$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: UYOsq2JWXvzzXShXmVxXdETm4rtnFv+dzhQQZwuGDN0= Subject key identifier: E6:1B:36:D2:DB:6F:9F:12:23:1F:C2:98:D0:F2:0D:9D:66:2E:8A:68 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 10A6 Signing time: Fri 08 Aug 2025 17:31:41 +0000 Manifest this update: Fri 08 Aug 2025 17:31:40 +0000 Manifest next update: Fri 15 Aug 2025 17:31:40 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: xnvppeLluakJGSNeCSO8k574cvCkutA80e4pvvKp6XI=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4287 (0x10bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Aug 8 17:31:40 2025 GMT Not After : Aug 15 17:31:40 2025 GMT Subject: CN=6896347d-b924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b3:07:be:67:4f:20:6d:a1:d6:d1:50:25:46: 52:40:1d:6d:d1:90:60:5a:73:d1:11:57:f6:25:a3: 29:83:e7:af:ba:8c:25:ab:b2:8c:0a:79:3c:ee:9c: fa:36:79:61:23:dd:11:81:86:f2:0a:a4:72:77:8a: bf:fe:e4:22:8b:1c:7a:ae:ab:5a:c2:34:67:f6:66: b7:e2:02:e2:12:c1:e2:66:26:13:07:6e:ee:6f:85: 53:7b:61:8d:06:25:e3:23:5d:2c:80:dd:13:6b:f9: 37:3d:5c:2e:d1:5b:91:44:8e:b6:d7:1b:f5:84:d3: be:c4:d3:79:24:34:22:83:e7:c0:b7:5f:46:d4:bb: fd:01:fc:8d:b1:63:f0:b8:03:02:62:79:6f:43:d3: 44:11:4f:40:af:be:f6:ca:22:45:04:26:44:07:4a: aa:62:2d:b4:00:5a:bd:d0:12:41:16:22:e3:48:1a: d9:dd:40:52:61:24:bb:8a:1e:2d:76:38:e0:22:85: e1:2b:78:b0:3a:37:83:8e:ab:1e:26:39:a4:af:84: b4:8a:65:03:98:bb:35:64:28:e2:7d:1c:e7:4f:8c: cd:2c:12:04:c9:fa:da:1e:13:b0:22:28:d2:0d:d4: c1:b9:e4:1f:49:35:dd:37:cb:06:90:82:5b:bd:2f: 77:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1B:36:D2:DB:6F:9F:12:23:1F:C2:98:D0:F2:0D:9D:66:2E:8A:68 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:7d:b6:8c:e2:e1:d6:4b:03:03:61:17:c0:89:30:34:ba:2f: bb:fb:1c:a9:45:d9:6b:51:c9:26:38:37:24:22:46:f1:1b:62: e6:f9:b4:87:68:88:3e:77:99:df:fd:40:17:89:c6:81:dc:71: ee:b5:61:9e:96:26:fa:27:0d:8c:dd:4f:46:3a:0b:19:54:cd: f3:6c:b5:e1:dc:98:1f:92:df:71:18:07:ff:65:36:15:a5:4b: 92:f7:41:b3:03:6d:af:41:6d:e4:03:27:0b:53:be:99:29:a6: e8:b8:b9:9f:bc:49:e7:48:0b:e8:31:42:d7:6a:96:b2:cd:ca: d4:2e:1d:c5:f1:5e:b0:c7:a5:78:00:56:8e:65:d6:cd:8a:fc: 40:7d:45:8e:e4:54:8d:4a:c0:3c:e5:2c:e2:32:0e:b3:94:b6: 90:3f:db:b1:ec:9b:b8:93:f3:50:ee:b7:ae:da:93:5e:ab:68: 6f:57:00:11:6a:fc:75:93:36:c6:b0:25:68:3c:d5:b7:03:89: e1:34:90:10:0e:a8:e9:56:9b:03:6c:67:13:57:8b:c5:99:ae: 1f:94:8b:b0:a6:b1:d3:b2:4c:1e:28:1e:1d:1f:e3:82:0d:d6: 69:bf:8a:84:6c:5d:a0:fa:59:9c:60:6e:b1:86:18:f9:0d:14: d7:5b:53:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUwODA4MTczMTQwWhcNMjUwODE1MTczMTQwWjAYMRYwFAYD VQQDEw02ODk2MzQ3ZC1iOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubMHvmdPIG2h1tFQJUZSQB1t0ZBgWnPREVf2JaMpg+evuowlq7KMCnk87pz6 NnlhI90RgYbyCqRyd4q//uQiixx6rqtawjRn9ma34gLiEsHiZiYTB27ub4VTe2GN BiXjI10sgN0Ta/k3PVwu0VuRRI621xv1hNO+xNN5JDQig+fAt19G1Lv9AfyNsWPw uAMCYnlvQ9NEEU9Ar772yiJFBCZEB0qqYi20AFq90BJBFiLjSBrZ3UBSYSS7ih4t djjgIoXhK3iwOjeDjqseJjmkr4S0imUDmLs1ZCjifRznT4zNLBIEyfraHhOwIijS DdTBueQfSTXdN8sGkIJbvS93+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYbNtLb b58SIx/CmNDyDZ1mLopoMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYfbaM4uHWSwMDYRfAiTA0ui+7+xypRdlrUckmODckIkbxG2Lm+bSH aIg+d5nf/UAXicaB3HHutWGelib6Jw2M3U9GOgsZVM3zbLXh3Jgfkt9xGAf/ZTYV pUuS90GzA22vQW3kAycLU76ZKabouLmfvEnnSAvoMULXapayzcrULh3F8V6wx6V4 AFaOZdbNivxAfUWO5FSNSsA85SziMg6zlLaQP9ux7Ju4k/NQ7reu2pNeq2hvVwAR avx1kzbGsCVoPNW3A4nhNJAQDqjpVpsDbGcTV4vFma4flIuwprHTskweKB4dH+OC DdZpv4qEbF2g+lmcYG6xhhj5DRTXW1Ox -----END CERTIFICATE-----Generated at Sat Aug 9 23:07:29 2025 by rpki-client