$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: oiSojC+2a79kf+zKasEx3e/IOHuTb8kH+Pj7HJnGGlY= Subject key identifier: 6C:DD:91:53:2B:79:28:15:70:64:5C:8D:64:80:B4:58:03:D1:B4:8F Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 5B Signing time: Sat 09 Aug 2025 07:37:42 +0000 Manifest this update: Sat 09 Aug 2025 07:37:41 +0000 Manifest next update: Sat 16 Aug 2025 07:37:41 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 0jZmgHXpx0asPD+9JyTPEvQZVQR7Srfy1ClvMcpwe9o=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Aug 9 07:37:41 2025 GMT Not After : Aug 16 07:37:41 2025 GMT Subject: CN=6896fac6-daa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cf:59:d8:94:9e:9c:a1:8b:9c:58:ff:a1:44: 8d:59:68:be:2b:78:6f:dd:d7:63:b3:5f:14:a7:89: 81:83:f8:b3:df:57:78:83:8e:b7:be:24:3a:8b:6e: 9d:36:49:95:cb:47:b1:9d:38:42:fb:e2:cf:38:d3: 63:a0:11:01:1e:70:9c:a0:ff:95:11:e0:ab:40:85: fd:dd:53:5e:bc:34:e6:02:42:bb:69:b1:2a:cf:5f: 0b:0f:f0:4e:c3:05:7e:94:b8:49:ea:1e:5e:22:f1: 7a:2f:ba:33:07:a3:59:64:65:f1:19:e7:83:da:b4: aa:bb:48:72:0e:8d:c6:8c:99:be:74:8f:8a:df:4b: 77:48:9b:97:36:d2:c5:b1:9f:86:02:7e:94:ba:fa: d3:0f:14:ed:90:18:34:26:16:08:c3:d5:78:e0:eb: 32:2d:05:a6:82:8e:08:65:89:dd:95:91:39:46:6e: 95:43:7a:ad:ea:85:80:e8:84:f8:f3:1b:ee:13:70: ec:10:ad:a0:32:b8:d3:47:7e:7e:b3:e4:bb:9e:cd: 2c:3c:7d:ea:ba:dd:76:e3:65:87:91:0d:bc:66:50: 2c:79:8e:15:e7:3a:b9:f9:d6:e8:ec:50:74:83:0e: 22:e5:f4:86:88:2d:33:f8:30:42:11:44:db:ec:ec: 7c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DD:91:53:2B:79:28:15:70:64:5C:8D:64:80:B4:58:03:D1:B4:8F X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c4:a5:83:c1:4f:be:63:df:44:f1:6f:36:be:41:71:51:70: 5b:fa:fe:2f:bd:8d:34:9e:d5:5d:cd:f9:58:73:1c:54:f2:ed: 44:95:a9:47:99:2f:32:40:a2:9b:57:38:0d:18:ce:f9:33:03: 8f:33:6c:4e:bd:4c:00:7b:66:e6:4c:8b:59:80:bc:cf:b0:26: a1:47:cf:c2:4e:6d:2e:5e:bf:f3:1b:f0:0c:67:2c:cf:6e:51: c3:a7:ed:e4:98:63:34:4c:7b:1d:a8:d1:c5:ea:ad:88:67:1a: 67:67:21:67:25:21:30:96:55:84:f8:0c:96:6f:19:56:ae:dd: fa:2f:ee:9b:60:71:77:1c:0d:7c:6d:63:99:df:2a:b1:e8:33: 91:4a:c0:32:81:9b:4c:6b:f7:cd:58:4e:c2:0f:c8:c5:0f:c2: fd:8a:c1:8d:8b:fa:12:10:de:96:cf:40:02:23:1c:b6:55:51: 71:fd:36:ad:30:12:1d:67:07:1c:d5:36:54:6d:fc:6e:d8:bb: 4f:6f:13:b7:ff:c3:dc:62:68:a8:46:55:83:34:ca:b5:b0:6e: c3:c8:b1:77:f5:10:87:a6:37:63:3f:37:0c:ce:31:50:9f:6d: 18:dc:26:e7:ed:4c:38:22:2c:98:95:df:2c:ed:e8:62:01:79: 33:f0:f0:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA4MDkwNzM3NDFaFw0yNTA4MTYwNzM3NDFaMBgxFjAUBgNV BAMTDTY4OTZmYWM2LWRhYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKz1nYlJ6coYucWP+hRI1ZaL4reG/d12OzXxSniYGD+LPfV3iDjre+JDqLbp02 SZXLR7GdOEL74s8402OgEQEecJyg/5UR4KtAhf3dU168NOYCQrtpsSrPXwsP8E7D BX6UuEnqHl4i8XovujMHo1lkZfEZ54PatKq7SHIOjcaMmb50j4rfS3dIm5c20sWx n4YCfpS6+tMPFO2QGDQmFgjD1Xjg6zItBaaCjghlid2VkTlGbpVDeq3qhYDohPjz G+4TcOwQraAyuNNHfn6z5LuezSw8feq63XbjZYeRDbxmUCx5jhXnOrn51ujsUHSD DiLl9IaILTP4MEIRRNvs7Hx9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbN2RUyt5 KBVwZFyNZIC0WAPRtI8wHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIXEpYPBT75j30Txbza+QXFRcFv6/i+9jTSe1V3N+VhzHFTy7USVqUeZ LzJAoptXOA0YzvkzA48zbE69TAB7ZuZMi1mAvM+wJqFHz8JObS5ev/Mb8AxnLM9u UcOn7eSYYzRMex2o0cXqrYhnGmdnIWclITCWVYT4DJZvGVau3fov7ptgcXccDXxt Y5nfKrHoM5FKwDKBm0xr981YTsIPyMUPwv2KwY2L+hIQ3pbPQAIjHLZVUXH9Nq0w Eh1nBxzVNlRt/G7Yu09vE7f/w9xiaKhGVYM0yrWwbsPIsXf1EIemN2M/NwzOMVCf bRjcJuftTDgiLJiV3yzt6GIBeTPw8Gc= -----END CERTIFICATE-----Generated at Sun Aug 10 19:02:00 2025 by rpki-client