$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: lzrwIfB3gPWKLcQSTCRVi/cqKJF83fplcFwaMpYoZg0= Subject key identifier: D3:6F:9B:7A:2E:3B:0C:23:03:DE:47:12:17:FE:5D:56:AD:2F:12:AC Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 11 Signing time: Sat 09 Aug 2025 08:39:31 +0000 Manifest this update: Sat 09 Aug 2025 08:39:31 +0000 Manifest next update: Sat 16 Aug 2025 08:39:31 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: duisAefy0ao8Yv87Xi2V4X3kvXXjMOzkNElM9xQLghM=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Aug 9 08:39:31 2025 GMT Not After : Aug 16 08:39:31 2025 GMT Subject: CN=68970943-3b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4c:af:47:9f:d8:c3:5b:65:74:0f:3a:12:ce: 53:29:6e:27:c7:95:54:bb:50:0e:04:a1:7e:0e:ab: e5:db:d5:63:c4:13:6f:3b:a6:92:1e:99:b0:10:9e: 4c:5f:45:06:d5:37:f1:d4:00:0c:60:69:c7:33:7d: 81:0a:dc:f6:27:c1:e4:ba:8e:8c:85:8c:fd:95:13: 34:19:0d:e8:08:18:97:d6:51:6f:65:4c:82:9a:d2: c3:24:15:34:34:5a:e7:8b:d9:22:a8:90:cd:51:65: 67:91:be:bc:31:e2:5d:cd:81:c0:31:c7:e4:ca:02: a7:d7:f0:26:31:5d:69:bd:91:99:3d:b1:a2:6b:76: 02:66:a9:65:6a:2a:b6:45:5c:ec:d8:19:59:ce:6f: 7e:39:8f:2a:29:cf:45:7d:6e:53:70:8e:89:26:61: 67:99:36:51:35:84:12:2c:4a:a3:df:5a:fb:15:33: 16:0e:0f:50:c2:62:8e:b5:1f:65:e2:7c:10:70:b8: 17:3b:6b:f5:ac:c5:c2:a6:ff:5f:a3:34:e3:5d:f5: b0:34:28:d0:62:d5:51:d1:20:59:f7:8c:65:f6:fb: be:74:76:14:bb:c0:cc:a3:a5:c3:58:ee:83:87:20: 8e:d9:cd:94:4c:8b:00:b6:f1:dd:9e:f2:ac:cd:85: 8c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6F:9B:7A:2E:3B:0C:23:03:DE:47:12:17:FE:5D:56:AD:2F:12:AC X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:d7:89:0d:3b:7d:71:11:5e:79:1f:db:72:70:67:c8:3e:90: 56:6f:36:4d:1e:c4:33:c8:67:98:34:24:93:ac:f6:ad:86:34: 8c:45:21:88:25:82:73:aa:13:0c:e2:49:5f:0d:41:89:94:8c: 11:34:bd:b0:28:e2:29:0d:4e:b9:6b:86:93:5d:95:cf:3f:e9: 85:17:16:2d:95:d4:08:8f:8b:47:dd:dd:86:94:f0:cf:e1:c7: 7e:6c:2b:53:81:47:a9:2f:ad:38:04:45:ec:6f:7c:aa:c1:a0: 2f:3f:dc:37:0c:77:4c:3c:fc:9b:42:27:df:c5:82:e9:5b:8b: 23:ad:56:10:3d:1e:c9:60:33:b8:fe:27:1e:45:d2:49:1f:65: f2:73:40:c4:d4:60:d4:c2:ac:21:fa:ea:d0:39:2c:5b:b1:69: 1f:93:4a:85:9f:4b:14:0e:de:17:65:cb:fa:c3:40:a3:95:43: 0a:50:57:90:8f:51:8d:0d:39:5f:54:e8:47:4e:2a:e8:0a:cc: ad:15:31:5f:e2:db:1d:59:e9:55:00:09:d7:35:90:d0:05:04: 0f:23:d7:b8:af:40:5f:c1:75:20:6a:f1:52:78:d0:63:52:47: 23:80:ef:8a:16:d5:8b:be:f9:a6:5e:5a:87:92:c1:b6:e5:fb: 8d:72:89:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTA4MDkwODM5MzFaFw0yNTA4MTYwODM5MzFaMBgxFjAUBgNV BAMTDTY4OTcwOTQzLTNiMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKTK9Hn9jDW2V0DzoSzlMpbifHlVS7UA4EoX4Oq+Xb1WPEE287ppIembAQnkxf RQbVN/HUAAxgacczfYEK3PYnweS6joyFjP2VEzQZDegIGJfWUW9lTIKa0sMkFTQ0 WueL2SKokM1RZWeRvrwx4l3NgcAxx+TKAqfX8CYxXWm9kZk9saJrdgJmqWVqKrZF XOzYGVnOb345jyopz0V9blNwjokmYWeZNlE1hBIsSqPfWvsVMxYOD1DCYo61H2Xi fBBwuBc7a/WsxcKm/1+jNONd9bA0KNBi1VHRIFn3jGX2+750dhS7wMyjpcNY7oOH II7ZzZRMiwC28d2e8qzNhYzFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU02+bei47 DCMD3kcSF/5dVq0vEqwwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEXXiQ07fXERXnkf23JwZ8g+kFZvNk0exDPIZ5g0JJOs9q2GNIxFIYgl gnOqEwziSV8NQYmUjBE0vbAo4ikNTrlrhpNdlc8/6YUXFi2V1AiPi0fd3YaU8M/h x35sK1OBR6kvrTgERexvfKrBoC8/3DcMd0w8/JtCJ9/FgulbiyOtVhA9HslgM7j+ Jx5F0kkfZfJzQMTUYNTCrCH66tA5LFuxaR+TSoWfSxQO3hdly/rDQKOVQwpQV5CP UY0NOV9U6EdOKugKzK0VMV/i2x1Z6VUACdc1kNAFBA8j17ivQF/BdSBq8VJ40GNS RyOA74oW1Yu++aZeWoeSwbbl+41yiRE= -----END CERTIFICATE-----Generated at Mon Aug 11 07:44:57 2025 by rpki-client