c:13:03:e2:34:ec: e0:83:35:e2:03:23:57:6f:b0:19:b4:45:02:4d:63: 6e:9e:72:a6:24:9d:ba:0c:1e:57:4c:d8:69:79:86: f1:8a:58:88:a0:94:4b:a9:a5:9a:45:09:70:d8:0e: c1:23:b8:5f:07:07:ed:87:a0:fb:c3:c2:91:52:0b: a2:e9:7e:fa:25:e7:50:01:f5:8b:7f:3c:98:50:c3: a3:76:66:ad:27:ab:7c:e6:28:66:a8:ad:e9:12:50: 11:dc:f1:c6:84:64:4d:4f:0d:ed:6c:d2:e3:ef:04: 06:0a:7e:f6:d1:b2:21:08:50:6b:b8:8e:e9:cf:c7: 61:c2:f7:ad:eb:04:9c:de:b3:8c:1b:1f:44:53:28: 8e:d4:43:ee:cb:5e:be:2d:78:b0:a6:f6:cf:b0:a4: cb:d2:a7:21:5c:de:fc:ad:c3:b4:db:01:0a:70:f6: 5f:2d:3e:48:a3:3f:dd:a3:f0:7c:44:e1:3e:75:40: e0:8e:35:82:4a:dc:7f:ea:82:6d:18:32:29:06:14: 41:dd:41:f7:32:58:06:a0:cd:92:7a:f8:21:35:54: 58:98:7b:96:8f:d6:36:e6:4e:b3:ed:8e:12:c4:9e: d1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:EB:0A:89:DF:83:81:B0:88:C4:B5:09:B9:FA:E9:4A:D5:8F:52:CA X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:42:4d:31:10:b1:74:73:6b:39:1a:77:e1:02:fe:cb:73:ef: dc:5b:44:bd:79:fc:c0:f3:b5:d5:a8:1b:c7:9d:82:3f:03:cb: bf:2e:f0:cc:c9:2b:60:34:0c:90:c2:92:94:14:60:46:83:91: 5a:cf:76:f0:20:8b:75:11:73:c1:c5:5e:94:c4:e1:d6:47:27: 31:69:6e:29:63:fc:de:b4:ae:6c:9b:27:be:8d:64:fc:53:e7: 70:fc:35:7c:c9:41:fc:db:53:c2:2d:3a:72:e9:e3:ed:d5:f9: 11:62:47:eb:36:d1:c7:ac:4c:95:15:ff:42:0f:56:d5:f8:82: f6:5c:d7:d2:6a:e4:e7:c8:69:5a:b8:b6:09:db:9f:84:23:09: c5:08:e3:4f:37:e6:c4:33:93:38:a6:1e:15:69:97:f3:34:ed: 61:e6:b6:d6:1b:70:f1:8b:86:69:62:5f:61:4e:ed:24:9e:0d: 2d:5d:24:be:7b:30:ad:98:06:47:54:95:19:25:6f:4c:41:23: 1e:48:0a:99:34:9e:15:0a:6a:22:17:be:df:0e:d7:9e:c1:7c: a5:0b:ad:50:42:78:cd:bb:aa:ac:f5:85:30:37:34:4c:7b:86: 8d:ee:b0:fa:41:2f:85:cd:33:e4:71:63:6b:34:f1:ea:fb:d0: d1:95:0f:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA5MDUwNzUyMTZaFw0yNTA5MTIwNzUyMTZaMBgxFjAUBgNV BAMTDTY4YmE5NmIxLTIyZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCenHIUa2oI/CHSC8Vx53nu5uk9zsNWJ1wTA+I07OCDNeIDI1dvsBm0RQJNY26e cqYknboMHldM2Gl5hvGKWIiglEuppZpFCXDYDsEjuF8HB+2HoPvDwpFSC6Lpfvol 51AB9Yt/PJhQw6N2Zq0nq3zmKGaorekSUBHc8caEZE1PDe1s0uPvBAYKfvbRsiEI UGu4junPx2HC963rBJzes4wbH0RTKI7UQ+7LXr4teLCm9s+wpMvSpyFc3vytw7Tb AQpw9l8tPkijP92j8HxE4T51QOCONYJK3H/qgm0YMikGFEHdQfcyWAagzZJ6+CE1 VFiYe5aP1jbmTrPtjhLEntGDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6usKid+D gbCIxLUJufrpStWPUsowHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEJCTTEQsXRzazkad+EC/stz79xbRL15/MDztdWoG8edgj8Dy78u8MzJ K2A0DJDCkpQUYEaDkVrPdvAgi3URc8HFXpTE4dZHJzFpbilj/N60rmybJ76NZPxT 53D8NXzJQfzbU8ItOnLp4+3V+RFiR+s20cesTJUV/0IPVtX4gvZc19Jq5OfIaVq4 tgnbn4QjCcUI40835sQzkzimHhVpl/M07WHmttYbcPGLhmliX2FO7SSeDS1dJL57 MK2YBkdUlRklb0xBIx5ICpk0nhUKaiIXvt8O157BfKULrVBCeM27qqz1hTA3NEx7 ho3usPpBL4XNM+RxY2s08er70NGVD1E= -----END CERTIFICATE-----Generated at Sat Sep 6 14:24:15 2025 by rpki-client