$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: kchj+KTUNl143pUxRWkromVaLwr/1AxFjjNLzLlnEPg= Subject key identifier: FC:FC:41:BE:B2:1E:1F:CE:B2:96:90:CA:D4:A5:72:83:9F:87:4A:E6 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13DF Signing time: Fri 08 Aug 2025 15:29:27 +0000 Manifest this update: Fri 08 Aug 2025 15:29:27 +0000 Manifest next update: Fri 15 Aug 2025 15:29:27 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: YeIZGyPvVlq10RLTanY8H3cAXLKZs6sGe/4IPSO9QBs=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5116 (0x13fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 8 15:29:27 2025 GMT Not After : Aug 15 15:29:27 2025 GMT Subject: CN=689617d7-770d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2e:cc:f0:8f:d2:2f:1e:d8:64:2c:d6:cd:02: 42:18:f6:aa:ce:6a:b6:ad:9a:e7:32:74:10:23:34: 15:5b:31:e2:f7:cf:8a:a5:9b:45:31:36:1f:74:50: 30:05:d4:f0:68:11:41:b1:1d:2a:ed:3f:02:b2:8a: 4d:8f:aa:bb:46:ed:46:10:de:35:15:c0:2f:f6:45: e0:65:9d:98:82:f8:d0:9c:2a:a2:e2:92:63:a9:5f: 8d:93:14:de:4d:0c:ad:cd:08:ed:e4:5d:47:17:5e: 22:e3:48:5e:79:8d:6f:f3:97:0f:42:19:16:c8:17: 89:11:29:62:24:25:27:4e:ab:21:6f:ce:34:1a:8b: d8:56:db:f5:64:68:d9:d3:cd:3e:94:67:73:a6:d5: 3f:08:1d:92:3a:f9:86:b3:65:76:3e:8d:96:21:e5: aa:dc:71:a1:95:24:be:f9:a2:2d:94:0c:1c:35:cb: 4a:f7:d1:6c:26:e7:cb:3a:3e:7d:aa:7c:a2:1e:5d: 1e:22:04:c8:4b:38:43:a9:3d:40:a4:a9:a2:f1:a1: 01:93:f0:c0:e4:9e:97:f4:61:78:c9:e9:5a:55:ca: ca:70:89:a0:34:71:1f:4d:74:e1:40:5f:bb:a2:d2: 05:6f:88:2b:98:42:d1:9e:5d:43:f9:b5:5f:93:6a: cd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FC:41:BE:B2:1E:1F:CE:B2:96:90:CA:D4:A5:72:83:9F:87:4A:E6 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:25:60:1c:44:a1:97:05:6d:7a:14:3c:ba:ed:b5:e8:a0:7a: b1:05:14:dd:b2:f3:5e:a6:d9:f2:39:53:57:56:0a:6a:44:ab: d8:68:15:72:57:c5:d9:89:de:18:e7:23:97:8a:43:ea:d0:a7: 0b:f1:d4:1d:6b:4e:67:8b:0f:65:b2:0b:22:65:3e:7f:37:00: 10:80:a2:42:53:7e:97:a7:df:36:9c:c0:79:74:79:87:7b:f1: 03:4e:ec:1e:a1:84:bb:cd:0f:96:31:6b:46:07:78:7d:3c:77: 51:d6:68:29:e6:07:68:1b:c4:0e:3a:08:01:22:71:68:7c:79: 74:4c:c8:28:11:f1:b2:22:01:2e:bf:25:5a:2c:7a:48:4b:c2: 55:80:cb:7b:d1:26:39:3c:a0:52:98:0d:8c:3b:a7:49:20:76: d8:48:f9:17:a3:de:61:61:4f:9f:b5:40:10:4e:06:68:17:22: 31:51:da:30:c6:66:91:72:6e:82:a6:a8:05:8b:ad:72:49:e9: f5:7b:61:81:d0:cc:3e:f7:c0:81:44:00:24:2c:22:4b:a4:4a: 0a:a1:9a:4d:f3:de:ce:ab:25:f3:3e:f5:1a:6c:f1:71:08:35: 9f:29:6a:a9:28:d7:8d:94:03:8a:f3:a8:5f:39:8e:f3:3c:8c: d5:ae:5e:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwODA4MTUyOTI3WhcNMjUwODE1MTUyOTI3WjAYMRYwFAYD VQQDEw02ODk2MTdkNy03NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4S7M8I/SLx7YZCzWzQJCGPaqzmq2rZrnMnQQIzQVWzHi98+KpZtFMTYfdFAw BdTwaBFBsR0q7T8CsopNj6q7Ru1GEN41FcAv9kXgZZ2YgvjQnCqi4pJjqV+NkxTe TQytzQjt5F1HF14i40heeY1v85cPQhkWyBeJESliJCUnTqshb840GovYVtv1ZGjZ 080+lGdzptU/CB2SOvmGs2V2Po2WIeWq3HGhlSS++aItlAwcNctK99FsJufLOj59 qnyiHl0eIgTISzhDqT1ApKmi8aEBk/DA5J6X9GF4yelaVcrKcImgNHEfTXThQF+7 otIFb4grmELRnl1D+bVfk2rNoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPz8Qb6y Hh/OspaQytSlcoOfh0rmMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqJWAcRKGXBW16FDy67bXooHqxBRTdsvNeptnyOVNXVgpqRKvYaBVy V8XZid4Y5yOXikPq0KcL8dQda05niw9lsgsiZT5/NwAQgKJCU36Xp982nMB5dHmH e/EDTuweoYS7zQ+WMWtGB3h9PHdR1mgp5gdoG8QOOggBInFofHl0TMgoEfGyIgEu vyVaLHpIS8JVgMt70SY5PKBSmA2MO6dJIHbYSPkXo95hYU+ftUAQTgZoFyIxUdow xmaRcm6CpqgFi61ySen1e2GB0Mw+98CBRAAkLCJLpEoKoZpN897OqyXzPvUabPFx CDWfKWqpKNeNlAOK86hfOY7zPIzVrl6C -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:16 2025 by rpki-client