$ rpki-client -vvf rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft File: iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft (raw, json) Hash identifier: r4hl85ChrZrVzzOb/Ewtkfq8DRAiqQvvkO52yx/XYmg= Subject key identifier: 4F:3B:E6:87:5B:C7:B5:B4:9C:E0:29:77:DF:AE:DC:8E:EF:D8:79:AA Authority key identifier: 88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A Certificate issuer: /CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft Manifest number: 0402 Signing time: Sat 09 Aug 2025 00:58:49 +0000 Manifest this update: Sat 09 Aug 2025 00:58:48 +0000 Manifest next update: Sat 16 Aug 2025 00:58:48 +0000 Files and hashes: 1: iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl (hash: St3Mn0mtJI/hVE90zh8HQ5LQhs+y88jTszP2eOL9lPM=) 2: 25C61AECB7ED11ED9CF6A63EC4F9AE02.roa (hash: Yv9ClrwAFACGSqITuh9ooZXNuE+9WgMW5OezB268l+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376FB, serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Validity Not Before: Aug 9 00:58:48 2025 GMT Not After : Aug 16 00:58:48 2025 GMT Subject: CN=68969d48-ebae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:95:ac:db:f6:36:11:d8:10:3c:ac:f9:c1: 5d:f8:fd:c3:c2:75:97:53:72:a3:f4:e9:98:8d:8a: 4d:41:90:e1:94:62:11:b6:b8:20:b5:75:02:58:45: 35:ce:6b:42:59:57:e3:3f:c8:44:88:94:9a:2e:a9: 79:98:64:ca:9d:38:26:fb:d8:e0:80:f5:58:d1:a6: f3:41:74:90:b4:33:04:5d:3f:ed:78:cb:d9:0d:4b: fb:65:88:1e:95:24:46:45:38:9d:8d:c3:f8:1b:45: 73:e2:ec:c5:09:f3:e4:7e:70:9f:f9:17:3d:cc:c9: ea:61:27:20:f1:4a:e9:27:56:90:83:7f:a1:01:58: e0:79:1f:e2:68:0e:4f:c3:67:55:b5:94:c4:68:70: 41:45:35:d6:73:0e:46:69:44:95:b8:96:f0:d6:2c: e5:95:82:85:65:8e:e5:dd:81:c6:18:a7:03:5f:92: f7:58:6e:9a:60:cf:28:02:66:02:2d:9b:bf:85:23: 21:3e:a7:4d:28:1e:8e:0d:e8:ad:25:68:4e:8a:ab: 51:6a:93:4f:fe:77:bd:f6:f5:69:63:38:fe:25:8d: 4a:39:82:cb:c5:29:38:3a:c1:50:84:de:3c:d3:34: e0:80:9d:23:6b:14:a1:22:4b:17:05:fc:0e:ce:78: e8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:3B:E6:87:5B:C7:B5:B4:9C:E0:29:77:DF:AE:DC:8E:EF:D8:79:AA X509v3 Authority Key Identifier: keyid:88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:78:24:6f:a5:89:84:4c:23:ca:5c:fe:54:48:b7:63:75:aa: 3c:e9:40:ca:29:4a:a3:1a:78:de:ed:53:25:66:3c:30:35:d8: 14:13:b0:56:df:f8:f5:ce:2e:3c:cd:36:4a:6d:54:10:30:35: d8:a6:a4:73:6a:90:ea:1e:d9:94:db:ed:ed:8f:44:29:f8:42: 53:86:27:a9:67:50:89:ce:e0:53:76:2c:c2:f5:f3:9a:3b:4e: fb:34:e9:9f:c8:ba:bb:24:c2:7b:99:c3:62:f1:1b:e3:da:91: ee:f4:97:bc:3b:21:bc:55:84:eb:df:49:a0:42:5a:43:a5:45: fe:fa:44:dc:98:5d:45:c3:ce:e2:ba:89:ae:ae:1f:37:42:ea: b8:52:ed:1a:1f:c5:b9:b6:c7:de:fa:cc:bf:72:ce:23:0d:b5: f9:96:6a:60:40:79:75:e0:c9:5f:c7:cd:25:21:a9:a5:7c:f5: c5:fb:17:8e:6e:f9:54:4d:73:fd:fb:c4:1e:29:40:17:06:c7: 16:ad:c6:5b:7e:d1:5e:bb:85:e0:d7:93:54:41:82:0f:06:b4: 46:7e:be:1f:f3:26:ed:34:da:cd:83:f7:5a:97:1d:e3:69:74: 2a:12:44:8f:4f:67:48:3f:ed:75:ed:84:33:d5:09:75:a8:0c: d0:d1:91:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RkIxMTAvBgNVBAUTKDg4NkEwRUU2QkM3QUJEQzA5RkE4MjJFMTE0REY0MzVG MEIwRTg2NUEwHhcNMjUwODA5MDA1ODQ4WhcNMjUwODE2MDA1ODQ4WjAYMRYwFAYD VQQDEw02ODk2OWQ0OC1lYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwCVrNv2NhHYEDys+cFd+P3DwnWXU3Kj9OmYjYpNQZDhlGIRtrggtXUCWEU1 zmtCWVfjP8hEiJSaLql5mGTKnTgm+9jggPVY0abzQXSQtDMEXT/teMvZDUv7ZYge lSRGRTidjcP4G0Vz4uzFCfPkfnCf+Rc9zMnqYScg8UrpJ1aQg3+hAVjgeR/iaA5P w2dVtZTEaHBBRTXWcw5GaUSVuJbw1izllYKFZY7l3YHGGKcDX5L3WG6aYM8oAmYC LZu/hSMhPqdNKB6ODeitJWhOiqtRapNP/ne99vVpYzj+JY1KOYLLxSk4OsFQhN48 0zTggJ0jaxShIksXBfwOznjo/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE875odb x7W0nOApd9+u3I7v2HmqMB8GA1UdIwQYMBaAFIhqDua8er3An6gi4RTfQ18LDoZa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZGQi85MkZCNzFBMDgz RjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZjQ2ZxQ0xoRk45RFh3c09o bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lHb081cng2dmNDZnFDTGhGTjlEWHdzT2hsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzZGQi85MkZCNzFBMDgzRjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZj Q2ZxQ0xoRk45RFh3c09obG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEeCRvpYmETCPKXP5USLdjdao86UDKKUqjGnje7VMlZjwwNdgUE7BW 3/j1zi48zTZKbVQQMDXYpqRzapDqHtmU2+3tj0Qp+EJThiepZ1CJzuBTdizC9fOa O077NOmfyLq7JMJ7mcNi8Rvj2pHu9Je8OyG8VYTr30mgQlpDpUX++kTcmF1Fw87i uomurh83Quq4Uu0aH8W5tsfe+sy/cs4jDbX5lmpgQHl14Mlfx80lIamlfPXF+xeO bvlUTXP9+8QeKUAXBscWrcZbftFeu4Xg15NUQYIPBrRGfr4f8ybtNNrNg/dalx3j aXQqEkSPT2dIP+117YQz1Ql1qAzQ0ZHM -----END CERTIFICATE-----Generated at Sat Aug 9 23:07:37 2025 by rpki-client