$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: 7F47yX/Et67eKcuRTxgVACSsjs7dRWkwe7TCE8WWjdE= Subject key identifier: F4:4C:43:79:29:BB:B2:89:A3:10:2F:7E:30:2A:97:4A:0D:34:33:01 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 0350 Signing time: Sun 03 Aug 2025 01:33:45 +0000 Manifest this update: Sun 03 Aug 2025 01:33:44 +0000 Manifest next update: Sun 10 Aug 2025 01:33:44 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: PDMXCcz4ar13/3ULeB0yMmoQkP/kwh4hllxSngSK2a4=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: YDV59vkDGMUjv69JwCXS0TevAXxNgXIE57WFOFZhJBo=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: bm0eX3arzl/Vd2cVSRTEVj0uPXCCRL3I0GcsJSw9xWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 01:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Aug 3 01:33:44 2025 GMT Not After : Aug 10 01:33:44 2025 GMT Subject: CN=688ebc78-c733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:67:81:96:e6:b8:d0:f1:4d:46:80:51:fa: f9:95:1a:9f:e3:f4:28:41:f1:ff:4c:c1:32:3e:4f: 8b:b0:fc:56:c9:0f:d9:be:9a:bf:8f:5f:be:03:08: 6d:70:24:01:9d:f3:9e:ff:77:a1:b6:31:cf:e5:3f: b7:c3:93:4b:b7:7d:82:cf:66:51:80:31:b0:66:9a: 33:fe:f5:56:75:71:99:c4:4f:f2:3f:c3:36:cf:6e: d4:06:ac:de:51:a7:cc:00:ef:39:d4:d8:0d:b5:60: f0:50:93:6c:31:dc:a7:31:46:cd:25:2c:f0:4e:61: 4c:5b:6d:e2:80:f3:9e:37:a1:2b:32:a0:9e:89:90: dc:ed:f4:1c:f7:6b:e2:f8:d0:58:7d:85:34:8a:31: a8:71:5b:78:1d:6d:53:b5:70:63:db:7c:ed:07:68: 05:82:a9:e6:fd:f3:ec:8e:34:56:3a:fe:e5:0d:46: 4e:c6:af:35:7e:37:81:47:4b:03:3d:7c:ea:36:d0: a3:e0:8d:0a:6e:22:11:5f:f0:71:48:74:73:a3:a5: 02:25:70:0a:37:9e:8c:50:72:fc:df:02:ca:f1:f7: 2f:be:b4:c5:b2:d3:a6:3b:22:8d:21:68:79:c1:4b: 9b:ca:da:e1:e1:dd:2f:fb:2e:ff:7a:f2:67:f3:04: 81:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4C:43:79:29:BB:B2:89:A3:10:2F:7E:30:2A:97:4A:0D:34:33:01 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:26:79:7b:d3:5b:b5:38:90:92:0a:3a:c4:aa:f6:0e:28:54: 8c:32:e1:de:3d:4a:16:63:60:88:4d:84:19:07:ff:01:1e:5b: 42:a9:f5:c4:8b:62:83:84:cb:1a:77:ce:1c:7e:d0:58:0b:dc: 2e:c1:07:10:a6:83:70:bd:a4:22:90:1a:06:de:d9:5b:1b:cf: a3:2b:d9:38:ad:01:fc:a0:56:97:51:e8:1e:9a:21:12:e8:0b: 43:f1:db:f7:19:e6:50:46:df:10:b9:1c:f7:c5:d3:5c:e4:6f: de:de:05:90:9f:54:dd:66:37:e1:b5:a1:41:1b:8a:46:e0:41: 74:8d:9a:ab:81:6a:3d:c5:9e:e9:65:92:79:aa:be:5c:05:f8: 53:84:ab:55:66:d7:73:81:4e:fe:59:e8:48:e4:74:67:aa:fe: b7:c6:e7:3b:7c:9b:8f:9c:5c:24:4d:50:96:ad:87:bd:9b:e9: 6b:23:ab:19:09:41:6c:aa:e8:aa:e3:e6:78:50:13:d1:72:a7: 2a:c7:ec:b3:50:e5:1e:45:70:25:74:97:f3:29:d4:0c:1f:f1: af:9f:66:ff:07:7f:64:bd:4f:92:3c:ae:84:e4:03:6b:8d:14: a2:3f:2b:93:61:94:2a:25:97:e5:b9:f0:56:25:70:35:cf:6f: ba:2a:01:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUwODAzMDEzMzQ0WhcNMjUwODEwMDEzMzQ0WjAYMRYwFAYD VQQDEw02ODhlYmM3OC1jNzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbFngZbmuNDxTUaAUfr5lRqf4/QoQfH/TMEyPk+LsPxWyQ/Zvpq/j1++Awht cCQBnfOe/3ehtjHP5T+3w5NLt32Cz2ZRgDGwZpoz/vVWdXGZxE/yP8M2z27UBqze UafMAO851NgNtWDwUJNsMdynMUbNJSzwTmFMW23igPOeN6ErMqCeiZDc7fQc92vi +NBYfYU0ijGocVt4HW1TtXBj23ztB2gFgqnm/fPsjjRWOv7lDUZOxq81fjeBR0sD PXzqNtCj4I0KbiIRX/BxSHRzo6UCJXAKN56MUHL83wLK8fcvvrTFstOmOyKNIWh5 wUubytrh4d0v+y7/evJn8wSByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRMQ3kp u7KJoxAvfjAql0oNNDMBMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Jnl701u1OJCSCjrEqvYOKFSMMuHePUoWY2CITYQZB/8BHltCqfXE i2KDhMsad84cftBYC9wuwQcQpoNwvaQikBoG3tlbG8+jK9k4rQH8oFaXUegemiES 6AtD8dv3GeZQRt8QuRz3xdNc5G/e3gWQn1TdZjfhtaFBG4pG4EF0jZqrgWo9xZ7p ZZJ5qr5cBfhThKtVZtdzgU7+WehI5HRnqv63xuc7fJuPnFwkTVCWrYe9m+lrI6sZ CUFsquiq4+Z4UBPRcqcqx+yzUOUeRXAldJfzKdQMH/Gvn2b/B39kvU+SPK6E5ANr jRSiPyuTYZQqJZflufBWJXA1z2+6KgGO -----END CERTIFICATE-----Generated at Mon Aug 4 16:11:47 2025 by rpki-client