$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: z8lAUMO78t0/r6V5F0CE6fd1CcnTXYfRc4JtpenFpjs= Subject key identifier: DB:9A:F2:D5:17:40:D5:72:56:2B:7D:CE:16:8E:F7:AE:A8:51:BA:B8 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: 0112 Signing time: Sat 19 Jul 2025 05:08:51 +0000 Manifest this update: Sat 19 Jul 2025 05:08:50 +0000 Manifest next update: Sat 26 Jul 2025 05:08:50 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: bO9fRX9G3NnPtsQXZxGwKzSKv9lNiOt/PT2u0kYS1D8=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: G8LAWFDM7ySLTe/ZJTkJCLPXRoKFmaYaIusDW3bZoi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Jul 19 05:08:50 2025 GMT Not After : Jul 26 05:08:50 2025 GMT Subject: CN=687b2863-83cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dc:6e:86:46:5f:b0:1d:2f:73:df:d0:12:68: f0:95:64:24:82:d2:bb:3e:19:46:93:1b:91:14:df: ca:de:4a:f8:4f:2d:5a:de:ae:a9:fe:38:a4:f0:0c: 97:e9:d7:40:22:4c:d0:ef:4e:7d:9e:61:b7:5b:bd: 44:56:f9:88:8d:ce:c4:60:20:98:53:24:09:f0:7a: c0:37:f9:95:02:37:3b:22:62:1a:22:31:cd:cc:1d: 54:c1:a6:56:83:f4:20:f1:6f:e9:ea:da:f5:da:27: 5a:7b:a5:58:a8:2c:16:47:6b:a3:e8:2b:09:bc:32: 8d:32:79:d2:3f:62:db:ca:e0:c9:18:0c:35:93:f5: fe:8d:2f:60:d7:a3:65:14:07:fa:44:a5:17:18:9a: 7a:01:2d:bd:96:9f:01:f9:34:54:ac:8a:58:4b:1d: 34:70:ee:49:0b:91:da:f8:c4:64:06:ed:60:80:db: 3d:da:5b:2a:47:48:a5:52:fa:c7:39:28:51:54:df: 30:22:b6:c1:7b:f2:94:0d:70:05:d1:f7:2c:98:77: 6b:75:d3:f4:e5:92:9c:fe:16:0f:28:7d:ea:ce:d7: a1:6a:2b:4d:bc:d3:9a:aa:a4:bb:1b:b5:39:60:35: 60:15:78:5e:77:e3:20:d4:41:97:5f:8a:4c:7b:96: 99:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9A:F2:D5:17:40:D5:72:56:2B:7D:CE:16:8E:F7:AE:A8:51:BA:B8 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:33:fb:05:c6:9b:af:3b:16:d9:d1:e8:ff:0c:d1:b2:6c:61: 6e:51:45:b8:ac:96:af:77:09:bc:7d:37:88:f9:9f:5a:82:a2: 3a:6c:d5:bd:5c:e6:0b:4f:99:e3:17:b7:64:b1:4f:73:0b:45: 1b:0e:58:54:e6:7f:3b:51:a6:ca:6c:be:55:6d:14:77:8d:92: c8:53:e3:b2:83:90:16:0f:d5:36:f5:84:c9:39:3e:0b:dd:46: 62:c3:74:78:65:b7:cd:35:a7:3d:3a:0f:5b:56:4c:94:27:4e: 1d:f2:7e:dc:e7:d8:1a:9a:a3:ba:a6:7b:5f:31:4b:4f:16:3a: 8a:92:ef:2d:76:1b:81:37:12:d8:41:a2:b5:e4:ea:6e:6c:d2: 60:ec:17:6b:a9:66:4f:ef:10:b5:27:93:47:2c:b0:f3:61:7a: f9:72:42:bb:59:44:c4:49:a1:4f:57:27:94:f7:7f:93:b2:3d: 19:1c:2d:b8:77:33:80:c0:a4:b3:3d:23:34:c9:ec:23:ab:f3: f5:82:f8:5e:58:2d:30:b6:08:81:22:cc:70:13:da:cf:81:a0: 5b:f6:b0:44:e7:e0:ec:0b:99:a5:06:4a:c4:22:02:4f:1a:7d: f9:65:13:5e:2e:79:02:31:45:42:ee:02:35:d5:89:56:75:e6: 3c:eb:8a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUwNzE5MDUwODUwWhcNMjUwNzI2MDUwODUwWjAYMRYwFAYD VQQDEw02ODdiMjg2My04M2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNxuhkZfsB0vc9/QEmjwlWQkgtK7PhlGkxuRFN/K3kr4Ty1a3q6p/jik8AyX 6ddAIkzQ7059nmG3W71EVvmIjc7EYCCYUyQJ8HrAN/mVAjc7ImIaIjHNzB1UwaZW g/Qg8W/p6tr12idae6VYqCwWR2uj6CsJvDKNMnnSP2LbyuDJGAw1k/X+jS9g16Nl FAf6RKUXGJp6AS29lp8B+TRUrIpYSx00cO5JC5Ha+MRkBu1ggNs92lsqR0ilUvrH OShRVN8wIrbBe/KUDXAF0fcsmHdrddP05ZKc/hYPKH3qztehaitNvNOaqqS7G7U5 YDVgFXhed+Mg1EGXX4pMe5aZ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNua8tUX QNVyVit9zhaO966oUbq4MB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/M/sFxpuvOxbZ0ej/DNGybGFuUUW4rJavdwm8fTeI+Z9agqI6bNW9 XOYLT5njF7dksU9zC0UbDlhU5n87UabKbL5VbRR3jZLIU+Oyg5AWD9U29YTJOT4L 3UZiw3R4ZbfNNac9Og9bVkyUJ04d8n7c59gamqO6pntfMUtPFjqKku8tdhuBNxLY QaK15OpubNJg7BdrqWZP7xC1J5NHLLDzYXr5ckK7WUTESaFPVyeU93+Tsj0ZHC24 dzOAwKSzPSM0yewjq/P1gvheWC0wtgiBIsxwE9rPgaBb9rBE5+DsC5mlBkrEIgJP Gn35ZRNeLnkCMUVC7gI11YlWdeY864py -----END CERTIFICATE-----Generated at Sun Jul 20 22:39:20 2025 by rpki-client