$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft File: K2gwqzfLNO8nOiCi8ugmQplgE9o.mft (raw, json) Hash identifier: 1DHpozeEybQDkRQCu9mnHAO8lbSandqVDcvpHhHkr7s= Subject key identifier: 41:A6:45:8A:A7:83:5A:F3:07:86:56:A2:C6:EC:99:24:93:93:12:88 Authority key identifier: 2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA Certificate issuer: /CN=A91E3E80/serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft Manifest number: 1E Signing time: Mon 11 Aug 2025 08:10:49 +0000 Manifest this update: Mon 11 Aug 2025 08:10:49 +0000 Manifest next update: Mon 18 Aug 2025 08:10:48 +0000 Files and hashes: 1: K2gwqzfLNO8nOiCi8ugmQplgE9o.crl (hash: yhZfelivircLkjftYNc5CD9Dq6IzsBAu6477K9+1V+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Validity Not Before: Aug 11 08:10:49 2025 GMT Not After : Aug 18 08:10:48 2025 GMT Subject: CN=6899a589-83a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:42:b4:16:fe:34:83:d7:ae:f5:d2:99:68:b5: d6:01:3f:2f:1c:dd:8a:fa:0f:47:5a:f2:24:4c:9a: 44:58:cc:3c:db:95:71:ee:f5:2f:d9:45:75:aa:9b: 47:c1:03:ae:1f:42:67:e4:c6:9a:f0:ab:6d:81:6b: 1d:03:d2:b3:39:e7:a2:ad:fd:00:38:64:3a:f4:98: 58:18:f5:c5:44:71:02:02:58:4f:0a:0a:fd:5d:4d: 2a:68:e1:a7:07:68:d5:b1:5d:1f:44:5e:b8:82:02: cc:33:45:fb:7c:40:66:9d:9f:b6:11:63:d2:0f:51: e9:9f:cf:a5:e1:ff:9e:69:65:07:52:22:43:4b:de: 06:2a:9c:87:91:5b:81:89:98:f3:48:3a:da:d7:ad: f3:a6:2f:bb:48:1d:f6:e6:6d:74:1d:bd:66:50:1e: f9:ab:70:f9:12:83:a5:35:2d:0e:af:dc:dd:83:a4: d5:9d:9d:2c:bd:95:02:7b:1d:80:04:db:c8:29:89: 73:d7:99:82:a7:c6:8b:28:87:7f:30:da:17:e4:3a: 6f:db:12:14:86:cb:11:56:5f:58:37:fb:bb:f1:2a: 14:3f:87:5f:06:3d:27:c0:cd:cb:88:18:17:95:dd: 7b:73:56:78:2c:ce:5c:94:c2:7f:74:1d:f3:c7:c6: 2a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A6:45:8A:A7:83:5A:F3:07:86:56:A2:C6:EC:99:24:93:93:12:88 X509v3 Authority Key Identifier: keyid:2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:eb:c4:53:7b:7c:f1:b4:68:b2:dc:d3:2b:a2:13:15:d3:c3: ae:82:12:5a:a6:16:06:36:0d:89:a1:72:bc:40:7f:f7:ee:94: 78:d6:4f:b0:3c:34:37:37:e6:1c:0c:52:32:03:72:27:b0:31: 6a:9f:f4:29:3a:b4:b3:92:3b:53:7d:5e:72:f1:0d:9b:79:bd: cc:da:bd:71:24:fa:35:f1:00:8c:f5:34:a1:2d:a0:cb:51:5f: 45:63:35:b3:7c:37:c9:06:da:4d:3d:8c:ed:2d:10:ba:27:61: 06:95:50:4b:70:12:2a:ab:65:7f:5b:08:99:fd:a2:e1:48:55: 3a:76:25:15:4c:26:24:bc:7a:ba:3a:a4:ab:67:5d:f9:68:da: 02:8f:29:3e:a6:e3:6f:8d:20:6c:3c:df:3d:8f:66:9d:64:e8: fc:6a:8e:36:b8:63:82:f3:69:84:3d:2a:93:29:e7:bb:98:7e: 4a:ce:00:e8:88:75:60:82:a6:46:b9:e4:77:47:e2:6c:8b:30: b2:bc:64:e2:64:6b:a8:56:64:75:c8:93:c6:c7:8d:6c:17:6f: 65:b8:2c:40:89:7e:c1:46:e4:97:1a:34:1f:22:72:d0:ab:17: a3:14:13:2b:72:da:e8:7b:07:de:18:a7:be:0e:7b:de:f6:fb: f9:f0:5b:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoMkI2ODMwQUIzN0NCMzRFRjI3M0EyMEEyRjJFODI2NDI5 OTYwMTNEQTAeFw0yNTA4MTEwODEwNDlaFw0yNTA4MTgwODEwNDhaMBgxFjAUBgNV BAMTDTY4OTlhNTg5LTgzYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaQrQW/jSD16710plotdYBPy8c3Yr6D0da8iRMmkRYzDzblXHu9S/ZRXWqm0fB A64fQmfkxprwq22Bax0D0rM556Kt/QA4ZDr0mFgY9cVEcQICWE8KCv1dTSpo4acH aNWxXR9EXriCAswzRft8QGadn7YRY9IPUemfz6Xh/55pZQdSIkNL3gYqnIeRW4GJ mPNIOtrXrfOmL7tIHfbmbXQdvWZQHvmrcPkSg6U1LQ6v3N2DpNWdnSy9lQJ7HYAE 28gpiXPXmYKnxosoh38w2hfkOm/bEhSGyxFWX1g3+7vxKhQ/h18GPSfAzcuIGBeV 3XtzVngszlyUwn90HfPHxip/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQaZFiqeD WvMHhlaixuyZJJOTEogwHwYDVR0jBBgwFoAUK2gwqzfLNO8nOiCi8ugmQplgE9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzNFNDAyQUVBNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84bk9pQ2k4dWdtUXBsZ0U5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzJnd3F6ZkxOTzhuT2lDaTh1Z21RcGxnRTlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzNFNDAyQUVBNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84 bk9pQ2k4dWdtUXBsZ0U5by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA7rxFN7fPG0aLLc0yuiExXTw66CElqmFgY2DYmhcrxAf/fulHjWT7A8 NDc35hwMUjIDciewMWqf9Ck6tLOSO1N9XnLxDZt5vczavXEk+jXxAIz1NKEtoMtR X0VjNbN8N8kG2k09jO0tELonYQaVUEtwEiqrZX9bCJn9ouFIVTp2JRVMJiS8ero6 pKtnXflo2gKPKT6m42+NIGw83z2PZp1k6Pxqjja4Y4LzaYQ9KpMp57uYfkrOAOiI dWCCpka55HdH4myLMLK8ZOJka6hWZHXIk8bHjWwXb2W4LECJfsFG5JcaNB8ictCr F6MUEyty2uh7B94Yp74Oe972+/nwWw8= -----END CERTIFICATE-----Generated at Tue Aug 12 22:53:41 2025 by rpki-client