$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: WQgsm/oeLw0Tz9iU+gRTeeC0OMTtBwBqqTMya+yCINo= Subject key identifier: 06:9F:0C:64:DA:27:D0:25:56:36:2B:7E:A7:DA:68:4C:BD:8D:38:E6 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 12EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 12D9 Signing time: Sun 10 Aug 2025 17:03:15 +0000 Manifest this update: Sun 10 Aug 2025 17:03:14 +0000 Manifest next update: Sun 17 Aug 2025 17:03:14 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: IwrHPGHjiCG23d54aQiiA2pASesG6fk7N8+98p2HiZo=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: qsHbNpoijKrtGMWbxqEqnKfl2y6Wb4U5iSQj3PTcQI0=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: 9kzHJ+mrOXjrh7/imCy9YTTgW8CKx7edCdpIZZ1nyQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Aug 10 17:03:14 2025 GMT Not After : Aug 17 17:03:14 2025 GMT Subject: CN=6898d0d2-6ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:0c:20:70:9a:5a:a6:bb:9e:7d:ae:34:2a: 14:d6:12:8b:d4:87:3e:f9:60:08:b7:16:61:a6:03: 54:b2:ba:53:d9:05:63:b3:e0:5b:83:1a:aa:46:1f: 1a:6c:97:3b:6d:b9:13:93:e0:80:e9:b8:96:20:fb: 65:91:2f:9c:8c:f8:02:a3:58:79:c6:e4:5f:70:bf: 4e:aa:b5:8a:91:57:bf:73:5b:45:30:cd:b5:7e:23: 62:06:f9:6e:ae:3d:90:e0:cd:fd:1a:f4:46:78:0d: 0b:40:8c:9a:5a:e3:0f:a5:97:ef:fe:ca:02:8d:20: 5f:b8:70:1c:ee:65:3f:de:8f:95:f0:68:37:a8:2c: b4:12:a8:6c:eb:81:47:89:2b:4e:d9:1b:27:f3:d5: cf:38:06:45:cd:cf:92:e2:70:ba:3c:43:5b:66:8a: ba:89:57:d1:fb:8c:ed:c6:d3:ef:13:a5:09:42:91: 03:df:d4:aa:96:7b:e0:f6:e6:46:b1:c5:50:70:74: 6c:a0:13:3c:89:e9:95:1d:d5:91:a8:ae:31:75:b9: 58:86:b8:bd:98:78:f6:4c:06:5b:8e:88:fb:47:34: 8a:bf:8a:95:e1:49:75:b0:d3:be:db:df:91:4a:81: 08:99:43:62:70:a1:59:a2:d1:62:4b:46:e8:79:c9: b5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9F:0C:64:DA:27:D0:25:56:36:2B:7E:A7:DA:68:4C:BD:8D:38:E6 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:38:e5:15:02:49:7f:5d:68:b7:1f:9e:53:53:9f:e9:0e:b6: 63:75:64:11:e6:a4:9f:39:ef:81:1c:1d:85:f0:ec:5b:ad:4c: 92:50:bc:85:d4:33:e2:7c:48:a5:a9:54:ff:0d:df:2c:2d:68: 77:7c:78:cf:36:59:ae:66:e2:e0:b8:03:c4:20:0a:39:34:55: 76:ad:4d:78:45:23:54:62:72:c6:db:ed:16:b4:5d:11:ea:f8: 30:44:e6:96:25:dc:fa:f0:87:f8:15:94:db:60:81:d5:f5:f6: 60:29:6f:ed:0e:36:f1:55:f7:40:2b:d3:82:86:1f:9a:e5:13: d0:15:62:3f:b0:8c:80:c4:3d:11:13:59:5b:9e:17:41:10:12: 84:91:5d:78:db:13:14:c9:ea:e8:32:b4:63:ae:30:66:77:11: 7c:b8:a0:8b:63:5c:a4:c8:bf:2e:24:6c:f4:8c:cb:08:34:97: cc:8d:74:b6:22:8c:b5:17:02:3c:66:03:5a:fe:f5:a9:d7:c1: 4c:22:85:86:43:54:57:d3:4b:7c:25:69:83:91:a8:c9:71:42: 68:26:2c:e9:67:c7:f7:b6:f0:1d:0f:f5:01:0a:db:cf:6f:96: 24:95:6c:93:21:df:b8:a6:8c:0f:f0:9f:b8:aa:d2:4c:c3:8c: 14:4c:f4:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUwODEwMTcwMzE0WhcNMjUwODE3MTcwMzE0WjAYMRYwFAYD VQQDEw02ODk4ZDBkMi02YWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryIMIHCaWqa7nn2uNCoU1hKL1Ic++WAItxZhpgNUsrpT2QVjs+BbgxqqRh8a bJc7bbkTk+CA6biWIPtlkS+cjPgCo1h5xuRfcL9OqrWKkVe/c1tFMM21fiNiBvlu rj2Q4M39GvRGeA0LQIyaWuMPpZfv/soCjSBfuHAc7mU/3o+V8Gg3qCy0Eqhs64FH iStO2Rsn89XPOAZFzc+S4nC6PENbZoq6iVfR+4ztxtPvE6UJQpED39Sqlnvg9uZG scVQcHRsoBM8iemVHdWRqK4xdblYhri9mHj2TAZbjoj7RzSKv4qV4Ul1sNO+29+R SoEImUNicKFZotFiS0boecm1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAafDGTa J9AlVjYrfqfaaEy9jTjmMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBOOUVAkl/XWi3H55TU5/pDrZjdWQR5qSfOe+BHB2F8OxbrUySULyF 1DPifEilqVT/Dd8sLWh3fHjPNlmuZuLguAPEIAo5NFV2rU14RSNUYnLG2+0WtF0R 6vgwROaWJdz68If4FZTbYIHV9fZgKW/tDjbxVfdAK9OChh+a5RPQFWI/sIyAxD0R E1lbnhdBEBKEkV142xMUyeroMrRjrjBmdxF8uKCLY1ykyL8uJGz0jMsINJfMjXS2 Ioy1FwI8ZgNa/vWp18FMIoWGQ1RX00t8JWmDkajJcUJoJizpZ8f3tvAdD/UBCtvP b5YklWyTId+4powP8J+4qtJMw4wUTPQ3 -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:18 2025 by rpki-client