$ rpki-client -vvf rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft File: I9INognIlcMA7mtlm2sYKZJfvU8.mft (raw, json) Hash identifier: L5ZYj8dOuEWLJdLL8wgqrTj6XPcK+AsgsBMKpf9j+Zo= Subject key identifier: EB:A3:9B:63:0F:8A:1E:24:70:A5:67:16:58:EF:5A:0E:91:3E:05:0A Authority key identifier: 23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F Certificate issuer: /CN=A91829E3/serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft Manifest number: 0C2C Signing time: Fri 08 Aug 2025 18:56:30 +0000 Manifest this update: Fri 08 Aug 2025 18:56:29 +0000 Manifest next update: Fri 15 Aug 2025 18:56:29 +0000 Files and hashes: 1: I9INognIlcMA7mtlm2sYKZJfvU8.crl (hash: Ti5xlAn33o8y0mMuHmyU8hzhz86NPZAOrz2jmx5rA+s=) 2: 7B96F1340C6011F088E6FD2FC4F9AE02.roa (hash: FmIgsBhn26Msitd9uYBqz2EKKDjWry4yTM+2My3/Yyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91829E3, serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Validity Not Before: Aug 8 18:56:29 2025 GMT Not After : Aug 15 18:56:29 2025 GMT Subject: CN=6896485e-96da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fb:4d:69:22:eb:a7:23:5b:40:2e:67:ae:5f: 87:52:26:9c:e9:e3:da:25:70:d1:a9:7a:4c:df:dc: 34:df:5a:e0:a5:06:bc:e8:d3:c6:b8:f8:c7:ca:c8: 10:1d:f8:1e:32:ce:7b:11:0f:b7:2f:84:dd:f2:79: 0c:93:f8:57:a4:52:80:37:39:27:8c:d3:b8:c7:57: 3e:9c:59:97:ed:8b:fa:c1:c4:a2:b7:c5:aa:24:57: 09:8b:eb:d7:46:51:2d:2a:2c:14:86:9e:9a:ae:5c: 7d:1b:01:20:fe:15:3a:8b:7a:6e:bd:7e:fc:7e:b2: d0:21:b0:0e:4d:2a:5c:5c:b6:e6:ef:57:97:a1:96: 97:fd:13:54:c2:2e:a4:2d:ec:07:83:38:97:4d:cf: b4:e8:b8:58:f1:fe:44:af:c8:38:54:63:84:0e:f6: ed:ee:6e:3f:9d:6c:b0:c6:c4:2c:e5:f4:1c:04:cd: 23:22:94:e6:0e:35:0d:0e:0a:58:b1:ba:68:79:f4: 4e:fe:75:72:fa:b6:43:e3:cc:47:88:84:87:6b:19: e9:00:f0:2b:cf:18:fb:0a:8e:91:17:8c:b7:a7:45: 37:b9:c6:72:ec:c7:0e:dc:12:3e:81:44:17:46:af: 85:9d:48:d7:64:26:9c:ad:60:24:f1:00:8f:e4:07: 49:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A3:9B:63:0F:8A:1E:24:70:A5:67:16:58:EF:5A:0E:91:3E:05:0A X509v3 Authority Key Identifier: keyid:23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:5d:bc:e9:8b:6a:03:72:00:e3:24:05:34:a6:2f:30:b0:ba: 36:29:87:ef:97:47:af:fe:37:9e:3f:9f:04:30:e5:48:45:d2: e0:af:0b:2c:35:e5:bb:d5:5e:a4:12:ae:1d:61:13:40:eb:40: 6a:a6:e2:5a:cd:ab:ec:c2:40:5b:bf:d2:08:4f:fc:be:5a:48: 11:3f:fe:37:de:3f:3c:f4:55:3a:f4:ad:43:60:44:4c:4f:ce: 54:28:4b:40:13:20:88:e9:4a:74:49:c7:ac:62:5f:3f:38:22: b0:18:d6:da:49:53:94:8b:71:0a:65:d6:cc:37:8a:f6:ec:2f: 3e:e9:e5:b1:8b:1e:b8:b1:76:99:46:25:c8:ec:5a:a0:21:74: aa:ec:84:5f:ea:89:f6:43:2e:a5:a9:9b:ef:6b:03:63:00:42: e2:7a:0e:4e:85:db:e1:ab:0b:3c:e2:6b:01:47:c8:ff:36:74: b3:5c:cc:3c:63:69:40:d0:df:a0:b0:9b:64:94:4f:c1:9d:c2: 4c:63:31:38:4c:af:1f:c2:37:de:e0:c9:6f:4d:eb:8f:37:df: ed:db:aa:0a:7f:b1:f0:7d:06:29:28:6e:03:9b:65:30:fb:d6: fa:a8:00:01:ef:55:e7:7d:57:21:51:29:58:63:a6:b9:85:d1: 99:c7:1c:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5RTMxMTAvBgNVBAUTKDIzRDIwREEyMDlDODk1QzMwMEVFNkI2NTlCNkIxODI5 OTI1RkJENEYwHhcNMjUwODA4MTg1NjI5WhcNMjUwODE1MTg1NjI5WjAYMRYwFAYD VQQDEw02ODk2NDg1ZS05NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvtNaSLrpyNbQC5nrl+HUiac6ePaJXDRqXpM39w031rgpQa86NPGuPjHysgQ HfgeMs57EQ+3L4Td8nkMk/hXpFKANzknjNO4x1c+nFmX7Yv6wcSit8WqJFcJi+vX RlEtKiwUhp6arlx9GwEg/hU6i3puvX78frLQIbAOTSpcXLbm71eXoZaX/RNUwi6k LewHgziXTc+06LhY8f5Er8g4VGOEDvbt7m4/nWywxsQs5fQcBM0jIpTmDjUNDgpY sbpoefRO/nVy+rZD48xHiISHaxnpAPArzxj7Co6RF4y3p0U3ucZy7McO3BI+gUQX Rq+FnUjXZCacrWAk8QCP5AdJEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOujm2MP ih4kcKVnFljvWg6RPgUKMB8GA1UdIwQYMBaAFCPSDaIJyJXDAO5rZZtrGCmSX71P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjlFMy9DNDVGNjBEQTE0 MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxjTUE3bXRsbTJzWUtaSmZ2 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5SU5vZ25JbGNNQTdtdGxtMnNZS1pKZnZVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjlFMy9DNDVGNjBEQTE0MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxj TUE3bXRsbTJzWUtaSmZ2VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBXbzpi2oDcgDjJAU0pi8wsLo2KYfvl0ev/jeeP58EMOVIRdLgrwss NeW71V6kEq4dYRNA60BqpuJazavswkBbv9IIT/y+WkgRP/433j889FU69K1DYERM T85UKEtAEyCI6Up0ScesYl8/OCKwGNbaSVOUi3EKZdbMN4r27C8+6eWxix64sXaZ RiXI7FqgIXSq7IRf6on2Qy6lqZvvawNjAELieg5Ohdvhqws84msBR8j/NnSzXMw8 Y2lA0N+gsJtklE/BncJMYzE4TK8fwjfe4MlvTeuPN9/t26oKf7HwfQYpKG4Dm2Uw +9b6qAAB71XnfVchUSlYY6a5hdGZxxzz -----END CERTIFICATE-----Generated at Sat Aug 9 10:52:57 2025 by rpki-client