$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft File: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft (raw, json) Hash identifier: F0Sik68KChIoM/xKt92RtjdGLOp28XUhYdb/di5jkoM= Subject key identifier: AC:FC:37:53:7A:42:4F:5D:0E:A2:04:3A:C4:55:AC:87:24:AC:71:13 Authority key identifier: DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE Certificate issuer: /CN=A91E6CCA/serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft Manifest number: 42 Signing time: Tue 05 Aug 2025 08:07:00 +0000 Manifest this update: Tue 05 Aug 2025 08:07:00 +0000 Manifest next update: Tue 12 Aug 2025 08:07:00 +0000 Files and hashes: 1: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl (hash: lJDkeHxlvmnVbbdyAYmYLLX+8Hsa+QAhxZe2k384uFU=) 2: E9CF18DE0F7111F096BBCF24C4F9AE02.roa (hash: LJYk/G3tN+KuXhxLY4vLUCBZc2tSEaFJTdOb4sX/qHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Validity Not Before: Aug 5 08:07:00 2025 GMT Not After : Aug 12 08:07:00 2025 GMT Subject: CN=6891bba4-1a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cd:f6:ad:9b:24:17:b6:e5:92:42:00:85:2d: f3:b7:4e:8e:1f:49:93:11:4e:cf:7c:e2:9c:7b:5e: 6b:f8:d4:52:36:94:e0:83:3e:6f:da:01:05:09:27: 02:6e:de:52:0f:82:45:f4:50:69:c8:2a:54:91:36: ae:3d:5f:cf:ad:18:3d:b7:a1:6e:1e:63:ad:1f:07: f9:d9:cc:88:a6:96:07:0a:ca:77:0a:18:d7:5a:f6: 7b:8d:63:3f:7a:c3:f5:76:8e:c0:74:2a:2e:b4:24: e7:d8:83:0a:f5:61:e7:67:24:36:d7:bc:92:6d:b0: b7:cc:28:d8:bf:14:74:3e:42:2d:60:e6:6c:32:39: 84:7a:44:45:a9:90:87:bd:20:d1:c9:ff:10:6a:a6: c3:d8:a9:2a:5e:52:fd:40:54:e9:cb:15:21:88:4e: b1:77:1f:ef:57:33:ad:ec:40:ac:06:d5:53:fb:8b: 93:a0:2b:64:b2:1d:ee:27:22:40:f2:4e:98:d1:93: f6:33:ba:25:4f:15:93:9e:b4:02:cb:0c:c0:68:c7: 55:cf:92:91:f2:be:96:a1:1d:18:49:f3:b7:90:db: f4:87:8d:47:70:06:b2:98:10:31:15:80:50:87:df: 19:07:17:2b:3b:3d:15:14:19:1a:26:85:78:20:98: 3e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FC:37:53:7A:42:4F:5D:0E:A2:04:3A:C4:55:AC:87:24:AC:71:13 X509v3 Authority Key Identifier: keyid:DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:1d:fa:65:8b:7a:ae:bd:5d:f6:3b:63:90:06:0f:f8:a1:f9: 30:21:87:c7:89:22:49:54:2d:c2:b1:d8:f6:c7:a6:70:ae:d1: d3:21:e5:f0:77:92:1f:ae:79:de:94:f1:e8:f0:9b:4f:52:79: 10:4c:b8:07:e2:81:49:7e:5c:99:2a:9d:55:41:b7:bb:b3:5f: 18:e8:68:fc:10:54:7c:42:ad:1a:d5:75:82:ed:58:d1:cb:55: cf:73:12:8a:84:de:40:e1:a2:af:df:7a:c6:7f:ad:dd:1d:21: 51:2e:b8:a5:bc:0d:44:c3:37:76:df:a2:70:5f:8a:8b:af:57: e1:dc:87:2a:c8:f3:e3:52:12:80:e4:2a:8b:66:48:d8:4a:33: 1e:c5:3e:99:18:aa:45:25:5f:90:7e:64:b7:d1:e3:01:f0:23: 52:de:c6:ed:40:22:39:70:8f:d6:12:89:02:84:5b:1b:48:af: 56:9b:a9:98:1a:51:de:cf:80:46:36:dc:fa:96:0e:55:36:1a: 55:2b:98:63:23:e8:81:30:c4:97:7d:22:d1:50:de:40:02:6c: d1:e2:67:c8:07:d4:1b:6e:84:84:4f:2f:59:ba:4d:c4:d6:cb: be:23:0c:b0:dd:a1:6a:1c:a1:68:31:cf:8c:be:c5:6e:c9:c9: 68:13:c1:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoREIxM0ZCQUY3QjNCMzhEQjc2MzBEQjBCOTczNzREQUFE MDMxNUFERTAeFw0yNTA4MDUwODA3MDBaFw0yNTA4MTIwODA3MDBaMBgxFjAUBgNV BAMTDTY4OTFiYmE0LTFhNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnzfatmyQXtuWSQgCFLfO3To4fSZMRTs984px7Xmv41FI2lOCDPm/aAQUJJwJu 3lIPgkX0UGnIKlSRNq49X8+tGD23oW4eY60fB/nZzIimlgcKyncKGNda9nuNYz96 w/V2jsB0Ki60JOfYgwr1YednJDbXvJJtsLfMKNi/FHQ+Qi1g5mwyOYR6REWpkIe9 INHJ/xBqpsPYqSpeUv1AVOnLFSGITrF3H+9XM63sQKwG1VP7i5OgK2SyHe4nIkDy TpjRk/YzuiVPFZOetALLDMBox1XPkpHyvpahHRhJ87eQ2/SHjUdwBrKYEDEVgFCH 3xkHFys7PRUUGRomhXggmD6NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrPw3U3pC T10OogQ6xFWshySscRMwHwYDVR0jBBgwFoAU2xP7r3s7ONt2MNsLlzdNqtAxWt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzI0MDEwRDUyMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050Mk1Oc0xsemROcXRBeFd0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnhQN3IzczdPTnQyTU5zTGx6ZE5xdEF4V3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzI0MDEwRDUyMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050 Mk1Oc0xsemROcXRBeFd0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKAd+mWLeq69XfY7Y5AGD/ih+TAhh8eJIklULcKx2PbHpnCu0dMh5fB3 kh+ued6U8ejwm09SeRBMuAfigUl+XJkqnVVBt7uzXxjoaPwQVHxCrRrVdYLtWNHL Vc9zEoqE3kDhoq/fesZ/rd0dIVEuuKW8DUTDN3bfonBfiouvV+HchyrI8+NSEoDk KotmSNhKMx7FPpkYqkUlX5B+ZLfR4wHwI1Lexu1AIjlwj9YSiQKEWxtIr1abqZga Ud7PgEY23PqWDlU2GlUrmGMj6IEwxJd9ItFQ3kACbNHiZ8gH1BtuhIRPL1m6TcTW y74jDLDdoWocoWgxz4y+xW7JyWgTweI= -----END CERTIFICATE-----Generated at Thu Aug 7 04:43:46 2025 by rpki-client