$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: G+alXcgfTspV0eRIEK8bhpxWMiot7Eq7RM41kP6Jcjo= Subject key identifier: CF:29:23:A6:F0:E2:64:B8:1B:67:F4:2B:44:8E:46:CE:2A:EB:69:13 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D6B Signing time: Sun 10 Aug 2025 15:28:11 +0000 Manifest this update: Sun 10 Aug 2025 15:28:10 +0000 Manifest next update: Sun 17 Aug 2025 15:28:10 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: 0PspGBGFSW0rKnDaWELWYRRf3pALE+UrVqaErY4BAE8=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11664 (0x2d90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Aug 10 15:28:10 2025 GMT Not After : Aug 17 15:28:10 2025 GMT Subject: CN=6898ba8a-4d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:43:58:63:7e:6c:83:f1:51:17:b1:87:53:91: 92:31:f6:11:a7:c8:63:92:57:21:86:f5:43:db:49: 3f:3b:f6:54:b0:8b:63:4f:10:29:f8:b0:65:78:d6: 64:1b:fe:cc:52:ec:17:33:16:89:d0:29:84:10:50: c8:ed:c3:cc:be:a5:ad:7f:61:63:b0:e5:47:59:7c: a4:2d:e2:fa:c0:52:27:44:72:9e:e8:fb:63:30:32: 43:96:68:c0:1a:9f:d0:47:e4:12:af:9e:1f:20:d2: c3:b1:f7:08:35:b1:e5:12:17:be:80:33:98:0b:5f: d3:ba:55:c2:8a:a0:ee:9f:3b:84:e5:52:78:2a:ba: 03:80:10:0b:20:d1:c3:b8:fc:08:d0:a2:ac:f2:75: 23:0a:61:c4:3a:e2:6d:42:c8:c1:c5:c5:c1:f9:11: 13:49:cf:0c:6b:97:8b:08:33:01:d4:84:e9:9b:ef: ed:e8:39:ee:fe:72:b8:4c:18:61:1a:e3:e9:8e:fc: 1d:5b:55:8c:de:cf:be:03:90:00:38:ae:e0:01:aa: 79:be:9d:ad:01:3f:86:3b:3d:7a:7a:63:06:b3:18: e2:47:ef:1e:55:70:24:80:ae:06:d7:91:7b:09:3d: 8d:16:4c:e5:70:0e:ab:10:74:e4:94:a2:a7:3d:b2: 95:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:29:23:A6:F0:E2:64:B8:1B:67:F4:2B:44:8E:46:CE:2A:EB:69:13 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:8f:44:18:66:82:44:5b:8c:86:f1:95:10:71:97:b8:30:a8: 24:c2:a0:da:b2:72:e1:22:b1:0d:e6:f8:ed:e0:83:cc:ed:b5: 86:2f:53:01:45:a3:6e:f7:ab:8c:7a:49:e1:92:ff:8f:93:ca: 5c:0c:34:e2:88:2c:0d:fc:97:4b:1c:f6:53:77:65:5c:8c:b1: 95:25:76:a0:80:e8:83:be:9d:7c:b5:b5:a3:53:d9:e4:a6:5c: 06:83:ba:3e:84:18:75:d2:7e:cc:47:f8:e6:44:3a:af:e1:9b: 56:10:b5:58:15:79:ea:53:af:64:c9:fd:2b:3e:71:c7:97:5a: 6e:35:9c:f5:3f:a5:a0:a2:a3:ec:24:ad:5b:1f:f0:34:f3:27: d6:78:5e:e6:3d:e5:b1:e3:da:f3:c0:55:a5:66:05:1b:d2:c8: 65:8b:f7:4c:5e:3d:12:ce:46:5b:90:ae:6c:6d:77:c4:bd:ad: 1a:b9:83:19:a3:89:b5:4f:32:c8:bc:3f:7b:93:34:8a:e2:c3: 1a:29:81:06:b8:87:3b:4e:79:b4:8f:bf:26:81:cf:1b:62:6b: 7c:eb:83:f9:87:16:25:07:30:c5:8b:27:e3:ae:c0:f0:98:2a: c0:ba:e9:87:5a:cc:87:fe:8d:9e:dd:21:17:76:cf:9b:5b:94: 65:c1:2d:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwODEwMTUyODEwWhcNMjUwODE3MTUyODEwWjAYMRYwFAYD VQQDEw02ODk4YmE4YS00ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UNYY35sg/FRF7GHU5GSMfYRp8hjklchhvVD20k/O/ZUsItjTxAp+LBleNZk G/7MUuwXMxaJ0CmEEFDI7cPMvqWtf2FjsOVHWXykLeL6wFInRHKe6PtjMDJDlmjA Gp/QR+QSr54fINLDsfcINbHlEhe+gDOYC1/TulXCiqDunzuE5VJ4KroDgBALINHD uPwI0KKs8nUjCmHEOuJtQsjBxcXB+RETSc8Ma5eLCDMB1ITpm+/t6Dnu/nK4TBhh GuPpjvwdW1WM3s++A5AAOK7gAap5vp2tAT+GOz16emMGsxjiR+8eVXAkgK4G15F7 CT2NFkzlcA6rEHTklKKnPbKV/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8pI6bw 4mS4G2f0K0SORs4q62kTMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgj0QYZoJEW4yG8ZUQcZe4MKgkwqDasnLhIrEN5vjt4IPM7bWGL1MB RaNu96uMeknhkv+Pk8pcDDTiiCwN/JdLHPZTd2VcjLGVJXaggOiDvp18tbWjU9nk plwGg7o+hBh10n7MR/jmRDqv4ZtWELVYFXnqU69kyf0rPnHHl1puNZz1P6WgoqPs JK1bH/A08yfWeF7mPeWx49rzwFWlZgUb0shli/dMXj0SzkZbkK5sbXfEva0auYMZ o4m1TzLIvD97kzSK4sMaKYEGuIc7Tnm0j78mgc8bYmt864P5hxYlBzDFiyfjrsDw mCrAuumHWsyH/o2e3SEXds+bW5RlwS30 -----END CERTIFICATE-----Generated at Sun Aug 10 18:20:59 2025 by rpki-client