$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: 8JwQXnqJxYyID2wacNSa8bdeG5km5abZ0evXQ3S1FLs= Subject key identifier: 20:92:33:30:C8:03:BD:4B:8F:80:2D:76:45:0A:62:D8:B2:07:29:CA Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 152F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2BF4 Signing time: Fri 08 Aug 2025 16:58:24 +0000 Manifest this update: Fri 08 Aug 2025 16:58:23 +0000 Manifest next update: Fri 15 Aug 2025 16:58:23 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: d07ozIBKHoysJ/u/x1a7lZ/NL7BmZxkE+U0wmGsyXqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5423 (0x152f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Aug 8 16:58:23 2025 GMT Not After : Aug 15 16:58:23 2025 GMT Subject: CN=68962caf-2913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:af:88:5b:da:51:37:55:73:45:27:03:8b:80: 37:da:30:51:b1:82:62:6e:f5:33:bb:61:99:50:a1: 19:47:aa:69:ee:5f:1d:a1:34:70:1a:bb:47:02:9f: e0:e7:f0:99:e0:7e:e9:1b:3b:04:92:97:0a:12:8b: 03:50:ab:03:e9:3b:f8:ad:57:8c:90:a1:b9:11:0b: c2:8b:56:79:51:96:fd:4a:53:e4:cc:65:ed:31:01: 7e:07:b3:91:56:ca:61:4d:1e:10:8a:d2:8b:a1:a7: 1d:45:8b:34:e8:35:94:ec:61:a2:98:41:08:cd:fe: ad:2f:29:c3:47:62:58:b1:36:ca:5f:8e:3a:ac:e7: c8:95:9d:07:d4:29:9e:48:0b:23:cf:96:c3:36:85: e3:76:d1:2d:a7:44:c2:8a:2f:ea:67:3a:db:4e:cb: 53:4d:b3:aa:d0:98:ad:76:66:ca:e4:eb:eb:1b:b5: 7c:3f:4f:3b:54:62:84:73:83:38:3e:d5:5b:f3:d6: a4:5d:07:28:35:b8:69:7d:48:24:c0:24:6e:1e:99: 25:38:04:1c:a1:3a:8d:2a:a3:45:79:f8:00:0d:89: de:9e:24:99:bb:f5:30:56:6b:5d:93:95:a6:b8:5d: 0a:8e:67:f8:2e:7e:58:bd:16:f8:46:c3:f9:0f:00: 83:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:92:33:30:C8:03:BD:4B:8F:80:2D:76:45:0A:62:D8:B2:07:29:CA X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:da:b2:01:81:79:95:14:97:b0:3b:de:20:77:4c:f8:17:39: e1:49:d3:5f:68:7c:75:3e:73:70:bb:99:d8:8a:65:9a:d0:c0: d3:8b:9c:f6:14:40:4b:dc:c5:66:c7:7f:2f:0f:6b:52:b6:e3: 3b:e2:9d:33:d5:c8:53:3f:90:f2:20:5e:43:26:d3:31:11:9c: 24:33:2d:e6:be:54:b3:0a:ed:6b:6d:e4:7e:92:b2:78:11:ec: 36:89:3e:77:83:04:a4:e5:57:7e:32:cb:70:af:55:bc:6d:e2: 2a:db:55:ee:80:6a:5e:6d:81:e7:09:21:60:49:35:3d:1f:da: 46:5e:0d:b3:d8:8d:aa:58:7b:88:2c:4c:dd:1a:56:08:00:84: c9:cf:b0:d3:24:f7:0d:ac:08:51:1e:a1:63:41:2b:41:86:c5: 1a:9b:62:fe:ef:06:30:49:56:8a:32:f8:5d:2e:3b:10:89:4a: 4e:eb:f2:ad:b3:82:ae:68:81:da:9a:81:68:9f:b9:10:a1:aa: ab:30:64:95:4c:2a:8d:4e:73:c7:d0:a3:78:7e:6a:98:8e:ee: 10:23:39:93:0a:86:dd:7e:2e:30:d8:a1:34:a0:51:1f:db:d5: c3:54:57:ff:c4:b9:16:7c:e5:db:4f:67:01:f7:11:5a:3c:92: c9:bf:98:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUwODA4MTY1ODIzWhcNMjUwODE1MTY1ODIzWjAYMRYwFAYD VQQDEw02ODk2MmNhZi0yOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAta+IW9pRN1VzRScDi4A32jBRsYJibvUzu2GZUKEZR6pp7l8doTRwGrtHAp/g 5/CZ4H7pGzsEkpcKEosDUKsD6Tv4rVeMkKG5EQvCi1Z5UZb9SlPkzGXtMQF+B7OR VsphTR4QitKLoacdRYs06DWU7GGimEEIzf6tLynDR2JYsTbKX446rOfIlZ0H1Cme SAsjz5bDNoXjdtEtp0TCii/qZzrbTstTTbOq0JitdmbK5OvrG7V8P087VGKEc4M4 PtVb89akXQcoNbhpfUgkwCRuHpklOAQcoTqNKqNFefgADYneniSZu/UwVmtdk5Wm uF0Kjmf4Ln5YvRb4RsP5DwCDTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCSMzDI A71Lj4AtdkUKYtiyBynKMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDW2rIBgXmVFJewO94gd0z4FznhSdNfaHx1PnNwu5nYimWa0MDTi5z2 FEBL3MVmx38vD2tStuM74p0z1chTP5DyIF5DJtMxEZwkMy3mvlSzCu1rbeR+krJ4 Eew2iT53gwSk5Vd+Mstwr1W8beIq21XugGpebYHnCSFgSTU9H9pGXg2z2I2qWHuI LEzdGlYIAITJz7DTJPcNrAhRHqFjQStBhsUam2L+7wYwSVaKMvhdLjsQiUpO6/Kt s4KuaIHamoFon7kQoaqrMGSVTCqNTnPH0KN4fmqYju4QIzmTCobdfi4w2KE0oFEf 29XDVFf/xLkWfOXbT2cB9xFaPJLJv5hh -----END CERTIFICATE-----Generated at Sun Aug 10 04:23:40 2025 by rpki-client