$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: 5P6MPUxRSUhty1iWIA9u2ssME0DTM1mTUNbh3m8J4JM= Subject key identifier: 56:E8:90:E4:9E:FA:89:FC:49:EA:91:34:F8:26:E1:65:5D:22:2E:08 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02AE Signing time: Mon 11 Aug 2025 01:45:34 +0000 Manifest this update: Mon 11 Aug 2025 01:45:33 +0000 Manifest next update: Mon 18 Aug 2025 01:45:33 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: rX/oce/flj8y7NQhGF0GR8PZXgjYF5s+n7HRef+GP+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Aug 11 01:45:33 2025 GMT Not After : Aug 18 01:45:33 2025 GMT Subject: CN=68994b3d-e59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a7:ef:8f:60:b4:d0:35:37:d3:6c:e7:88:57: e0:20:8b:9b:86:e7:b7:3d:67:c1:ad:94:29:e8:dd: a1:ea:28:25:b0:bb:16:c0:3d:fb:4f:9f:ea:5c:72: 6e:66:e5:9b:23:fd:a9:9a:c4:4e:4d:01:87:35:d9: c0:cc:19:1c:82:b4:48:0b:60:b7:87:08:22:42:d6: 21:4a:06:e5:d3:cc:14:09:de:09:c8:96:24:56:0f: 73:3e:f8:f3:4d:3a:b3:2e:45:0a:32:d2:f1:02:35: a3:0c:7e:0a:26:70:20:56:c7:34:81:d3:83:26:d4: 58:e1:21:50:16:c5:80:e2:a9:5f:77:28:63:17:de: 2e:92:14:18:8c:1e:c9:4d:71:dd:91:22:41:43:f2: 65:9b:5b:a6:7a:ee:c1:cb:95:26:8e:a0:1f:f8:64: c6:b3:42:78:62:f8:da:f2:e1:f8:b2:5b:36:ad:ea: b5:b9:10:2c:0a:54:32:13:8d:fe:ad:0a:d1:40:b0: b3:6e:44:9e:e0:ba:a6:0a:dc:bd:e4:88:b3:48:5e: 94:b3:d8:35:98:3a:6a:05:0a:0a:ba:c5:42:19:36: f8:c3:2c:f4:e5:a2:f3:47:6d:64:a2:73:39:82:87: 00:4d:bb:10:c2:dc:90:69:2d:52:c0:bd:88:c3:2f: 8b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E8:90:E4:9E:FA:89:FC:49:EA:91:34:F8:26:E1:65:5D:22:2E:08 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:49:c2:82:d0:ff:e9:4c:b5:43:63:2b:85:74:65:d9:7f:24: ae:03:30:4f:f0:81:65:57:d2:b3:30:67:3d:ff:c4:f8:39:60: bb:d3:d8:80:32:dd:e9:94:a7:90:0b:97:1e:74:53:59:5e:8e: 1b:83:2f:f9:e5:ea:7b:55:bd:cc:64:89:58:bc:42:59:d0:d4: d5:36:68:fd:a7:1d:44:3b:3e:69:98:fb:14:3a:14:48:72:69: 66:c3:72:9f:f8:a8:c1:9e:db:7a:c4:5c:3d:a4:bc:0b:d3:a0: 3e:0a:f8:70:ac:de:6b:65:b8:0f:9e:6b:a4:9d:a1:b7:88:d5: ce:08:1f:88:1e:b4:78:f6:98:bc:61:37:a7:8d:d0:a5:f8:aa: 60:96:f5:7e:72:0d:29:d1:6c:24:50:7b:89:42:4a:4d:19:5d: 15:2f:55:ec:22:d1:81:67:09:07:1c:79:86:c0:e0:2a:93:33: b3:25:48:6c:2f:a9:25:3f:51:d3:45:c1:d5:90:7c:a5:f9:79: 06:da:8a:98:48:80:ec:4b:9c:c2:a5:5c:89:e1:6d:b8:cf:d0: 29:ec:de:8a:c3:4b:49:b5:5a:1e:a1:1b:7f:d1:f9:fd:9d:6d: bb:b9:99:58:97:0a:a9:c5:64:25:84:7f:d2:8c:0a:d9:fd:1a: 99:4c:9c:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUwODExMDE0NTMzWhcNMjUwODE4MDE0NTMzWjAYMRYwFAYD VQQDEw02ODk5NGIzZC1lNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qfvj2C00DU302zniFfgIIubhue3PWfBrZQp6N2h6iglsLsWwD37T5/qXHJu ZuWbI/2pmsROTQGHNdnAzBkcgrRIC2C3hwgiQtYhSgbl08wUCd4JyJYkVg9zPvjz TTqzLkUKMtLxAjWjDH4KJnAgVsc0gdODJtRY4SFQFsWA4qlfdyhjF94ukhQYjB7J TXHdkSJBQ/Jlm1umeu7By5UmjqAf+GTGs0J4Yvja8uH4sls2req1uRAsClQyE43+ rQrRQLCzbkSe4LqmCty95IizSF6Us9g1mDpqBQoKusVCGTb4wyz05aLzR21konM5 gocATbsQwtyQaS1SwL2Iwy+LaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbokOSe +on8SeqRNPgm4WVdIi4IMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEScKC0P/pTLVDYyuFdGXZfySuAzBP8IFlV9KzMGc9/8T4OWC709iA Mt3plKeQC5cedFNZXo4bgy/55ep7Vb3MZIlYvEJZ0NTVNmj9px1EOz5pmPsUOhRI cmlmw3Kf+KjBntt6xFw9pLwL06A+CvhwrN5rZbgPnmuknaG3iNXOCB+IHrR49pi8 YTenjdCl+KpglvV+cg0p0WwkUHuJQkpNGV0VL1XsItGBZwkHHHmGwOAqkzOzJUhs L6klP1HTRcHVkHyl+XkG2oqYSIDsS5zCpVyJ4W24z9Ap7N6Kw0tJtVoeoRt/0fn9 nW27uZlYlwqpxWQlhH/SjArZ/RqZTJzi -----END CERTIFICATE-----Generated at Mon Aug 11 10:03:07 2025 by rpki-client