$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: +wHfaVOw0l87rrlMC0/nL6AdSd45aNe3kPqb//85mCM= Subject key identifier: 7E:A1:BC:29:39:AA:F1:56:74:6F:D4:B2:5D:0E:FA:09:81:78:E5:7C Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: 012B Signing time: Fri 05 Sep 2025 05:01:50 +0000 Manifest this update: Fri 05 Sep 2025 05:01:49 +0000 Manifest next update: Fri 12 Sep 2025 05:01:49 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: mQ8jsdo76CsdTAdftjPN1yWG3jeJ6QWpe/uUT2+Jbvw=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: G8LAWFDM7ySLTe/ZJTkJCLPXRoKFmaYaIusDW3bZoi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Sep 5 05:01:49 2025 GMT Not After : Sep 12 05:01:49 2025 GMT Subject: CN=68ba6ebd-edad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:20:55:66:cc:4a:08:78:8f:b3:c3:1b:b9:f7: 2b:24:b6:24:c4:99:72:43:99:e3:15:e9:0c:1b:37: 38:3e:e9:96:af:80:99:7f:80:2b:4f:4f:3a:17:3f: 7f:9d:9e:92:7f:f5:ad:bf:cd:ed:f9:5f:3f:dd:e8: f1:09:dd:e6:27:f0:35:ac:9a:ab:77:4a:9e:3c:13: d5:ca:93:45:86:78:08:3c:3e:6c:d2:a5:75:8a:3c: ca:b4:39:ac:b3:c7:0e:d2:d0:0d:80:92:e3:5a:a5: c2:4a:22:08:e3:7e:15:e6:09:44:26:30:66:0f:5b: f2:62:da:e8:45:27:ec:dd:3c:32:a6:f7:72:13:cf: e6:64:12:8c:54:a6:98:64:65:f7:d5:6d:46:51:8b: 63:38:b7:c0:57:5e:f8:8f:00:62:36:62:b8:aa:d5: e6:89:b4:02:ce:a3:24:d0:5c:b7:c3:b1:04:6c:0d: c7:20:f9:6d:26:fe:c8:81:a1:ae:4b:3f:ef:46:3a: 30:cb:f3:8c:71:dc:6c:6f:d2:95:6a:ba:4a:a5:2d: 36:3a:4a:9c:40:e5:a2:3d:8a:42:be:ff:7f:d3:aa: 50:3b:d9:9f:fd:fa:5c:4a:07:69:bb:81:33:db:dc: 43:29:0d:df:7c:db:16:e5:7d:27:53:be:51:58:08: 01:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A1:BC:29:39:AA:F1:56:74:6F:D4:B2:5D:0E:FA:09:81:78:E5:7C X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0b:97:43:9c:57:58:8d:53:fb:0d:03:8e:40:80:3b:c0:f6: e9:4b:68:ac:28:70:8e:43:2f:6f:f3:a0:fc:f5:40:05:d0:cf: 8d:fa:a5:1f:e9:43:da:bb:94:fe:f3:11:bc:0b:1a:d1:60:51: e9:8c:9d:bf:07:46:0c:a0:73:70:20:f7:22:85:99:5e:45:4e: 56:d1:1f:20:6d:d1:7a:b8:a5:27:87:26:86:de:a2:12:31:2e: 37:50:c2:7c:d1:29:e9:73:7b:46:22:50:84:27:18:0f:92:5a: f3:e9:4f:8a:07:01:21:62:04:7c:3e:20:04:3e:84:07:4f:08: f0:49:70:c5:cf:44:d9:38:6e:25:1a:29:95:3a:b4:42:e9:f3: ee:1d:01:c8:71:6b:f6:0a:9d:2e:60:1e:98:5a:da:f9:e9:27: b3:6c:6c:56:ec:96:d1:29:7b:13:7c:7d:75:af:32:43:2a:73: ba:96:69:92:63:b3:9a:f8:b0:6a:22:2a:c4:d7:04:7b:d4:1e: 80:bd:70:62:0b:94:02:95:9d:7a:47:ac:08:6c:2d:64:c5:51: 7e:38:df:d8:2d:6e:ff:4d:c6:d4:bb:9c:a4:25:bc:02:8e:bb: c7:34:a6:9e:f5:ac:af:fc:ce:df:a3:dc:00:2f:d7:4e:6a:f9: 91:a4:73:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUwOTA1MDUwMTQ5WhcNMjUwOTEyMDUwMTQ5WjAYMRYwFAYD VQQDEw02OGJhNmViZC1lZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SBVZsxKCHiPs8MbufcrJLYkxJlyQ5njFekMGzc4PumWr4CZf4ArT086Fz9/ nZ6Sf/Wtv83t+V8/3ejxCd3mJ/A1rJqrd0qePBPVypNFhngIPD5s0qV1ijzKtDms s8cO0tANgJLjWqXCSiII434V5glEJjBmD1vyYtroRSfs3TwypvdyE8/mZBKMVKaY ZGX31W1GUYtjOLfAV174jwBiNmK4qtXmibQCzqMk0Fy3w7EEbA3HIPltJv7IgaGu Sz/vRjowy/OMcdxsb9KVarpKpS02OkqcQOWiPYpCvv9/06pQO9mf/fpcSgdpu4Ez 29xDKQ3ffNsW5X0nU75RWAgBawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6hvCk5 qvFWdG/Usl0O+gmBeOV8MB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiC5dDnFdYjVP7DQOOQIA7wPbpS2isKHCOQy9v86D89UAF0M+N+qUf 6UPau5T+8xG8CxrRYFHpjJ2/B0YMoHNwIPcihZleRU5W0R8gbdF6uKUnhyaG3qIS MS43UMJ80Snpc3tGIlCEJxgPklrz6U+KBwEhYgR8PiAEPoQHTwjwSXDFz0TZOG4l GimVOrRC6fPuHQHIcWv2Cp0uYB6YWtr56SezbGxW7JbRKXsTfH11rzJDKnO6lmmS Y7Oa+LBqIirE1wR71B6AvXBiC5QClZ16R6wIbC1kxVF+ON/YLW7/TcbUu5ykJbwC jrvHNKae9ayv/M7fo9wAL9dOavmRpHOR -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:16 2025 by rpki-client