$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: pFZ22iMRQy2bPfaXSVr86DQGcpu1GHNelZuTgNsJBk4= Subject key identifier: 89:14:FA:0A:AC:FF:4D:D2:D6:B8:A5:AC:AD:AE:34:CB:00:70:45:E0 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 067E Signing time: Fri 08 Aug 2025 22:46:42 +0000 Manifest this update: Fri 08 Aug 2025 22:46:41 +0000 Manifest next update: Fri 15 Aug 2025 22:46:41 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: ODM2idnQF5WKoSehGagtRVfBlrtk4DUsZyx0GK5uLLI=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Aug 8 22:46:41 2025 GMT Not After : Aug 15 22:46:41 2025 GMT Subject: CN=68967e51-c10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:dd:13:21:22:ba:a4:75:36:24:fd:85:50: a7:11:7e:1d:78:a7:ad:16:44:16:c4:6b:3d:0e:85: c5:ee:b4:e0:3e:49:4a:52:f4:f2:db:b3:bc:89:f0: 56:17:cb:70:ab:fe:4d:4f:22:b3:2b:09:7e:e0:d4: 48:43:af:ce:ce:cc:fb:82:7d:66:93:10:53:58:5e: 6b:4f:43:fc:b8:89:98:ca:52:b9:e9:3e:c4:e4:10: df:d7:93:81:f4:2c:69:84:f0:fe:68:f0:6d:70:fd: fd:31:1c:70:44:7f:43:7b:a3:71:9a:70:e3:ce:ab: b3:1d:f3:5c:be:fa:74:89:9f:14:68:35:e1:fd:a7: 14:9d:0f:37:97:37:66:e8:b8:52:39:6f:55:2b:94: ab:b8:50:9a:3a:bf:9e:34:12:63:0f:cd:83:6f:ad: 08:a0:65:5a:4d:ca:80:c7:e5:d7:c5:fe:ea:cb:93: 39:09:41:4a:20:45:e2:45:38:7e:e7:fa:68:6a:a5: ad:5a:e1:50:af:61:7c:26:32:14:ef:ab:a3:e0:cb: e0:04:c1:bf:6d:12:fe:9c:d7:98:49:42:08:cb:07: a8:68:37:84:0b:44:12:f9:62:9d:0a:03:85:77:46: 0d:bd:64:10:1c:96:e5:6f:3e:15:af:32:af:9c:32: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:14:FA:0A:AC:FF:4D:D2:D6:B8:A5:AC:AD:AE:34:CB:00:70:45:E0 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e8:92:2d:b8:39:af:0d:b0:e9:b0:d8:7b:20:bd:3f:96:2a: f3:75:78:e2:4f:d1:4c:cb:72:91:ac:bb:a3:b6:a2:a2:d1:e5: 0c:ee:e2:8e:e1:ee:ca:1e:07:b8:8d:b4:b1:2a:d9:00:0b:04: ba:31:93:76:37:93:46:f9:44:98:5f:3e:4d:d3:4c:93:0e:d4: 4c:48:6a:f1:25:78:09:a3:11:49:7f:87:ee:26:69:ce:42:c4: 4a:73:74:19:b9:f4:3a:d3:f8:be:d7:f9:85:51:5e:a7:2f:69: 77:90:10:1c:c6:45:a3:6f:f5:89:b4:aa:83:5a:35:96:03:c9: e7:cf:8c:bc:94:43:ae:f7:4b:1e:26:39:42:90:d8:0a:c0:ce: 81:a1:cf:a1:ee:81:46:57:af:61:73:b9:c9:12:0d:12:c7:7d: 96:16:a8:cd:5f:1c:fe:cb:53:5b:d9:dd:fd:13:5c:f8:82:91: d7:05:93:c7:d6:2b:cf:07:e3:6a:71:07:f3:7b:a0:fc:f8:8d: c7:80:bc:d6:de:2a:96:37:7f:70:70:14:7e:b6:ce:30:d1:73: 43:7e:85:11:28:05:0d:5c:44:b2:10:bc:ef:3c:d1:e1:41:b8: 67:86:7f:16:d4:3c:36:e6:3f:65:99:26:94:98:21:9a:8d:71: 5c:21:3f:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwODA4MjI0NjQxWhcNMjUwODE1MjI0NjQxWjAYMRYwFAYD VQQDEw02ODk2N2U1MS1jMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZDdEyEiuqR1NiT9hVCnEX4deKetFkQWxGs9DoXF7rTgPklKUvTy27O8ifBW F8twq/5NTyKzKwl+4NRIQ6/Ozsz7gn1mkxBTWF5rT0P8uImYylK56T7E5BDf15OB 9CxphPD+aPBtcP39MRxwRH9De6NxmnDjzquzHfNcvvp0iZ8UaDXh/acUnQ83lzdm 6LhSOW9VK5SruFCaOr+eNBJjD82Db60IoGVaTcqAx+XXxf7qy5M5CUFKIEXiRTh+ 5/poaqWtWuFQr2F8JjIU76uj4MvgBMG/bRL+nNeYSUIIyweoaDeEC0QS+WKdCgOF d0YNvWQQHJblbz4VrzKvnDI5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkU+gqs /03S1rilrK2uNMsAcEXgMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp6JItuDmvDbDpsNh7IL0/lirzdXjiT9FMy3KRrLujtqKi0eUM7uKO 4e7KHge4jbSxKtkACwS6MZN2N5NG+USYXz5N00yTDtRMSGrxJXgJoxFJf4fuJmnO QsRKc3QZufQ60/i+1/mFUV6nL2l3kBAcxkWjb/WJtKqDWjWWA8nnz4y8lEOu90se JjlCkNgKwM6Boc+h7oFGV69hc7nJEg0Sx32WFqjNXxz+y1Nb2d39E1z4gpHXBZPH 1ivPB+NqcQfze6D8+I3HgLzW3iqWN39wcBR+ts4w0XNDfoURKAUNXESyELzvPNHh Qbhnhn8W1Dw25j9lmSaUmCGajXFcIT8x -----END CERTIFICATE-----Generated at Sun Aug 10 18:53:23 2025 by rpki-client