$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: Qh4QOt1GN73d+hr9dLdP2bSsAMA7pI7kAmrcq09YaXM= Subject key identifier: 9D:89:B2:6E:65:5E:27:4F:F8:AD:64:AF:60:46:29:F4:19:8D:97:AD Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01BD Signing time: Tue 09 Sep 2025 03:05:47 +0000 Manifest this update: Tue 09 Sep 2025 03:05:47 +0000 Manifest next update: Tue 16 Sep 2025 03:05:47 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: PZ3gqd9iUwSD1ALBRS6Ac9adSRz9gYa91HcqpsiZ3Lw=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Sep 9 03:05:47 2025 GMT Not After : Sep 16 03:05:47 2025 GMT Subject: CN=68bf998b-13bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6d:19:c9:87:5c:12:e4:8b:dc:c4:f7:f2:6c: 08:e8:b3:5c:f5:b4:87:4d:4b:81:62:7c:e4:9c:f3: 50:f2:86:8e:6f:b4:0f:ed:90:2c:0f:52:f7:be:cf: 9f:8c:c0:28:f7:97:35:f2:b5:37:02:c3:40:66:33: 68:36:78:a9:33:db:41:9a:12:18:c3:57:42:7b:14: d1:1e:09:0a:cf:5d:22:f1:86:23:d5:ea:c3:4e:2a: 2a:cc:86:96:69:4c:91:af:47:48:7d:05:dc:d8:43: 5d:66:08:46:86:d4:0f:31:ec:49:3f:20:f6:af:ed: 1b:69:69:db:cf:99:f7:87:b8:6c:45:2c:70:66:aa: 1c:32:7b:92:db:0c:a1:d6:38:0d:fb:15:d6:72:6f: 2a:44:47:f2:a1:4b:6c:e4:c6:63:d9:96:6b:87:ee: 3f:d6:d1:8d:8e:70:a2:ad:45:fd:b1:d4:41:a6:1a: b4:3a:1f:33:93:73:b0:35:fb:3b:90:b4:ec:8f:e2: 0d:14:4d:2b:57:f6:42:0d:dd:10:0a:5d:99:b8:f1: 81:73:8a:d6:55:35:1b:95:4d:6c:b5:07:6a:67:57: 91:f3:7e:5a:56:50:77:f4:7a:02:09:80:50:3e:b0: c1:d2:41:5e:49:44:bc:e3:76:b1:53:37:55:5a:67: fe:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:89:B2:6E:65:5E:27:4F:F8:AD:64:AF:60:46:29:F4:19:8D:97:AD X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:49:3e:35:27:90:ed:bb:1a:9c:e3:c9:2e:83:18:86:c1:8d: 4f:3b:ed:fc:6a:e9:e9:04:24:9c:21:75:c2:d1:29:df:15:6f: ad:c0:5e:d7:cf:0b:bf:e9:e6:f5:a3:3a:c7:f1:4b:74:78:f5: 17:3e:1f:d5:54:ee:9c:28:ae:9f:b8:6f:61:23:7f:a1:0b:04: c1:7c:09:85:31:cb:0a:aa:e4:54:af:e0:b2:58:8a:c4:d2:03: 24:74:92:68:b7:c9:0b:2c:df:7b:41:4f:e2:80:cb:ad:cd:ab: cb:3f:fc:76:bf:16:3e:27:8a:75:87:66:f4:df:ef:47:d3:47: 78:a2:b0:86:1d:04:1f:83:8c:e5:d8:51:7b:bc:7d:c9:cc:6e: 8b:e1:37:71:ed:87:eb:ce:0d:28:51:1f:34:73:bc:7c:df:44: f8:64:a8:18:1f:d5:11:bc:22:76:1f:da:30:f2:14:15:d9:73: dc:f9:b4:e6:a4:cd:91:0c:f0:2c:79:c3:1c:1d:09:53:d2:3c: 4d:42:7d:88:2f:38:23:49:ee:9f:8e:90:6b:65:f6:41:13:34: 6c:b4:87:43:45:c1:1d:82:c2:40:ef:3a:1c:ba:27:6d:18:0c: 04:dc:e8:c6:f4:be:aa:96:20:5b:a7:cf:3e:03:24:d3:e5:dc: 7d:26:d8:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwOTA5MDMwNTQ3WhcNMjUwOTE2MDMwNTQ3WjAYMRYwFAYD VQQDEw02OGJmOTk4Yi0xM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W0ZyYdcEuSL3MT38mwI6LNc9bSHTUuBYnzknPNQ8oaOb7QP7ZAsD1L3vs+f jMAo95c18rU3AsNAZjNoNnipM9tBmhIYw1dCexTRHgkKz10i8YYj1erDTioqzIaW aUyRr0dIfQXc2ENdZghGhtQPMexJPyD2r+0baWnbz5n3h7hsRSxwZqocMnuS2wyh 1jgN+xXWcm8qREfyoUts5MZj2ZZrh+4/1tGNjnCirUX9sdRBphq0Oh8zk3OwNfs7 kLTsj+INFE0rV/ZCDd0QCl2ZuPGBc4rWVTUblU1stQdqZ1eR835aVlB39HoCCYBQ PrDB0kFeSUS843axUzdVWmf+wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2Jsm5l XidP+K1kr2BGKfQZjZetMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ST41J5Dtuxqc48kugxiGwY1PO+38aunpBCScIXXC0SnfFW+twF7X zwu/6eb1ozrH8Ut0ePUXPh/VVO6cKK6fuG9hI3+hCwTBfAmFMcsKquRUr+CyWIrE 0gMkdJJot8kLLN97QU/igMutzavLP/x2vxY+J4p1h2b03+9H00d4orCGHQQfg4zl 2FF7vH3JzG6L4Tdx7Yfrzg0oUR80c7x830T4ZKgYH9URvCJ2H9ow8hQV2XPc+bTm pM2RDPAsecMcHQlT0jxNQn2ILzgjSe6fjpBrZfZBEzRstIdDRcEdgsJA7zocuidt GAwE3OjG9L6qliBbp88+AyTT5dx9Jtjq -----END CERTIFICATE-----Generated at Tue Sep 9 11:24:20 2025 by rpki-client