$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: 1wrKEq20oueaqXWRqbaU9OCRypk9AswK9Iy1nm4B4Hc= Subject key identifier: 18:D6:EB:92:5B:EB:D5:98:19:D4:B8:FA:97:F5:CF:48:C1:8D:AA:94 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1DC5 Signing time: Mon 04 Aug 2025 17:26:48 +0000 Manifest this update: Mon 04 Aug 2025 17:26:48 +0000 Manifest next update: Mon 11 Aug 2025 17:26:48 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: uJe7ZJLxhc+jiodJoBEk5sl418HAikT58uWZFS8HD7Y=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 17:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Aug 4 17:26:48 2025 GMT Not After : Aug 11 17:26:48 2025 GMT Subject: CN=6890ed58-c1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6c:2a:0c:8c:a3:ea:09:2f:eb:0a:80:ce:88: 21:ac:aa:b7:fa:e5:fb:ac:9f:14:26:65:b0:23:ac: 77:38:c3:b1:d7:2a:66:46:05:cc:40:5c:a2:19:6f: e4:83:00:0c:db:86:99:32:6d:79:ca:5e:d0:ab:e9: 63:56:4a:dd:be:aa:7f:4f:e8:99:3c:ae:66:9e:ff: 2c:e8:cf:97:01:3c:e8:90:2e:9c:0e:19:ce:7d:05: 23:1e:c9:ee:8e:91:37:b9:67:d2:dc:c7:bd:ee:4e: 6a:a3:b1:9d:42:18:30:7a:9c:4d:4a:cb:c3:e6:7d: 34:f4:b8:db:c9:ac:50:cc:5a:db:ae:6f:a5:e6:02: df:4a:4c:6f:3e:ce:98:e2:5d:96:c7:4d:eb:07:82: 51:7d:08:44:91:55:7c:08:b7:b0:fe:ae:c5:2d:38: bc:a3:d9:e9:cd:4f:d7:8a:29:f8:df:c7:f4:c5:94: d3:7e:ae:4d:95:23:48:3c:b0:54:d0:56:55:35:23: 8a:f4:b7:cd:b8:7e:65:ff:b5:be:6a:1a:f6:04:42: 9c:13:93:42:d7:47:b8:b9:fd:9b:dc:3c:f9:7a:5f: 8c:4a:f5:64:bb:e6:ff:77:41:6b:6d:b7:fd:be:81: b7:7e:a0:6c:e5:6b:ce:73:1a:9f:54:22:a5:d9:af: ea:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:EB:92:5B:EB:D5:98:19:D4:B8:FA:97:F5:CF:48:C1:8D:AA:94 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a8:4c:21:06:e8:e2:8f:d1:10:f1:b7:9e:92:bf:62:cf:d9: ca:be:6e:d7:a9:83:08:8a:7a:7e:5a:b7:86:42:38:ca:56:9f: fb:ac:67:7a:b7:b2:ab:5a:86:30:b6:db:8a:b9:52:1e:db:bb: 8c:3b:6b:e9:d9:c6:87:a8:49:33:ae:79:b9:76:7c:e5:53:ee: 0c:92:3c:15:f7:13:34:36:f5:d5:1c:eb:8a:f2:13:1e:5d:10: dd:9f:a4:5c:d3:7b:5e:5d:01:11:08:92:fd:8c:9a:58:ef:2e: 03:38:42:84:63:2e:9b:92:a9:74:87:d1:b4:ed:d5:03:2d:5f: 59:68:2a:90:21:dd:73:db:45:d7:8e:4a:35:00:0e:56:07:20: 7f:c6:68:99:75:8b:d0:6c:b2:3a:18:b7:0a:98:b1:49:cd:21: 39:f1:84:c3:10:79:3c:4a:e6:1d:9a:2d:ba:42:16:0a:27:0d: 84:b8:ae:e8:a0:6a:63:d1:1e:3d:2e:8c:87:7d:a1:12:e8:fc: ea:90:46:c7:b8:d1:6b:17:44:77:6c:72:2a:31:69:b3:11:76: f3:e9:1a:15:53:c9:1b:b6:8f:dd:42:71:44:4d:68:97:53:ed: bc:50:29:27:7b:23:8b:16:51:25:ad:1d:88:0e:59:bd:bd:34: 56:de:31:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwODA0MTcyNjQ4WhcNMjUwODExMTcyNjQ4WjAYMRYwFAYD VQQDEw02ODkwZWQ1OC1jMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GwqDIyj6gkv6wqAzoghrKq3+uX7rJ8UJmWwI6x3OMOx1ypmRgXMQFyiGW/k gwAM24aZMm15yl7Qq+ljVkrdvqp/T+iZPK5mnv8s6M+XATzokC6cDhnOfQUjHsnu jpE3uWfS3Me97k5qo7GdQhgwepxNSsvD5n009LjbyaxQzFrbrm+l5gLfSkxvPs6Y 4l2Wx03rB4JRfQhEkVV8CLew/q7FLTi8o9npzU/Xiin438f0xZTTfq5NlSNIPLBU 0FZVNSOK9LfNuH5l/7W+ahr2BEKcE5NC10e4uf2b3Dz5el+MSvVku+b/d0Frbbf9 voG3fqBs5WvOcxqfVCKl2a/qsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjW65Jb 69WYGdS4+pf1z0jBjaqUMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARqEwhBujij9EQ8beekr9iz9nKvm7XqYMIinp+WreGQjjKVp/7rGd6 t7KrWoYwttuKuVIe27uMO2vp2caHqEkzrnm5dnzlU+4MkjwV9xM0NvXVHOuK8hMe XRDdn6Rc03teXQERCJL9jJpY7y4DOEKEYy6bkql0h9G07dUDLV9ZaCqQId1z20XX jko1AA5WByB/xmiZdYvQbLI6GLcKmLFJzSE58YTDEHk8SuYdmi26QhYKJw2EuK7o oGpj0R49LoyHfaES6PzqkEbHuNFrF0R3bHIqMWmzEXbz6RoVU8kbto/dQnFETWiX U+28UCkneyOLFlElrR2IDlm9vTRW3jFj -----END CERTIFICATE-----Generated at Wed Aug 6 13:03:25 2025 by rpki-client