$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft File: 2jyR-PFV2QuZh8kTskxPnlRF6cw.mft (raw, json) Hash identifier: glD+SJILb2TDpWiz5XYD9KFEQNiRN1qrY5D7PT9lWGE= Subject key identifier: 0D:03:DC:E4:65:A6:B9:1E:35:A2:65:FA:AC:14:2E:15:79:B6:6C:05 Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0D14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft Manifest number: 0CFE Signing time: Fri 08 Aug 2025 18:18:08 +0000 Manifest this update: Fri 08 Aug 2025 18:18:08 +0000 Manifest next update: Fri 15 Aug 2025 18:18:08 +0000 Files and hashes: 1: 2jyR-PFV2QuZh8kTskxPnlRF6cw.crl (hash: jrEZxFads9CygebHDa97uFQkl7WWW+0MIAWPmUqeJMQ=) 2: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (hash: LD0ithX2780J0eLYJ+pZjxCf/VO5UT20hM3rBP9oW8s=) 3: FEB624F6B94911EE897F7947C4F9AE02.roa (hash: PkBHUrnClJtIRj3hyvhFOR74ygd0IwmSJ02fNGArhbM=) 4: 8E4647E6EB2911EB9891D01DC4F9AE02.roa (hash: ORDwcUk6C17rG0Rjjv65wOFUqorGmDWrJEH1nGvJDz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Aug 8 18:18:08 2025 GMT Not After : Aug 15 18:18:08 2025 GMT Subject: CN=68963f60-28fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:0e:8a:c0:24:a1:f0:04:7c:3f:14:b3:01: ce:6e:9f:11:e7:e2:58:e2:14:7c:e0:bf:dd:72:97: 56:55:79:67:ca:ae:ba:74:91:75:f0:24:4a:77:5a: ce:e7:1f:3a:a5:a7:e9:f2:05:50:df:fc:4f:08:f2: ef:d1:e0:aa:ec:5a:38:b2:a4:13:25:63:85:a4:14: a2:5d:6d:17:c4:a6:b4:2d:70:9a:03:14:1b:75:e5: 6d:7f:df:c9:ff:64:e6:b8:17:53:62:bc:4c:fa:43: fc:d1:0f:b5:b2:38:56:f3:e8:6c:03:f6:a3:cc:fb: eb:12:82:5f:a9:32:35:0d:a9:8b:a9:66:3b:49:df: e1:7b:89:8c:e1:46:2e:f4:9b:03:51:37:ec:83:3a: 29:23:93:83:5c:9a:87:fa:19:31:93:bc:b5:dd:64: 08:a7:80:39:2e:49:9d:e3:57:68:b3:0e:ac:f9:4f: 81:7d:28:21:9b:66:a6:41:13:97:b7:b7:be:84:b7: e3:ab:8e:e4:2a:34:d5:a3:56:6d:7c:d5:3b:c5:01: 52:77:25:8f:00:94:b6:44:d8:72:05:52:c1:23:64: 04:a6:b2:d4:dc:c4:d8:1b:ba:14:47:8f:f8:7e:0a: 78:9e:87:ce:f3:1a:35:5e:18:4a:6e:69:c2:52:0c: ba:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:03:DC:E4:65:A6:B9:1E:35:A2:65:FA:AC:14:2E:15:79:B6:6C:05 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:08:f4:09:61:10:02:b3:c6:58:80:e8:89:0a:b3:f2:03:db: 0b:c8:6a:e9:a6:7a:bf:80:ae:35:95:71:60:9e:a6:23:97:2e: 21:c7:58:9d:53:45:56:2a:98:92:e1:54:28:d9:02:15:4b:35: 07:0d:0e:e6:ba:9f:03:c6:cd:f9:80:8f:12:da:67:e8:fb:f4: 6c:da:35:2c:94:6f:79:8b:da:90:1a:50:6e:02:65:2a:61:91: a6:30:18:d1:bf:62:be:d1:40:d5:7a:b7:52:2d:69:a4:7a:70: ee:19:3b:93:cd:fa:78:f3:b0:48:8a:13:2b:6f:98:ac:72:9e: ce:bc:67:df:36:d3:14:64:f6:8b:b2:d5:ce:e4:10:61:f0:da: 4c:e5:06:52:ef:05:68:14:6a:36:c3:95:d6:d8:b4:e2:a0:a2: 3e:f0:aa:bb:88:fe:60:50:f5:9f:78:54:12:6f:10:4a:7f:88: 1b:92:12:a8:13:3d:d9:04:19:60:9d:82:fb:57:c9:50:18:eb: 21:54:ac:72:60:37:1b:6e:e0:3c:17:fe:4d:a6:bc:c5:f0:9e: 0f:6d:ec:f7:c0:09:8d:09:9a:96:8f:5f:04:41:fa:9b:8f:21: 13:f3:62:f6:8a:a7:99:74:64:b3:9d:cb:e1:5f:de:9a:09:40: ff:f4:54:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjUwODA4MTgxODA4WhcNMjUwODE1MTgxODA4WjAYMRYwFAYD VQQDEw02ODk2M2Y2MC0yOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzn8OisAkofAEfD8UswHObp8R5+JY4hR84L/dcpdWVXlnyq66dJF18CRKd1rO 5x86pafp8gVQ3/xPCPLv0eCq7Fo4sqQTJWOFpBSiXW0XxKa0LXCaAxQbdeVtf9/J /2TmuBdTYrxM+kP80Q+1sjhW8+hsA/ajzPvrEoJfqTI1DamLqWY7Sd/he4mM4UYu 9JsDUTfsgzopI5ODXJqH+hkxk7y13WQIp4A5Lkmd41dosw6s+U+BfSghm2amQROX t7e+hLfjq47kKjTVo1ZtfNU7xQFSdyWPAJS2RNhyBVLBI2QEprLU3MTYG7oUR4/4 fgp4nofO8xo1XhhKbmnCUgy6KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0D3ORl prkeNaJl+qwULhV5tmwFMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzBFRC9FNjI3N0EzRUU5RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJR dVpoOGtUc2t4UG5sUkY2Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsCPQJYRACs8ZYgOiJCrPyA9sLyGrppnq/gK41lXFgnqYjly4hx1id U0VWKpiS4VQo2QIVSzUHDQ7mup8Dxs35gI8S2mfo+/Rs2jUslG95i9qQGlBuAmUq YZGmMBjRv2K+0UDVerdSLWmkenDuGTuTzfp487BIihMrb5iscp7OvGffNtMUZPaL stXO5BBh8NpM5QZS7wVoFGo2w5XW2LTioKI+8Kq7iP5gUPWfeFQSbxBKf4gbkhKo Ez3ZBBlgnYL7V8lQGOshVKxyYDcbbuA8F/5NprzF8J4Pbez3wAmNCZqWj18EQfqb jyET82L2iqeZdGSzncvhX96aCUD/9FQG -----END CERTIFICATE-----Generated at Sun Aug 10 04:47:49 2025 by rpki-client