$ rpki-client -vvf rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft File: e-IwFTz_kAFkLbybJPhdDMKCNk4.mft (raw, json) Hash identifier: CQFrxXGR6qE7BreQonjpqr1Cp2HY77YYRnwTbD33L0E= Subject key identifier: AD:FB:78:A1:F1:74:7C:CD:71:CD:D8:47:3C:0C:C0:9A:50:AF:62:C8 Authority key identifier: 7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E Certificate issuer: /CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft Manifest number: 0147 Signing time: Thu 07 Aug 2025 04:54:23 +0000 Manifest this update: Thu 07 Aug 2025 04:54:22 +0000 Manifest next update: Thu 14 Aug 2025 04:54:22 +0000 Files and hashes: 1: e-IwFTz_kAFkLbybJPhdDMKCNk4.crl (hash: dOvV5hdAAmWWZQONB5T0/8mTh6IMScZUr68dJL+bgaA=) 2: 9D3EBEF4921111EE9AD1150CC4F9AE02.roa (hash: H7JonSUtz6tgIVuXpEGUpFZ7fUQBIkEHbO/Cd9DHtNo=) 3: C00D9A3C71EE11EFA7DD021EC4F9AE02.roa (hash: j/6dClTGKIF6Y0W3OQ8vmv5qC35aQkMZjQK9N8GGPFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91625DB, serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Validity Not Before: Aug 7 04:54:22 2025 GMT Not After : Aug 14 04:54:22 2025 GMT Subject: CN=6894317e-d633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a4:a5:cf:a8:be:76:5c:d0:48:6b:92:89:06: ac:7f:d4:f1:af:44:73:9f:27:01:b5:a9:26:0d:f7: 8c:6e:3f:26:b2:c0:f7:7e:ce:2e:bc:ec:3d:a7:db: bf:20:c9:9c:b0:b0:34:b7:81:2a:e5:64:00:8f:c9: 7c:b2:1e:eb:0f:b0:a9:39:20:66:f1:01:6d:67:97: 7a:cd:e0:04:66:e3:0a:a7:f8:0b:fa:ca:dd:aa:cf: 61:89:08:ea:20:f5:11:b9:53:4b:89:09:aa:c3:5c: dd:06:f1:61:24:7e:68:c1:ff:d0:56:20:f8:ce:bc: 0a:51:22:a2:3e:49:2a:df:93:14:80:98:32:06:61: 0b:b5:ca:6c:d1:ae:91:c6:7c:48:28:5e:a7:16:b8: 5a:c9:60:c3:a3:50:3b:4a:9f:4f:e2:c6:fc:98:20: f1:e8:1a:0e:84:dd:1d:c8:48:88:36:3a:c2:8c:12: 73:d4:63:cc:97:67:29:27:b6:9a:61:43:fc:a4:c0: 48:3b:e1:ef:83:4b:a2:e8:6a:21:33:5e:a1:1a:63: a1:68:42:15:bb:a5:54:4d:97:2c:09:09:98:23:0a: df:89:c9:c4:de:4e:50:0c:41:a9:a5:9d:cc:6c:08: e4:6d:c3:c0:a5:dc:fa:5a:7e:35:73:43:21:7a:be: e5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FB:78:A1:F1:74:7C:CD:71:CD:D8:47:3C:0C:C0:9A:50:AF:62:C8 X509v3 Authority Key Identifier: keyid:7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c4:9d:d3:5e:b0:ee:88:d1:02:5d:c0:fa:e2:86:85:a4:4d: 0d:4d:9b:4c:10:f7:ed:78:9b:41:8a:f2:48:97:0d:97:0b:5f: 23:f9:06:6f:56:ff:d1:92:47:cb:a2:90:bb:b3:99:9a:5d:11: 92:8b:79:bc:4c:fd:db:bf:a2:b0:a9:23:92:d1:a5:c0:82:50: a4:cc:db:89:d2:ef:1e:c0:84:07:5c:85:af:86:94:e1:ac:3e: 43:59:5f:5e:42:52:2a:a9:8a:c7:c0:4a:78:92:94:eb:92:31: 71:1e:25:85:8d:b3:df:38:d6:8e:cd:40:f6:31:3b:72:4d:82: 1f:65:ef:11:ba:d9:cb:34:fe:0c:d6:ac:03:f9:24:26:b0:2c: af:63:8b:f4:5d:0f:4a:9b:2a:85:05:bc:58:9e:70:b6:ce:ae: 63:be:55:f8:08:c1:ee:02:22:17:eb:db:e8:b3:86:e3:01:65: 8c:44:81:75:fc:c8:f1:d1:de:9b:d2:26:ff:b2:a0:60:66:9b: b4:8c:d9:dc:47:6e:a5:08:79:c4:88:82:d8:9e:61:5e:44:3b: 78:46:51:83:25:11:81:23:1c:30:f6:81:8e:cf:d7:58:7f:55: ee:6e:2b:59:21:9a:31:ca:b9:4f:18:ee:42:d1:e5:74:11:10: 26:d3:2a:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI1REIxMTAvBgNVBAUTKDdCRTIzMDE1M0NGRjkwMDE2NDJEQkM5QjI0Rjg1RDBD QzI4MjM2NEUwHhcNMjUwODA3MDQ1NDIyWhcNMjUwODE0MDQ1NDIyWjAYMRYwFAYD VQQDEw02ODk0MzE3ZS1kNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aSlz6i+dlzQSGuSiQasf9Txr0RznycBtakmDfeMbj8mssD3fs4uvOw9p9u/ IMmcsLA0t4Eq5WQAj8l8sh7rD7CpOSBm8QFtZ5d6zeAEZuMKp/gL+srdqs9hiQjq IPURuVNLiQmqw1zdBvFhJH5owf/QViD4zrwKUSKiPkkq35MUgJgyBmELtcps0a6R xnxIKF6nFrhayWDDo1A7Sp9P4sb8mCDx6BoOhN0dyEiINjrCjBJz1GPMl2cpJ7aa YUP8pMBIO+Hvg0ui6GohM16hGmOhaEIVu6VUTZcsCQmYIwrficnE3k5QDEGppZ3M bAjkbcPApdz6Wn41c0Mher7lZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK37eKHx dHzNcc3YRzwMwJpQr2LIMB8GA1UdIwQYMBaAFHviMBU8/5ABZC28myT4XQzCgjZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjVEQi8xMTkzOUQxMDkw NjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tBRmtMYnliSlBoZERNS0NO azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtSXdGVHpfa0FGa0xieWJKUGhkRE1LQ05rNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjVEQi8xMTkzOUQxMDkwNjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tB RmtMYnliSlBoZERNS0NOazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGxJ3TXrDuiNECXcD64oaFpE0NTZtMEPfteJtBivJIlw2XC18j+QZv Vv/RkkfLopC7s5maXRGSi3m8TP3bv6KwqSOS0aXAglCkzNuJ0u8ewIQHXIWvhpTh rD5DWV9eQlIqqYrHwEp4kpTrkjFxHiWFjbPfONaOzUD2MTtyTYIfZe8RutnLNP4M 1qwD+SQmsCyvY4v0XQ9KmyqFBbxYnnC2zq5jvlX4CMHuAiIX69vos4bjAWWMRIF1 /Mjx0d6b0ib/sqBgZpu0jNncR26lCHnEiILYnmFeRDt4RlGDJRGBIxww9oGOz9dY f1XubitZIZoxyrlPGO5C0eV0ERAm0yqx -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:02 2025 by rpki-client