$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft File: iJGVOO7eyDINXq9rHzKymCOreBA.mft (raw, json) Hash identifier: exhQ1luTHY63IkDqvd7043SY8hWBi2aHp1g7mtgMcX0= Subject key identifier: 04:2F:E8:AE:07:3B:4C:A4:26:E6:05:20:24:5B:B7:B8:79:6A:0C:EC Authority key identifier: 88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 Certificate issuer: /CN=A91B4460/serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft Manifest number: 3E Signing time: Sat 09 Aug 2025 07:59:57 +0000 Manifest this update: Sat 09 Aug 2025 07:59:56 +0000 Manifest next update: Sat 16 Aug 2025 07:59:56 +0000 Files and hashes: 1: iJGVOO7eyDINXq9rHzKymCOreBA.crl (hash: RukzWl9HFmfY+eU3KuALW0573zJ96m0jlcSgNAL5H/Q=) 2: 7A85F9D2148711F0AF960528C4F9AE02.roa (hash: v93VVwAanSucSOqj9EwS1pD5Lqih1cuGiSwwM282Dpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4460, serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Validity Not Before: Aug 9 07:59:56 2025 GMT Not After : Aug 16 07:59:56 2025 GMT Subject: CN=6896fffd-e304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:47:34:a7:2c:b6:d6:39:01:16:15:e7:74: af:6a:c8:66:4c:58:d2:09:3f:3f:97:82:9a:90:0b: 0f:67:48:41:5f:ce:42:3f:ce:09:b5:b3:2e:6e:dd: f1:cc:20:b6:cb:3f:c3:91:e6:a8:4c:b8:d3:84:3b: ee:09:b3:f1:0a:2b:50:0e:95:c3:54:cb:e1:ec:96: 71:e9:f8:50:9a:a5:d4:7b:c7:21:bd:44:5b:d2:db: d5:9e:47:a8:db:d2:97:83:13:58:b6:fd:60:97:4b: 88:49:95:86:e2:42:98:45:68:7e:43:a6:dd:25:62: 70:eb:4f:5c:a8:a4:26:6e:2a:30:29:df:91:c6:b0: 80:0e:71:3e:ef:95:bd:d2:64:ff:87:45:14:ef:9c: f0:f0:c1:d5:71:82:5e:02:ed:ac:63:71:a0:65:a3: c8:54:23:83:ec:2e:0b:31:32:01:d4:cf:5b:93:8f: 58:a3:02:9a:62:7e:96:90:49:78:e4:9f:12:9d:15: 85:e5:3a:d5:62:59:14:36:c6:f2:cc:86:fd:ac:bd: 4a:d2:7a:31:57:fa:15:1c:2a:11:1e:6a:1b:d4:92: 8c:aa:17:72:36:9c:d9:10:f0:e6:bb:31:d1:29:e8: c5:78:74:f2:8f:1c:f8:f9:1e:d2:19:93:a9:77:98: d0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2F:E8:AE:07:3B:4C:A4:26:E6:05:20:24:5B:B7:B8:79:6A:0C:EC X509v3 Authority Key Identifier: keyid:88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a4:48:be:a9:ac:bd:7b:65:56:4d:f2:c2:82:d3:fb:61:8b: f6:eb:02:63:a8:af:67:4f:bc:0d:c4:e4:0d:7b:3d:21:75:5e: bb:b2:74:98:b5:38:5a:44:fb:76:30:b4:6c:80:71:a5:7d:83: 34:b6:f0:a4:ad:f7:4c:39:5c:0e:3d:51:17:1c:82:b7:0d:8f: 2b:4a:b6:d4:83:0e:ce:2a:f1:29:17:80:cd:70:82:c5:36:f3: 38:e0:de:92:d6:58:d2:88:90:06:78:d0:84:97:75:1e:57:2d: 5c:ab:54:fa:64:08:f4:ce:51:93:fd:c2:af:89:3f:00:95:04: 2f:e8:3b:9c:eb:ca:2c:aa:b6:9c:cf:36:58:70:d7:96:47:1b: da:76:b5:41:e0:3d:2c:bf:5c:bf:52:53:73:33:b3:b5:91:4a: de:e7:86:1c:06:3d:11:10:ec:0d:8d:b2:3b:20:8d:fa:36:4c: 0e:45:52:3d:c8:97:3a:08:71:cf:db:bd:bf:e4:c4:29:e3:fc: d5:ff:e4:27:7b:bd:63:49:8d:19:10:97:54:93:87:71:15:6f: 1a:f4:de:d6:e4:31:17:f5:16:66:ba:43:ab:36:97:4e:c5:5d: d8:f0:b2:11:d2:00:6e:10:ec:b5:f1:0e:d3:77:94:91:b4:e1: f0:4f:72:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDQ2MDExMC8GA1UEBRMoODg5MTk1MzhFRURFQzgzMjBENUVBRjZCMUYzMkIyOTgy M0FCNzgxMDAeFw0yNTA4MDkwNzU5NTZaFw0yNTA4MTYwNzU5NTZaMBgxFjAUBgNV BAMTDTY4OTZmZmZkLWUzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1bkc0pyy21jkBFhXndK9qyGZMWNIJPz+XgpqQCw9nSEFfzkI/zgm1sy5u3fHM ILbLP8OR5qhMuNOEO+4Js/EKK1AOlcNUy+HslnHp+FCapdR7xyG9RFvS29WeR6jb 0peDE1i2/WCXS4hJlYbiQphFaH5Dpt0lYnDrT1yopCZuKjAp35HGsIAOcT7vlb3S ZP+HRRTvnPDwwdVxgl4C7axjcaBlo8hUI4PsLgsxMgHUz1uTj1ijAppifpaQSXjk nxKdFYXlOtViWRQ2xvLMhv2svUrSejFX+hUcKhEeahvUkoyqF3I2nNkQ8Oa7MdEp 6MV4dPKPHPj5HtIZk6l3mNAFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBC/orgc7 TKQm5gUgJFu3uHlqDOwwHwYDVR0jBBgwFoAUiJGVOO7eyDINXq9rHzKymCOreBAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NDYwLzA0OTg2NDc2MTQ4 NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJTlhxOXJIekt5bUNPcmVC QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUpHVk9PN2V5RElOWHE5ckh6S3ltQ09yZUJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 NDYwLzA0OTg2NDc2MTQ4NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJ TlhxOXJIekt5bUNPcmVCQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJKkSL6prL17ZVZN8sKC0/thi/brAmOor2dPvA3E5A17PSF1XruydJi1 OFpE+3YwtGyAcaV9gzS28KSt90w5XA49URccgrcNjytKttSDDs4q8SkXgM1wgsU2 8zjg3pLWWNKIkAZ40ISXdR5XLVyrVPpkCPTOUZP9wq+JPwCVBC/oO5zryiyqtpzP Nlhw15ZHG9p2tUHgPSy/XL9SU3Mzs7WRSt7nhhwGPREQ7A2Nsjsgjfo2TA5FUj3I lzoIcc/bvb/kxCnj/NX/5Cd7vWNJjRkQl1STh3EVbxr03tbkMRf1Fma6Q6s2l07F XdjwshHSAG4Q7LXxDtN3lJG04fBPcm0= -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:11 2025 by rpki-client