$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: m+zejaJyR8EFRxPFio8qzt5hoW+H1EQQNFXlmdzt3zw= Subject key identifier: CF:5C:78:2D:FC:63:CD:38:62:BE:3C:06:85:13:CD:11:C3:94:A9:8B Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 0391 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 038B Signing time: Sat 09 Aug 2025 01:21:49 +0000 Manifest this update: Sat 09 Aug 2025 01:21:49 +0000 Manifest next update: Sat 16 Aug 2025 01:21:48 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: fjlikxX1PCHq7FZ9V2QOAT2BIByE67y2y0ZcXzKyHTM=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 913 (0x391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Aug 9 01:21:49 2025 GMT Not After : Aug 16 01:21:48 2025 GMT Subject: CN=6896a2ad-0938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:7a:ac:b7:b1:ae:32:5d:3c:68:ca:87:b7: 0e:74:00:90:81:4c:7f:75:a1:bd:c5:6c:cb:d7:c6: 77:ea:0f:14:c3:a4:02:fb:1d:5b:6c:1d:5c:e6:20: c5:de:72:e3:3c:b2:10:fd:74:9a:4d:68:1d:ea:43: 02:03:be:87:c6:65:e3:67:8f:e6:3b:e1:cf:e8:87: 26:ac:fc:fa:99:06:b5:32:51:44:e3:0f:89:0b:73: 4a:bb:09:ee:21:f1:e8:f4:a9:06:11:87:dd:cb:1c: ce:ef:94:6d:cb:b0:e4:95:f4:7b:53:63:bd:12:3a: 0e:f9:db:f1:4f:23:f0:66:00:3c:1e:f3:a8:1b:d6: ad:f6:48:77:60:cb:1e:18:1e:79:f8:44:b9:71:ce: 95:f4:f3:55:31:97:5f:ab:ce:c3:5c:ec:6f:d0:8a: ee:57:a3:9d:70:b6:03:58:b4:11:32:3e:f0:96:7a: ed:a3:c1:e9:d6:14:d1:ae:cf:59:24:01:05:02:bd: f1:98:20:d2:73:f2:c6:a0:73:0e:a4:10:04:a9:64: dd:36:06:34:3f:59:e6:a7:31:c8:b0:47:87:e7:23: 50:29:65:52:e5:4e:50:6e:1e:fc:03:f0:ec:e3:a4: 0b:43:0c:27:24:d2:ff:c2:13:fe:ff:84:08:ec:ee: ee:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5C:78:2D:FC:63:CD:38:62:BE:3C:06:85:13:CD:11:C3:94:A9:8B X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:0c:dc:c6:64:4d:ce:1e:32:aa:53:35:57:9b:c5:4f:d9:16: 91:ab:61:72:5b:19:99:11:c5:c8:11:d9:50:bc:f2:ca:75:5a: 25:ac:38:8e:8e:f3:51:e5:0e:7a:7d:bf:9c:f2:e6:32:0f:53: 16:d3:24:df:df:c6:55:b0:b6:6a:a8:c8:bb:81:3c:a1:1a:1a: 2c:db:cf:5b:8a:27:04:85:f0:97:eb:f6:20:57:39:0b:56:3f: b4:fe:ec:2c:56:08:46:91:17:69:94:d8:d5:cb:37:5c:9c:ed: 64:24:37:a6:5c:c5:94:e7:65:63:76:24:43:2b:cd:eb:de:16: e4:b8:af:7e:35:fc:2f:63:7b:d1:33:c5:bf:ad:29:23:87:69: cb:bf:51:b2:ae:a5:8f:44:f1:a1:e9:87:ef:7b:6a:c9:01:e8: 84:98:74:86:dd:02:91:c1:8c:8b:4f:82:7e:1b:c5:0e:cc:19: e9:fa:48:8e:9a:a4:68:11:c8:9a:68:bd:45:5a:50:12:3a:8f: 52:a1:d0:2f:6e:62:86:b4:ec:23:69:f4:8f:45:b7:ee:d7:6b: c9:dd:20:c3:8f:2b:c5:53:71:7d:2a:f1:15:b6:8c:ff:aa:19: 02:5e:e5:ab:19:57:71:51:cc:d9:07:68:a6:4f:3d:ec:8f:7b: 21:18:e5:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUwODA5MDEyMTQ5WhcNMjUwODE2MDEyMTQ4WjAYMRYwFAYD VQQDEw02ODk2YTJhZC0wOTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypR6rLexrjJdPGjKh7cOdACQgUx/daG9xWzL18Z36g8Uw6QC+x1bbB1c5iDF 3nLjPLIQ/XSaTWgd6kMCA76HxmXjZ4/mO+HP6IcmrPz6mQa1MlFE4w+JC3NKuwnu IfHo9KkGEYfdyxzO75Rty7DklfR7U2O9EjoO+dvxTyPwZgA8HvOoG9at9kh3YMse GB55+ES5cc6V9PNVMZdfq87DXOxv0IruV6OdcLYDWLQRMj7wlnrto8Hp1hTRrs9Z JAEFAr3xmCDSc/LGoHMOpBAEqWTdNgY0P1nmpzHIsEeH5yNQKWVS5U5Qbh78A/Ds 46QLQwwnJNL/whP+/4QI7O7uUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9ceC38 Y804Yr48BoUTzRHDlKmLMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUDNzGZE3OHjKqUzVXm8VP2RaRq2FyWxmZEcXIEdlQvPLKdVolrDiO jvNR5Q56fb+c8uYyD1MW0yTf38ZVsLZqqMi7gTyhGhos289biicEhfCX6/YgVzkL Vj+0/uwsVghGkRdplNjVyzdcnO1kJDemXMWU52VjdiRDK83r3hbkuK9+NfwvY3vR M8W/rSkjh2nLv1GyrqWPRPGh6Yfve2rJAeiEmHSG3QKRwYyLT4J+G8UOzBnp+kiO mqRoEciaaL1FWlASOo9SodAvbmKGtOwjafSPRbfu12vJ3SDDjyvFU3F9KvEVtoz/ qhkCXuWrGVdxUczZB2imTz3sj3shGOWc -----END CERTIFICATE-----Generated at Sun Aug 10 13:54:01 2025 by rpki-client