$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft File: AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft (raw, json) Hash identifier: oKii2HdO/vEYq9gi3wVcV4OAp7lt92Og2BXGLe6qaaI= Subject key identifier: 74:04:CB:C7:72:FA:47:6E:B8:77:62:D0:A1:13:ED:BB:B6:57:79:97 Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft Manifest number: 9C Signing time: Sat 09 Aug 2025 06:45:30 +0000 Manifest this update: Sat 09 Aug 2025 06:45:29 +0000 Manifest next update: Sat 16 Aug 2025 06:45:29 +0000 Files and hashes: 1: AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl (hash: 5XhGDfRjXwHny8G5set5VT2OwdGWLAJPxoYYYcwl7LA=) 2: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (hash: 6Kn2Tc8nx8bkTt0Gnf962Qu64Px5Cncotr8SgT4Ke8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Aug 9 06:45:29 2025 GMT Not After : Aug 16 06:45:29 2025 GMT Subject: CN=6896ee89-f8ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:9b:28:7f:66:af:7d:73:a7:e8:09:4d:ad: 12:bf:85:45:c5:49:91:6b:9d:08:98:c2:c2:4c:bb: 4e:cd:ab:90:c2:27:c3:28:9b:6a:e8:f1:22:04:c5: 05:81:17:48:0d:7f:6a:4d:e7:d0:de:72:90:66:7a: 50:f9:6f:f9:65:34:0e:09:49:eb:b9:5d:f9:95:1f: 21:ec:af:c3:82:43:32:49:21:a7:c2:f6:4d:47:1e: 94:c9:6a:17:5e:90:4e:ae:ae:cd:f2:a1:55:1b:49: 09:a6:4c:65:b3:3e:aa:8d:39:b7:fb:58:aa:fb:a1: d3:4e:e1:43:94:c7:f2:27:36:f8:0c:9f:c9:71:dc: ac:46:d7:28:be:e4:96:44:ae:2b:b4:cb:a4:3b:4d: 0f:5f:d6:df:2b:14:fa:f3:76:fd:e2:e9:f2:9f:20: 60:d6:00:c7:8c:8b:5e:73:58:a4:ae:09:48:02:e5: 40:7c:0e:6a:0f:a4:9a:7f:11:46:85:00:7f:b2:58: d8:c3:68:78:c1:b0:8e:9c:17:79:58:7b:df:06:d5: 38:fe:b2:c0:f8:cf:96:03:a9:4c:1b:8b:b5:3c:71: 26:36:9d:9f:83:e2:07:a0:e2:45:13:a2:fb:7e:f3: b3:0c:1e:dd:e5:b1:e3:4d:be:dd:70:96:94:c1:13: 42:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:04:CB:C7:72:FA:47:6E:B8:77:62:D0:A1:13:ED:BB:B6:57:79:97 X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:58:31:a2:74:0a:ad:7b:18:65:c3:12:37:34:54:1b:e6:e8: e8:c0:23:b6:cd:c4:82:5d:19:b9:a5:fc:25:8c:21:88:55:ee: 66:ef:a5:66:95:4d:d8:b9:21:63:4a:3d:81:55:cd:10:fa:db: a4:49:92:1c:c9:c1:55:09:12:68:35:af:a0:30:4f:ab:84:c3: 19:38:ea:eb:bc:56:a7:01:28:bd:66:e6:39:a3:f8:a2:0a:91: 2f:f2:3b:47:6a:3b:75:a1:66:6d:88:02:b7:74:b3:14:77:02: c2:fd:a8:d4:14:09:2c:a9:fd:36:8a:40:67:33:1e:e6:29:e1: 42:2b:15:99:0c:22:e7:31:ea:6e:55:9b:56:13:37:fd:44:43: 49:0d:d9:d8:18:33:ee:61:2c:04:c7:15:81:c7:b6:d5:b6:e2: 3b:9c:c7:af:ee:de:82:06:77:24:5f:c4:04:dd:f4:70:a4:bc: bf:ac:86:0a:55:d7:db:fe:a7:01:4d:bb:b5:1b:da:8f:8d:18: 7e:af:67:6a:86:c5:16:03:69:c8:2d:41:cc:ce:97:86:9f:b3: 5f:12:e4:f6:4e:c7:ad:a2:68:98:1a:e0:3f:e2:d3:4c:a3:d0: a5:f7:e5:43:96:a7:9d:c6:9c:bf:85:5f:c9:6a:1b:c7:e1:47: 1f:08:3c:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUwODA5MDY0NTI5WhcNMjUwODE2MDY0NTI5WjAYMRYwFAYD VQQDEw02ODk2ZWU4OS1mOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoubKH9mr31zp+gJTa0Sv4VFxUmRa50ImMLCTLtOzauQwifDKJtq6PEiBMUF gRdIDX9qTefQ3nKQZnpQ+W/5ZTQOCUnruV35lR8h7K/DgkMySSGnwvZNRx6UyWoX XpBOrq7N8qFVG0kJpkxlsz6qjTm3+1iq+6HTTuFDlMfyJzb4DJ/JcdysRtcovuSW RK4rtMukO00PX9bfKxT683b94unynyBg1gDHjItec1ikrglIAuVAfA5qD6SafxFG hQB/sljYw2h4wbCOnBd5WHvfBtU4/rLA+M+WA6lMG4u1PHEmNp2fg+IHoOJFE6L7 fvOzDB7d5bHjTb7dcJaUwRNCQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQEy8dy +kduuHdi0KET7bu2V3mXMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81NTc5QjlCMDg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRL c3ZtdGw5NVhyOTRiNFdmVVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoWDGidAqtexhlwxI3NFQb5ujowCO2zcSCXRm5pfwljCGIVe5m76Vm lU3YuSFjSj2BVc0Q+tukSZIcycFVCRJoNa+gME+rhMMZOOrrvFanASi9ZuY5o/ii CpEv8jtHajt1oWZtiAK3dLMUdwLC/ajUFAksqf02ikBnMx7mKeFCKxWZDCLnMepu VZtWEzf9RENJDdnYGDPuYSwExxWBx7bVtuI7nMev7t6CBnckX8QE3fRwpLy/rIYK Vdfb/qcBTbu1G9qPjRh+r2dqhsUWA2nILUHMzpeGn7NfEuT2TsetomiYGuA/4tNM o9Cl9+VDlqedxpy/hV/JahvH4UcfCDy3 -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:50 2025 by rpki-client