$ rpki-client -vvf rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft File: 2cYV0QtB5uVphlzKp_4oDRKOMRw.mft (raw, json) Hash identifier: Ct7VsQq1UWQx1h5ICIa2s2sw51iORacnfREjIcQ09Bs= Subject key identifier: E5:74:4C:82:CC:61:95:21:CC:7B:BB:EE:27:E2:E1:48:3C:13:AF:23 Authority key identifier: D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C Certificate issuer: /CN=A91293E9/serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft Manifest number: 0676 Signing time: Fri 08 Aug 2025 22:52:14 +0000 Manifest this update: Fri 08 Aug 2025 22:52:13 +0000 Manifest next update: Fri 15 Aug 2025 22:52:13 +0000 Files and hashes: 1: 2cYV0QtB5uVphlzKp_4oDRKOMRw.crl (hash: 83si/2yL6eKFsr8ctG3Dcv9CIiDbT7OjHPlMpXFHAog=) 2: 1AC1982A8C6A11EB91832D52C4F9AE02.roa (hash: fSfAPi/bUi9k15IOKds7b6yXEktxoZjFwfG44RAp5IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293E9, serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Validity Not Before: Aug 8 22:52:13 2025 GMT Not After : Aug 15 22:52:13 2025 GMT Subject: CN=68967f9d-2f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:d1:33:e0:51:7a:55:77:70:79:be:9b:70: 69:77:fa:e6:f7:93:1f:55:68:2c:4b:55:ad:a6:42: 4a:b6:03:3a:9b:5e:28:71:1a:f4:c8:e6:b4:f3:ef: ea:ea:54:af:1b:9b:61:20:1e:75:ae:87:37:22:87: fe:dd:f6:13:1f:c7:1a:9f:0f:2a:a8:8b:bb:45:c0: 39:04:c8:4f:79:a8:14:0c:d0:5c:56:8d:17:90:0d: 2b:bb:70:3d:cf:cd:2f:45:24:4b:29:cf:e6:5a:e4: 62:49:ac:fc:55:d4:2f:d6:c1:c3:3a:52:16:62:94: 6b:92:57:bf:00:1c:3e:a3:4d:b6:b9:47:98:f7:ca: 0d:5a:66:84:2a:2c:c6:f0:9c:de:85:7c:60:21:6c: 8c:70:a5:30:a5:46:86:13:15:e4:6e:89:a1:62:5a: 04:51:f9:6a:58:f5:2d:a6:12:0a:1b:8c:dd:f5:b0: 17:87:0c:68:0a:bb:9b:b7:1c:76:4a:07:c9:29:8c: e6:b3:b2:7e:68:2e:69:84:ca:14:f4:c5:48:52:5b: 46:97:25:13:e3:54:99:7b:bc:2e:c7:3b:c2:da:2d: fc:00:20:80:e4:82:a0:cb:a3:9a:f2:b0:8c:52:7a: 72:ab:b8:80:1d:cb:9d:16:d5:0e:02:14:3e:ef:94: 4d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:74:4C:82:CC:61:95:21:CC:7B:BB:EE:27:E2:E1:48:3C:13:AF:23 X509v3 Authority Key Identifier: keyid:D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:9f:3a:a1:7c:de:06:2a:e6:ed:2a:21:d9:20:a8:c2:5f:d0: 1e:9f:81:29:b2:15:c5:a7:58:99:e7:6c:ae:f7:9f:d1:6b:6f: 38:c5:2a:e7:c6:f2:53:81:8e:58:85:fa:4d:ac:40:c9:2c:c6: 06:c5:41:08:87:2d:96:f8:7b:54:7d:7c:10:96:4a:b4:9e:de: b1:83:52:32:61:9b:32:24:de:23:cd:51:57:7e:d1:da:84:aa: b2:0e:8a:ca:9f:db:be:7c:e6:22:f7:6b:79:a3:83:6e:30:09: 79:d7:c1:88:fb:61:68:14:7d:31:75:c0:d6:fe:4b:02:f0:35: 6f:d4:3a:75:72:3c:8c:a3:bd:df:a5:37:a8:8c:e3:d6:70:4c: 70:9c:9c:7d:ec:3f:cc:23:3c:2b:29:49:00:3e:be:f9:b8:f6: 89:ce:03:5d:4d:07:b4:95:36:08:8b:07:6d:55:a5:c8:9c:2f: 27:74:c0:46:8c:36:e6:cd:be:23:63:d6:a3:34:d0:7a:89:cd: 4d:f0:70:6f:30:10:6b:b2:29:e7:8c:ca:c8:64:74:f3:24:fc: b2:3a:11:1b:ed:e3:b8:0f:5d:b7:18:45:d9:2f:99:57:e6:1b: 1b:30:e3:12:8f:72:91:80:c0:66:97:ac:85:6e:07:9f:e7:b7: 7d:59:e0:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRTkxMTAvBgNVBAUTKEQ5QzYxNUQxMEI0MUU2RTU2OTg2NUNDQUE3RkUyODBE MTI4RTMxMUMwHhcNMjUwODA4MjI1MjEzWhcNMjUwODE1MjI1MjEzWjAYMRYwFAYD VQQDEw02ODk2N2Y5ZC0yZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4rRM+BRelV3cHm+m3Bpd/rm95MfVWgsS1WtpkJKtgM6m14ocRr0yOa08+/q 6lSvG5thIB51roc3Iof+3fYTH8canw8qqIu7RcA5BMhPeagUDNBcVo0XkA0ru3A9 z80vRSRLKc/mWuRiSaz8VdQv1sHDOlIWYpRrkle/ABw+o022uUeY98oNWmaEKizG 8JzehXxgIWyMcKUwpUaGExXkbomhYloEUflqWPUtphIKG4zd9bAXhwxoCrubtxx2 SgfJKYzms7J+aC5phMoU9MVIUltGlyUT41SZe7wuxzvC2i38ACCA5IKgy6Oa8rCM Unpyq7iAHcudFtUOAhQ+75RN8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV0TILM YZUhzHu77ifi4Ug8E68jMB8GA1UdIwQYMBaAFNnGFdELQeblaYZcyqf+KA0SjjEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNFOS84M0ExNzRGQzhD NjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1VnBobHpLcF80b0RSS09N UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjWVYwUXRCNXVWcGhsektwXzRvRFJLT01Sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTNFOS84M0ExNzRGQzhDNjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1 VnBobHpLcF80b0RSS09NUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2nzqhfN4GKubtKiHZIKjCX9Aen4EpshXFp1iZ52yu95/Ra284xSrn xvJTgY5YhfpNrEDJLMYGxUEIhy2W+HtUfXwQlkq0nt6xg1IyYZsyJN4jzVFXftHa hKqyDorKn9u+fOYi92t5o4NuMAl518GI+2FoFH0xdcDW/ksC8DVv1Dp1cjyMo73f pTeojOPWcExwnJx97D/MIzwrKUkAPr75uPaJzgNdTQe0lTYIiwdtVaXInC8ndMBG jDbmzb4jY9ajNNB6ic1N8HBvMBBrsinnjMrIZHTzJPyyOhEb7eO4D123GEXZL5lX 5hsbMOMSj3KRgMBml6yFbgef57d9WeCd -----END CERTIFICATE-----Generated at Sat Aug 9 03:00:24 2025 by rpki-client