$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: KfZM133SUHsZsA5hfCrqO91RzTAx8JKHLQhRez3VrU8= Subject key identifier: F7:FC:7D:61:2E:A0:8B:46:D1:0C:0D:5C:7A:8D:55:86:65:AE:43:61 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B91 Signing time: Sun 10 Aug 2025 15:30:03 +0000 Manifest this update: Sun 10 Aug 2025 15:30:02 +0000 Manifest next update: Sun 17 Aug 2025 15:30:02 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: tnLwpcoSYCCzn6wTgSE2tyo24HoKzB6s1zLngaVxPCw=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 15:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11189 (0x2bb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Aug 10 15:30:02 2025 GMT Not After : Aug 17 15:30:02 2025 GMT Subject: CN=6898bafb-7214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ea:aa:c3:02:d3:05:9b:5f:ae:4b:d2:33:83: 96:d2:4d:6d:08:df:4d:45:99:67:ea:8d:81:b3:27: ea:4d:e3:42:f9:88:c2:a7:f9:f6:b1:8d:36:19:eb: ce:06:04:73:40:3e:3f:9a:c5:4c:bf:b8:db:4b:07: a7:f3:74:f2:e0:f6:df:0a:1f:86:a3:29:23:fe:c7: 76:77:d9:43:c9:d6:42:3c:d5:87:11:a7:14:f3:3f: f3:3d:84:dc:28:3b:56:f9:fc:ac:55:42:0e:65:d7: 9e:22:ad:e5:df:58:08:3d:69:ef:76:6a:c1:11:29: 94:5d:7b:e5:f9:5a:ba:aa:e2:4e:51:ec:69:8c:88: af:8f:3c:d9:2d:c5:84:2e:28:3a:4c:cc:88:de:1c: 44:f6:af:72:8a:2d:aa:fd:ba:c6:2d:93:ac:e6:49: 57:4f:4c:6a:51:65:71:f9:2e:28:21:4f:fd:96:c3: c9:c4:c4:b8:6e:7e:2d:3b:42:4c:ab:f1:06:53:71: 3d:e9:05:b2:34:2c:0d:5c:14:53:27:ac:0b:18:12: 79:8b:12:0b:2a:c3:ab:f8:33:43:ae:a4:e9:6b:87: e4:ae:fc:9f:66:63:ad:fc:05:b2:f7:52:34:b9:65: 87:33:d3:67:f2:86:6e:3c:bc:f3:64:2a:e4:3e:a8: 4e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FC:7D:61:2E:A0:8B:46:D1:0C:0D:5C:7A:8D:55:86:65:AE:43:61 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:75:da:66:f6:30:fd:75:66:de:1a:a3:a8:8f:10:fb:d2:eb: ae:e1:bc:e6:bb:95:15:c2:3b:92:f8:6d:97:c3:d6:36:2d:0d: 46:4f:98:f8:92:21:51:89:a4:b8:db:9b:2b:f3:d4:d0:e5:49: 2a:f4:40:0c:04:93:d0:3e:37:08:9d:22:37:ef:44:0f:cb:f8: d7:f7:7f:08:3b:4a:a3:8f:69:d2:fd:0f:97:d4:e2:54:bd:c9: 0f:53:6b:f8:54:0a:cb:52:6f:e7:73:40:2b:4e:ef:ce:08:e8: bc:04:f5:4b:b3:1a:1f:a2:99:6a:f4:47:95:0c:08:78:3d:14: 36:2c:7b:27:81:f1:3d:bc:c7:54:23:10:ec:39:8e:3a:80:52: 82:b2:32:be:b1:f0:47:6d:2d:5c:76:e9:36:3e:67:1f:3f:ec: 95:82:e8:ea:2b:f8:c2:58:24:70:5a:1d:4c:9e:5c:f2:70:6e: 95:aa:39:2c:da:75:40:6b:f8:29:b7:d2:e9:cb:bc:81:ec:76: 7d:00:5f:bd:87:f4:97:eb:c7:c5:e5:64:6d:59:54:36:cf:3b: 3f:d9:ee:cf:c5:89:19:9e:14:39:bb:0b:8b:24:ad:50:4d:5c: b2:2e:a0:51:e5:7d:af:b8:ab:cc:d8:99:2d:33:27:5f:4e:80: c6:f9:07:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwODEwMTUzMDAyWhcNMjUwODE3MTUzMDAyWjAYMRYwFAYD VQQDEw02ODk4YmFmYi03MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOqqwwLTBZtfrkvSM4OW0k1tCN9NRZln6o2BsyfqTeNC+YjCp/n2sY02GevO BgRzQD4/msVMv7jbSwen83Ty4PbfCh+Goykj/sd2d9lDydZCPNWHEacU8z/zPYTc KDtW+fysVUIOZdeeIq3l31gIPWnvdmrBESmUXXvl+Vq6quJOUexpjIivjzzZLcWE Lig6TMyI3hxE9q9yii2q/brGLZOs5klXT0xqUWVx+S4oIU/9lsPJxMS4bn4tO0JM q/EGU3E96QWyNCwNXBRTJ6wLGBJ5ixILKsOr+DNDrqTpa4fkrvyfZmOt/AWy91I0 uWWHM9Nn8oZuPLzzZCrkPqhOWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPf8fWEu oItG0QwNXHqNVYZlrkNhMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfddpm9jD9dWbeGqOojxD70uuu4bzmu5UVwjuS+G2Xw9Y2LQ1GT5j4 kiFRiaS425sr89TQ5Ukq9EAMBJPQPjcInSI370QPy/jX938IO0qjj2nS/Q+X1OJU vckPU2v4VArLUm/nc0ArTu/OCOi8BPVLsxofoplq9EeVDAh4PRQ2LHsngfE9vMdU IxDsOY46gFKCsjK+sfBHbS1cduk2PmcfP+yVgujqK/jCWCRwWh1MnlzycG6Vqjks 2nVAa/gpt9Lpy7yB7HZ9AF+9h/SX68fF5WRtWVQ2zzs/2e7PxYkZnhQ5uwuLJK1Q TVyyLqBR5X2vuKvM2JktMydfToDG+Qfp -----END CERTIFICATE-----Generated at Tue Aug 12 08:27:22 2025 by rpki-client