$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: L5zGBXER+hFK3Tk9VmUtdcK0uKVsHXvL95bZAmbZZn0= Subject key identifier: 32:E7:74:7B:D9:95:C9:CC:65:86:0D:8E:FB:A4:63:38:60:F1:C2:51 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 01FC Signing time: Sat 09 Aug 2025 03:15:12 +0000 Manifest this update: Sat 09 Aug 2025 03:15:11 +0000 Manifest next update: Sat 16 Aug 2025 03:15:11 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: b+x1FVVUkqVXqdycdpUJkFuyCXJpq/U1hT7htuU1gVg=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: dWDbCVpbD2Fv8B28JP0RFzPPUhHwh3HRs+s/QVcOin8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Aug 9 03:15:11 2025 GMT Not After : Aug 16 03:15:11 2025 GMT Subject: CN=6896bd40-d624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8a:15:3d:37:b3:20:f4:0e:b9:67:11:f8:20: 20:e4:dc:4e:fa:75:6a:7e:e8:c1:34:41:08:63:cb: bc:d5:99:6e:7f:b1:14:52:50:39:19:c4:d4:f8:28: f4:fb:17:5c:37:58:e5:51:24:7a:72:13:c8:ed:3a: 15:10:9f:e7:cf:d3:d5:7b:61:80:18:de:e7:a9:18: 96:73:e2:fb:4d:81:78:12:f3:34:57:c3:79:47:ff: 0c:b0:d0:ff:b3:d5:61:3b:ed:5b:02:f5:b0:77:8c: ac:23:0d:5d:1f:90:b6:d3:6a:6d:73:2a:d2:8c:65: 98:af:90:3c:52:cc:0b:ba:57:f6:2c:a2:c3:78:93: 91:19:76:e9:99:bc:95:34:f0:ae:eb:5b:ce:4b:ca: 1a:cf:79:9e:61:ae:f2:06:4b:23:e6:08:ce:fc:88: 06:a6:cc:26:5a:7f:03:76:d5:ce:e3:4c:f5:1f:e1: 5a:fe:e1:d7:c1:fc:9f:88:02:7b:6c:0f:17:7b:b0: b8:0c:34:90:b5:d2:79:c7:e8:99:bf:38:41:c4:77: 8b:f9:1f:a3:26:9d:81:4a:54:11:42:df:cb:68:de: aa:49:d2:30:aa:80:af:d6:db:43:18:02:91:48:ac: b8:14:9b:a6:a9:8a:31:39:5c:33:e9:1c:d4:10:40: 57:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E7:74:7B:D9:95:C9:CC:65:86:0D:8E:FB:A4:63:38:60:F1:C2:51 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a8:57:77:aa:dc:92:31:28:8e:1d:84:dd:ce:b2:c0:b7:52: 92:56:b1:56:64:86:5b:a3:42:38:65:aa:5b:9c:af:d9:b2:ed: b5:80:ae:c7:6f:1e:28:94:e7:c0:f5:51:65:c8:7f:73:ca:41: 76:9f:29:91:71:15:7c:13:b2:db:40:4f:0d:e3:fb:65:66:b3: 54:2e:09:b9:98:b5:da:15:58:10:72:dc:b8:dd:5e:ec:8a:69: f5:a3:a3:3c:10:b2:57:75:7f:bd:f2:a9:97:62:7c:dc:34:6f: f3:c8:cb:4a:c8:40:4c:79:98:10:79:ee:78:d4:a2:37:d0:52: 18:ec:9b:b8:9c:be:d5:9f:98:cd:13:06:31:b6:49:00:63:58: 6b:ab:d3:aa:b6:01:f4:b5:f4:20:70:4a:41:dc:41:ab:be:0c: 5b:bd:1a:de:93:62:f1:b4:bb:5c:df:92:91:c8:42:16:cf:a9: e9:7b:5a:c1:f8:87:5e:ed:11:0b:50:0e:20:70:fd:07:c3:36: 95:97:63:2c:09:26:a2:95:57:84:76:5c:d2:49:bc:cd:46:ab: 16:0a:52:a3:20:a3:d2:90:ec:b7:63:04:61:07:a0:65:7d:1c: be:b8:51:01:75:41:62:da:46:48:b8:e6:82:bf:c5:96:24:b8: e5:80:5d:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUwODA5MDMxNTExWhcNMjUwODE2MDMxNTExWjAYMRYwFAYD VQQDEw02ODk2YmQ0MC1kNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4oVPTezIPQOuWcR+CAg5NxO+nVqfujBNEEIY8u81Zluf7EUUlA5GcTU+Cj0 +xdcN1jlUSR6chPI7ToVEJ/nz9PVe2GAGN7nqRiWc+L7TYF4EvM0V8N5R/8MsND/ s9VhO+1bAvWwd4ysIw1dH5C202ptcyrSjGWYr5A8UswLulf2LKLDeJORGXbpmbyV NPCu61vOS8oaz3meYa7yBksj5gjO/IgGpswmWn8DdtXO40z1H+Fa/uHXwfyfiAJ7 bA8Xe7C4DDSQtdJ5x+iZvzhBxHeL+R+jJp2BSlQRQt/LaN6qSdIwqoCv1ttDGAKR SKy4FJumqYoxOVwz6RzUEEBXsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLndHvZ lcnMZYYNjvukYzhg8cJRMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARqFd3qtySMSiOHYTdzrLAt1KSVrFWZIZbo0I4ZapbnK/Zsu21gK7H bx4olOfA9VFlyH9zykF2nymRcRV8E7LbQE8N4/tlZrNULgm5mLXaFVgQcty43V7s imn1o6M8ELJXdX+98qmXYnzcNG/zyMtKyEBMeZgQee541KI30FIY7Ju4nL7Vn5jN EwYxtkkAY1hrq9OqtgH0tfQgcEpB3EGrvgxbvRrek2LxtLtc35KRyEIWz6npe1rB +Ide7RELUA4gcP0HwzaVl2MsCSailVeEdlzSSbzNRqsWClKjIKPSkOy3YwRhB6Bl fRy+uFEBdUFi2kZIuOaCv8WWJLjlgF3A -----END CERTIFICATE-----Generated at Sun Aug 10 04:57:44 2025 by rpki-client