$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: 0d4n5kg3N9HB45VNsXD85gSSDt/OOTtalmeU7dfPlWc= Subject key identifier: B4:01:79:2F:D0:35:30:A8:BB:6A:76:49:24:6F:57:98:72:FD:F6:15 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E12 Signing time: Sat 02 Aug 2025 18:01:38 +0000 Manifest this update: Sat 02 Aug 2025 18:01:37 +0000 Manifest next update: Sat 09 Aug 2025 18:01:37 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: umn5Wv4H2qEUm117Pjjb45ZDaFkjLBFpyrj4eXW4zlA=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3627 (0xe2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Aug 2 18:01:37 2025 GMT Not After : Aug 9 18:01:37 2025 GMT Subject: CN=688e5282-ae01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:40:d1:f0:c5:a6:08:34:32:5d:02:90:51: 03:48:b5:2a:90:96:26:7e:4f:a1:9f:65:48:af:0e: a0:80:a0:65:3c:90:bf:c0:f8:cf:e2:d0:8a:c9:98: bf:03:23:b2:6b:b8:73:8d:b2:b7:d0:98:3d:15:9f: 56:b8:3f:df:60:fa:89:4a:fd:f7:08:13:e9:78:86: 5e:a3:51:f5:88:a8:28:c2:41:eb:6a:22:71:48:6d: 7b:d5:65:64:ba:ec:b5:2d:ac:47:dd:ab:e0:ea:39: 99:81:f4:37:be:06:9b:67:78:5f:f0:15:e5:77:44: c5:40:76:9e:cb:1d:a9:2a:18:35:83:04:d4:3c:0e: 93:e0:a0:33:ae:4d:dd:62:9e:6d:54:62:86:59:77: 03:41:a6:e0:88:41:2a:fe:34:af:05:cc:98:54:77: d3:6b:04:af:33:d1:c0:e9:78:af:0d:5d:5f:c6:71: db:8c:71:c1:ee:3c:cd:a6:78:58:5f:b6:45:dc:98: 6f:41:17:a2:36:89:03:19:dd:7d:14:a6:07:82:71: b6:bd:63:da:d6:43:26:d4:8b:c8:90:e4:94:c0:8e: a5:a9:ea:57:9e:b9:b6:36:da:56:07:a6:74:2c:0d: cc:c6:7e:7f:37:13:b7:25:69:48:89:5d:f0:cb:08: 02:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:01:79:2F:D0:35:30:A8:BB:6A:76:49:24:6F:57:98:72:FD:F6:15 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:2e:db:f8:e2:24:d3:2f:41:7f:cc:cb:97:70:75:9e:f9:36: 72:4a:88:bc:d1:cf:f0:15:d9:6e:09:9a:98:26:79:03:a2:4a: c9:9f:bb:9e:4c:f4:34:2d:12:41:f5:0a:f6:b3:98:a4:9a:b2: 4b:5d:8a:6a:c3:d7:b6:74:1f:96:c3:57:d1:fd:45:cf:96:7a: e1:67:03:bc:9c:3e:90:bb:1c:16:0f:53:af:2e:ba:5e:eb:f7: 59:8b:05:2e:e5:4d:ce:b1:06:50:ea:a8:ee:17:13:5f:b5:1d: 56:30:32:1b:cc:cd:6a:60:93:3a:37:d9:fe:f3:15:c6:94:3e: 24:51:9b:c4:a7:a1:ad:6f:ea:c7:ba:54:f5:84:d8:e6:6d:0d: 4e:04:c5:d4:26:05:b7:1e:4c:69:e8:e3:5f:4d:39:29:ab:b0: 60:85:c8:47:1b:3e:97:ce:e0:3f:85:8b:a9:18:13:e5:01:b6: 31:b3:e3:66:2e:38:89:81:98:d1:0a:3b:5c:2a:92:dd:85:fc: d3:65:31:dd:9e:8f:f8:a9:f4:83:27:3c:bb:76:5b:c6:97:7a: c9:17:24:ca:4b:89:90:24:85:d8:41:37:fe:7f:a5:9f:93:d9: d4:35:ad:b0:6e:bb:a9:c1:51:3b:37:7c:71:c5:95:bd:52:d7: 58:57:c7:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwODAyMTgwMTM3WhcNMjUwODA5MTgwMTM3WjAYMRYwFAYD VQQDEw02ODhlNTI4Mi1hZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlRA0fDFpgg0Ml0CkFEDSLUqkJYmfk+hn2VIrw6ggKBlPJC/wPjP4tCKyZi/ AyOya7hzjbK30Jg9FZ9WuD/fYPqJSv33CBPpeIZeo1H1iKgowkHraiJxSG171WVk uuy1LaxH3avg6jmZgfQ3vgabZ3hf8BXld0TFQHaeyx2pKhg1gwTUPA6T4KAzrk3d Yp5tVGKGWXcDQabgiEEq/jSvBcyYVHfTawSvM9HA6XivDV1fxnHbjHHB7jzNpnhY X7ZF3JhvQReiNokDGd19FKYHgnG2vWPa1kMm1IvIkOSUwI6lqepXnrm2NtpWB6Z0 LA3Mxn5/NxO3JWlIiV3wywgCZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQBeS/Q NTCou2p2SSRvV5hy/fYVMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwLtv44iTTL0F/zMuXcHWe+TZySoi80c/wFdluCZqYJnkDokrJn7ue TPQ0LRJB9Qr2s5ikmrJLXYpqw9e2dB+Ww1fR/UXPlnrhZwO8nD6QuxwWD1OvLrpe 6/dZiwUu5U3OsQZQ6qjuFxNftR1WMDIbzM1qYJM6N9n+8xXGlD4kUZvEp6Gtb+rH ulT1hNjmbQ1OBMXUJgW3Hkxp6ONfTTkpq7BghchHGz6XzuA/hYupGBPlAbYxs+Nm LjiJgZjRCjtcKpLdhfzTZTHdno/4qfSDJzy7dlvGl3rJFyTKS4mQJIXYQTf+f6Wf k9nUNa2wbrupwVE7N3xxxZW9UtdYV8eR -----END CERTIFICATE-----Generated at Mon Aug 4 16:10:56 2025 by rpki-client