$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: q8bA4jez5vaUxlqV3NqJP8/JYYUI2xUPnvEqPuS+HcU= Subject key identifier: 15:CF:F0:06:8C:E8:CA:9F:7B:35:92:36:2B:AE:96:5F:1D:76:A8:6E Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0A12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A01 Signing time: Sat 14 Jun 2025 19:40:54 +0000 Manifest this update: Sat 14 Jun 2025 19:40:54 +0000 Manifest next update: Sat 21 Jun 2025 19:40:54 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: hspO8Sf6IxMAi6EOSc9AwJuXIVBRMkGLO6amXjWFaCI=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: TxCwNFrh+xkaqDR3M5kqqPa5bX7FhYwp1p0wkxa1CxU=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: JxcjLdYbfNpLt4XJbaeEwHRAAk7SbV4Cw+ExyqNKBV4=) 4: C8A0E422831611EA95762453C4F9AE02.roa (hash: yUwouY97arbHx1ysSRkQtB3/fVJX2BMSgtA5eI1eKIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Jun 14 19:40:54 2025 GMT Not After : Jun 21 19:40:54 2025 GMT Subject: CN=684dd046-6064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:64:62:ac:a6:1f:c2:f3:1d:06:8f:e3:a6: 68:0d:5c:19:a8:ea:7b:48:66:60:7a:2a:ab:12:10: e4:7e:24:fc:56:16:fc:e2:19:85:d9:5d:0b:ed:5b: ae:ec:a4:b5:71:38:f0:75:4b:5d:50:23:fa:73:22: d3:7a:1d:87:e9:af:0c:7e:91:31:15:b9:21:87:68: 42:b0:07:27:4f:5a:37:28:09:e2:99:87:33:b8:8c: 8b:3b:41:7f:cb:d9:6e:71:c4:ca:72:4d:80:9c:c7: bc:a0:d2:87:ec:c5:a5:5d:ac:f5:58:2d:dd:af:2a: 12:4c:29:7c:43:14:c2:57:29:6e:ca:11:49:f6:3a: 5f:e1:a7:57:ba:13:d8:e2:be:40:63:ab:89:9c:11: d8:0a:e7:60:c3:3a:8a:d8:94:27:d0:e4:4d:62:d9: 74:88:f3:70:7d:0e:e8:75:11:3a:5c:8e:fd:e5:8e: 1c:bd:45:f7:ad:59:03:94:8e:36:ed:21:61:69:40: 8e:7e:d5:1a:1e:17:ef:79:15:51:83:ed:5e:28:6c: 1e:90:bb:8b:c8:d3:6e:9a:82:8f:b3:c1:f1:b7:31: bd:9e:27:82:f2:6b:1f:f0:ef:67:1d:a3:12:9d:a4: 34:2a:0d:ac:2f:48:df:ab:43:02:ef:37:3c:0a:8d: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CF:F0:06:8C:E8:CA:9F:7B:35:92:36:2B:AE:96:5F:1D:76:A8:6E X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:80:d0:fe:fe:69:0b:ad:83:df:7b:8d:f8:b5:23:97:7f:2b: 4b:6e:8f:4e:f2:b3:a2:b0:45:24:66:c6:07:67:2a:e0:eb:76: 6a:50:50:08:dd:3c:bf:6e:e6:bd:9a:5c:2e:d3:95:c9:26:73: 08:a1:94:27:c5:8d:b9:7d:bb:73:3b:2f:b3:d0:d7:49:33:16: 66:63:1d:17:bf:7c:fc:3e:71:a3:d1:5b:12:2a:31:eb:81:6b: a4:c8:99:a5:a2:08:90:28:08:89:42:8a:c9:71:e6:23:62:e7: 77:d5:89:8e:8a:80:48:f5:1b:e9:19:f8:7d:f3:61:0c:24:56: 08:7b:5a:63:c3:6f:93:a8:36:54:9b:b0:57:2c:28:9d:26:98: 07:8a:0a:43:95:d7:bb:2a:25:3f:fa:dc:62:cf:ff:32:f7:7b: cb:ab:72:f1:d7:b6:56:a2:5d:be:e2:dd:1b:5a:64:8d:ba:22: 0b:cb:3d:07:fc:f7:f6:ed:32:57:e2:40:50:df:30:f6:85:4e: 4c:9e:27:92:64:fc:31:8c:b1:88:1e:c6:03:7b:a0:2a:e2:f6: 9d:ec:4e:63:46:49:96:bd:56:86:a9:89:99:af:90:e5:e4:98: fe:1f:29:48:d9:da:50:ba:5c:03:ba:fb:c7:f6:a0:be:1b:69: 0c:56:97:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjUwNjE0MTk0MDU0WhcNMjUwNjIxMTk0MDU0WjAYMRYwFAYD VQQDEw02ODRkZDA0Ni02MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQpkYqymH8LzHQaP46ZoDVwZqOp7SGZgeiqrEhDkfiT8Vhb84hmF2V0L7Vuu 7KS1cTjwdUtdUCP6cyLTeh2H6a8MfpExFbkhh2hCsAcnT1o3KAnimYczuIyLO0F/ y9luccTKck2AnMe8oNKH7MWlXaz1WC3dryoSTCl8QxTCVyluyhFJ9jpf4adXuhPY 4r5AY6uJnBHYCudgwzqK2JQn0ORNYtl0iPNwfQ7odRE6XI795Y4cvUX3rVkDlI42 7SFhaUCOftUaHhfveRVRg+1eKGwekLuLyNNumoKPs8HxtzG9nieC8msf8O9nHaMS naQ0Kg2sL0jfq0MC7zc8Co3zhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXP8AaM 6MqfezWSNiuull8ddqhuMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIgND+/mkLrYPfe434tSOXfytLbo9O8rOisEUkZsYHZyrg63ZqUFAI 3Ty/bua9mlwu05XJJnMIoZQnxY25fbtzOy+z0NdJMxZmYx0Xv3z8PnGj0VsSKjHr gWukyJmlogiQKAiJQorJceYjYud31YmOioBI9RvpGfh982EMJFYIe1pjw2+TqDZU m7BXLCidJpgHigpDlde7KiU/+txiz/8y93vLq3Lx17ZWol2+4t0bWmSNuiILyz0H /Pf27TJX4kBQ3zD2hU5MnieSZPwxjLGIHsYDe6Aq4vad7E5jRkmWvVaGqYmZr5Dl 5Jj+HylI2dpQulwDuvvH9qC+G2kMVpff -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:41 2025 by rpki-client