$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: pT5axNQX/bQazZvLnmG9tB93XN2emj0PAzvXnuvia4k= Subject key identifier: A1:0A:50:04:86:55:50:7E:C7:84:C0:4D:2D:F8:57:F8:FD:76:BA:5B Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A58 Signing time: Fri 08 Aug 2025 16:30:23 +0000 Manifest this update: Fri 08 Aug 2025 16:30:23 +0000 Manifest next update: Fri 15 Aug 2025 16:30:23 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: A3TrgSePPZQF7mhDeFxj6DlLvW4aaAEvT6J1Ar8aKDU=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6771 (0x1a73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Aug 8 16:30:23 2025 GMT Not After : Aug 15 16:30:23 2025 GMT Subject: CN=6896261f-22f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:27:3f:4f:97:c0:f6:26:93:31:9e:13:72: ab:ec:35:45:1d:18:f8:aa:ab:db:d9:3e:fb:b0:ff: 63:89:26:58:15:0a:35:aa:ab:60:c0:0b:99:93:52: 52:e2:db:62:a3:ec:21:93:da:10:46:73:71:ba:f2: ce:61:14:c4:9a:2b:6f:ab:9a:59:fb:9f:5b:75:26: 0c:e4:13:b0:53:50:de:d3:db:4a:01:5e:da:d6:99: 17:93:46:53:30:eb:77:38:2b:d7:33:e6:45:1c:fb: 0e:93:90:6b:fd:e4:20:09:8d:6e:67:07:45:9b:da: 44:75:74:13:7d:00:4a:72:d8:f6:6d:0d:c0:dc:14: 8f:1d:4c:75:da:02:f5:b2:16:fc:27:c0:22:d2:4e: 37:3e:43:9c:b1:d6:5d:db:7b:6b:17:44:e0:13:fb: 33:e0:e9:80:18:c3:94:16:04:34:1d:cb:00:49:4d: f9:ed:64:62:6b:89:f2:f2:4d:34:a4:fa:4f:27:b0: 4c:71:4c:99:e0:18:9c:a5:3e:af:d1:68:83:55:f9: 1f:f0:8f:a3:ef:3c:fc:ee:8c:71:89:27:67:dc:42: 9e:7c:0f:e1:c0:48:3b:c1:52:76:95:fc:74:5c:63: 5d:0f:a2:fa:0f:04:4e:9c:c8:29:7f:b6:23:86:7e: 3a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0A:50:04:86:55:50:7E:C7:84:C0:4D:2D:F8:57:F8:FD:76:BA:5B X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:01:85:f3:3d:49:ba:55:d1:6f:45:98:51:73:2c:77:c7:d4: 69:96:55:20:fe:71:ed:29:93:56:1d:e6:9f:a0:c6:cc:19:0d: ca:9a:cc:da:3c:f8:d9:2d:71:4f:ab:65:74:1b:23:e0:76:6c: 3f:c0:a5:4f:df:33:13:c9:62:15:9e:b1:c4:01:1a:e5:82:88: e1:f0:ad:6b:86:9f:26:95:c9:ed:08:64:e9:13:3d:ab:df:e1: 2d:e4:d0:42:b3:26:2b:02:99:cd:eb:72:e1:e8:34:20:ab:45: 32:47:a3:f4:22:fa:24:7d:16:b9:df:75:86:d1:a4:da:22:bb: 9c:d2:be:6d:b5:a3:1a:1d:21:f6:a7:e7:39:e7:c9:26:20:77: eb:fe:f7:7d:c9:d7:a0:29:a5:91:70:19:0d:06:54:1c:6c:75: 0c:f2:65:c4:93:18:20:9a:b2:cd:50:25:02:11:63:a0:eb:99: 99:81:f0:a2:1b:9a:d9:be:d2:1c:a1:3f:44:39:c1:66:c0:fb: c0:3c:f4:1f:e4:79:33:8c:03:bd:f0:2b:cb:73:a9:11:d5:40: d7:2d:f3:29:98:75:79:b5:ab:2e:17:1b:12:ca:b2:95:7a:c7: a9:89:3e:54:7e:be:e3:11:99:f4:b6:58:72:c7:c0:22:4b:4b: 06:8d:3e:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUwODA4MTYzMDIzWhcNMjUwODE1MTYzMDIzWjAYMRYwFAYD VQQDEw02ODk2MjYxZi0yMmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NAnP0+XwPYmkzGeE3Kr7DVFHRj4qqvb2T77sP9jiSZYFQo1qqtgwAuZk1JS 4ttio+whk9oQRnNxuvLOYRTEmitvq5pZ+59bdSYM5BOwU1De09tKAV7a1pkXk0ZT MOt3OCvXM+ZFHPsOk5Br/eQgCY1uZwdFm9pEdXQTfQBKctj2bQ3A3BSPHUx12gL1 shb8J8Ai0k43PkOcsdZd23trF0TgE/sz4OmAGMOUFgQ0HcsASU357WRia4ny8k00 pPpPJ7BMcUyZ4BicpT6v0WiDVfkf8I+j7zz87oxxiSdn3EKefA/hwEg7wVJ2lfx0 XGNdD6L6DwROnMgpf7Yjhn462QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEKUASG VVB+x4TATS34V/j9drpbMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHAYXzPUm6VdFvRZhRcyx3x9RpllUg/nHtKZNWHeafoMbMGQ3Kmsza PPjZLXFPq2V0GyPgdmw/wKVP3zMTyWIVnrHEARrlgojh8K1rhp8mlcntCGTpEz2r 3+Et5NBCsyYrApnN63Lh6DQgq0UyR6P0IvokfRa533WG0aTaIruc0r5ttaMaHSH2 p+c558kmIHfr/vd9ydegKaWRcBkNBlQcbHUM8mXEkxggmrLNUCUCEWOg65mZgfCi G5rZvtIcoT9EOcFmwPvAPPQf5HkzjAO98CvLc6kR1UDXLfMpmHV5tasuFxsSyrKV esepiT5Ufr7jEZn0tlhyx8AiS0sGjT6i -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:21 2025 by rpki-client