$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: 2oZ1iPrm+wX0CUwLHRaWH48HjLVlu4Ohpl8wbDsYdu4= Subject key identifier: AA:22:0E:F6:37:83:9B:97:47:D3:A8:7A:F5:DD:92:3C:C5:6F:59:03 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34B0 Signing time: Sun 10 Aug 2025 14:56:48 +0000 Manifest this update: Sun 10 Aug 2025 14:56:47 +0000 Manifest next update: Sun 17 Aug 2025 14:56:47 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: /ajSn9ossvv302H9X1Yo3Ia30vREgtfsyUE/uOLWsts=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Aug 10 14:56:47 2025 GMT Not After : Aug 17 14:56:47 2025 GMT Subject: CN=6898b32f-c770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:99:47:32:87:c5:7a:09:fa:db:0d:e9:fb:f6: f2:b3:58:a8:ad:a2:bd:dd:b9:3f:fb:a6:97:47:6f: fc:7c:8e:7c:8c:a6:e7:61:cf:a1:ce:09:56:a1:c6: 44:75:22:59:70:0b:6f:3d:bf:08:67:ab:e1:c4:75: 24:5f:f7:b4:a9:a3:0e:06:d8:58:b0:e0:cb:1a:ac: e2:5c:cf:8f:07:e7:99:f0:11:f6:45:65:92:15:d4: 7d:78:8c:4f:a5:86:da:f4:87:21:14:44:83:7e:3c: 91:f9:7d:98:26:71:ae:c0:97:51:12:e6:20:c6:c0: a8:0b:d4:0e:4e:7e:c1:6c:f2:67:64:e1:75:45:d5: 2f:aa:bf:ef:42:cf:86:d8:f9:22:02:69:75:90:b5: 0c:be:ce:5c:a9:8f:7c:65:02:80:db:d9:04:2a:84: 97:2f:dd:10:f3:e5:0a:58:33:f8:39:4e:ef:1d:2a: af:61:ce:05:a7:3b:07:1e:58:c8:e9:0a:9c:e1:a6: 4a:1d:14:7a:2a:55:f8:6e:fc:4a:8e:5b:dd:91:db: c7:8a:25:1e:62:4d:a1:57:c8:17:c9:ee:9c:c5:88: ca:2a:3c:a1:fb:63:26:17:3d:51:f4:25:45:13:8d: bc:4f:21:f3:3b:cf:9b:a2:48:ed:9f:0c:df:c1:c2: 54:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:22:0E:F6:37:83:9B:97:47:D3:A8:7A:F5:DD:92:3C:C5:6F:59:03 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:4f:fa:bb:f4:80:ea:f9:e6:ec:66:8c:2b:f3:54:f0:dd:29: d0:4d:0f:79:6d:02:70:50:74:14:ea:4a:ef:fa:c3:81:cc:bc: 85:3b:71:c8:83:3e:ee:6d:58:94:f1:76:6c:75:39:f5:5b:0c: 46:84:49:4f:8b:f8:ba:1e:82:2b:5b:3d:31:b2:1c:dc:bc:03: ef:7a:4b:1c:08:e1:74:1a:a8:24:c5:29:a2:ae:84:7d:a6:ca: c6:7c:14:65:43:1a:67:9f:28:ec:91:c0:00:2b:12:75:24:7f: 8c:84:6d:6d:c0:da:40:17:8e:e4:6c:c9:74:73:f8:9c:9f:ee: f2:a2:ab:dc:e7:ab:81:e8:e9:18:3f:c1:d3:c9:88:ed:06:40: e7:d8:8a:9f:2b:d4:db:7a:74:6f:4f:0f:03:98:04:d1:98:72: 60:a2:75:0a:1b:02:3d:31:80:f6:c1:a5:a4:b9:ee:12:33:15: 02:97:1c:ff:87:09:7a:90:d9:04:a1:0b:b3:69:80:30:54:1d: c1:3b:64:87:28:4e:6c:f0:e1:4e:da:cd:e9:b9:47:b7:66:a1: ab:4b:17:eb:bd:fd:5b:00:be:23:76:27:62:67:45:5d:25:dc: 58:ea:52:7f:d9:b2:a0:a1:bc:52:cd:70:29:5e:b1:8a:1d:6f: a7:1e:7e:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwODEwMTQ1NjQ3WhcNMjUwODE3MTQ1NjQ3WjAYMRYwFAYD VQQDEw02ODk4YjMyZi1jNzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsplHMofFegn62w3p+/bys1ioraK93bk/+6aXR2/8fI58jKbnYc+hzglWocZE dSJZcAtvPb8IZ6vhxHUkX/e0qaMOBthYsODLGqziXM+PB+eZ8BH2RWWSFdR9eIxP pYba9IchFESDfjyR+X2YJnGuwJdREuYgxsCoC9QOTn7BbPJnZOF1RdUvqr/vQs+G 2PkiAml1kLUMvs5cqY98ZQKA29kEKoSXL90Q8+UKWDP4OU7vHSqvYc4FpzsHHljI 6Qqc4aZKHRR6KlX4bvxKjlvdkdvHiiUeYk2hV8gXye6cxYjKKjyh+2MmFz1R9CVF E428TyHzO8+bokjtnwzfwcJUNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoiDvY3 g5uXR9OoevXdkjzFb1kDMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9T/q79IDq+ebsZowr81Tw3SnQTQ95bQJwUHQU6krv+sOBzLyFO3HI gz7ubViU8XZsdTn1WwxGhElPi/i6HoIrWz0xshzcvAPvekscCOF0GqgkxSmiroR9 psrGfBRlQxpnnyjskcAAKxJ1JH+MhG1twNpAF47kbMl0c/icn+7yoqvc56uB6OkY P8HTyYjtBkDn2IqfK9TbenRvTw8DmATRmHJgonUKGwI9MYD2waWkue4SMxUClxz/ hwl6kNkEoQuzaYAwVB3BO2SHKE5s8OFO2s3puUe3ZqGrSxfrvf1bAL4jdidiZ0Vd JdxY6lJ/2bKgobxSzXApXrGKHW+nHn4P -----END CERTIFICATE-----Generated at Mon Aug 11 06:18:53 2025 by rpki-client