$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: ybI7GbtwK8q2W68YUBoQyALAjcRs2EdbNjGIUZXqZPM= Subject key identifier: A8:82:D8:72:B0:61:81:E6:71:22:47:5B:35:7A:32:8F:5E:43:40:6C Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BA0 Signing time: Mon 08 Sep 2025 15:30:59 +0000 Manifest this update: Mon 08 Sep 2025 15:30:58 +0000 Manifest next update: Mon 15 Sep 2025 15:30:58 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: kotuUZoLCOfoMSMpWvAKlOj6lH6f9OCG3xB0m5ooRcE=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11204 (0x2bc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Sep 8 15:30:58 2025 GMT Not After : Sep 15 15:30:58 2025 GMT Subject: CN=68bef6b2-5e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:04:d1:ce:6f:ae:2a:53:26:86:b4:d7:b2:df: 18:f0:6c:cd:d2:35:94:84:16:d0:54:b2:57:47:d5: 28:f3:7f:42:88:5d:7b:77:30:c2:4c:3d:63:75:74: 58:80:9f:e1:bc:7b:48:ab:31:4e:42:16:1b:c6:db: 92:0f:b1:5d:5a:69:99:dd:1c:fe:0f:7a:e5:7f:c8: 74:9c:e3:61:30:49:ce:f3:a2:fc:cd:af:ce:d7:be: 33:2d:51:92:58:7a:22:3c:8e:59:27:a5:40:d5:77: d6:25:62:dd:17:a5:69:2a:78:3e:dd:c7:c8:45:a9: 0d:e8:22:ed:78:4e:d8:df:09:a8:f8:a2:22:d2:79: 05:d5:90:56:dd:f2:80:c6:d1:ab:98:66:5f:f8:fa: 61:08:d6:44:1b:ad:b3:1a:ac:57:e9:30:8b:31:af: 1b:7e:cc:f7:35:d9:6e:30:15:f2:dc:80:1f:3c:e9: cf:02:8e:67:93:0d:79:62:9f:8b:26:88:84:03:63: c5:1b:1f:c6:8d:f5:e1:f3:10:c5:93:74:e6:4a:c1: f3:e9:b6:ea:3a:4b:70:72:89:8d:b1:aa:68:c9:53: 9d:54:63:c6:af:ac:64:d4:aa:f8:27:ad:de:fe:2d: ac:ea:23:f9:b2:91:b9:62:8b:98:1b:83:db:ed:c8: db:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:82:D8:72:B0:61:81:E6:71:22:47:5B:35:7A:32:8F:5E:43:40:6C X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:91:e7:90:3d:cc:0d:19:2f:d0:ff:60:91:99:0b:49:37:cc: c4:b5:5f:73:b3:68:fa:2d:e0:4c:72:98:1d:b8:a8:47:cc:95: c0:70:bc:66:8c:39:78:99:2c:7e:ce:33:6c:ae:b6:5e:1d:ed: 9b:68:27:03:5b:d5:ce:31:b9:4c:87:75:bc:35:b7:9f:93:97: f4:ca:ea:35:58:fb:db:84:e7:04:97:f2:dd:f8:ce:7f:9d:c6: 82:b3:06:ce:3c:01:45:39:67:00:37:30:e1:21:eb:37:dc:0d: f0:c1:3c:c4:b2:f0:55:42:c6:a3:3d:00:ce:c3:b4:04:9c:d3: 85:91:d1:a1:b3:46:e8:a6:9e:dc:21:1a:7d:4b:70:e5:20:08: 44:d0:4d:b1:f9:2d:ca:05:dd:27:4b:61:57:4a:82:a6:d5:a4: 82:1b:52:b7:fc:e5:35:93:ef:a4:96:6b:2d:9c:65:da:9f:3e: 4b:04:32:3b:d4:ea:9c:aa:c2:ef:40:de:14:49:66:77:9e:44: b6:1b:85:2b:05:70:66:b5:b5:a0:2e:32:38:8c:42:73:b3:12: 04:f4:d7:4e:08:53:4a:52:34:40:58:65:e9:e9:e0:db:41:28: 6a:da:f8:74:fd:83:14:e5:11:b5:ea:48:5b:f4:c4:61:1f:c1: 2c:4d:19:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwOTA4MTUzMDU4WhcNMjUwOTE1MTUzMDU4WjAYMRYwFAYD VQQDEw02OGJlZjZiMi01ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ATRzm+uKlMmhrTXst8Y8GzN0jWUhBbQVLJXR9Uo839CiF17dzDCTD1jdXRY gJ/hvHtIqzFOQhYbxtuSD7FdWmmZ3Rz+D3rlf8h0nONhMEnO86L8za/O174zLVGS WHoiPI5ZJ6VA1XfWJWLdF6VpKng+3cfIRakN6CLteE7Y3wmo+KIi0nkF1ZBW3fKA xtGrmGZf+PphCNZEG62zGqxX6TCLMa8bfsz3NdluMBXy3IAfPOnPAo5nkw15Yp+L JoiEA2PFGx/GjfXh8xDFk3TmSsHz6bbqOktwcomNsapoyVOdVGPGr6xk1Kr4J63e /i2s6iP5spG5YouYG4Pb7cjbIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiC2HKw YYHmcSJHWzV6Mo9eQ0BsMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANkeeQPcwNGS/Q/2CRmQtJN8zEtV9zs2j6LeBMcpgduKhHzJXAcLxm jDl4mSx+zjNsrrZeHe2baCcDW9XOMblMh3W8Nbefk5f0yuo1WPvbhOcEl/Ld+M5/ ncaCswbOPAFFOWcANzDhIes33A3wwTzEsvBVQsajPQDOw7QEnNOFkdGhs0bopp7c IRp9S3DlIAhE0E2x+S3KBd0nS2FXSoKm1aSCG1K3/OU1k++klmstnGXanz5LBDI7 1OqcqsLvQN4USWZ3nkS2G4UrBXBmtbWgLjI4jEJzsxIE9NdOCFNKUjRAWGXp6eDb QShq2vh0/YMU5RG16khb9MRhH8EsTRk6 -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:32 2025 by rpki-client