$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: IaS5GO42CDlj9cHJijw/yxe7Kl2ymyEdqWSUgiFBfqc= Subject key identifier: F8:A8:03:67:A8:9D:B7:6F:DC:8F:9F:A7:87:95:BE:23:01:4D:72:BB Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C68 Signing time: Fri 08 Aug 2025 18:38:00 +0000 Manifest this update: Fri 08 Aug 2025 18:38:00 +0000 Manifest next update: Fri 15 Aug 2025 18:38:00 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: 5dyidUb3gmdCx4bcZV7B4CWbPip6TKP82rRioc3phJQ=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3186 (0xc72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Aug 8 18:38:00 2025 GMT Not After : Aug 15 18:38:00 2025 GMT Subject: CN=68964408-506b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:c1:87:76:d2:e8:03:23:d8:08:87:f9:74: 80:ed:a3:93:41:51:bc:7d:7d:23:70:5c:80:ea:50: a9:aa:6b:b3:68:bc:3f:2f:c2:1d:78:06:db:6e:b7: e4:b9:45:5e:f1:89:d5:14:14:76:8b:11:b5:99:de: c7:d3:02:8c:a9:c9:0a:6f:57:3c:a0:25:2f:83:06: 1f:46:7b:b4:65:09:bf:12:24:93:40:65:83:79:ee: a5:0b:85:39:38:0e:ff:f5:4d:70:e9:14:ef:4c:ac: 7e:e2:d1:82:1c:e3:24:4b:10:06:0c:80:ae:c5:ae: ce:83:67:97:4d:26:6d:12:d4:cf:14:41:31:2b:68: b9:fc:30:a3:20:cd:16:fb:e6:ee:4d:30:83:62:24: da:5a:37:41:98:6b:f0:5a:d6:07:7f:a5:c2:ff:5c: 1e:06:65:a3:47:18:77:78:32:65:f8:0b:33:6f:08: 9d:54:f0:fa:c7:3c:ed:00:3f:55:b7:a1:cb:ad:a4: 80:80:e9:93:52:dd:98:17:59:7d:28:b0:8c:77:39: f1:77:79:36:a1:4f:86:c6:83:e8:72:2e:bc:74:1d: 91:fe:2c:eb:2c:c6:46:f8:66:6f:e6:9f:c2:03:56: cd:58:a2:e5:f0:96:29:ae:3c:e4:73:dd:0c:ca:6e: 24:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A8:03:67:A8:9D:B7:6F:DC:8F:9F:A7:87:95:BE:23:01:4D:72:BB X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:43:4d:7b:57:fd:3c:a0:12:05:85:1e:c8:03:ff:02:32:4b: 27:0a:a8:bb:60:47:39:ef:eb:3d:84:bd:3f:b9:35:13:bb:1d: 60:64:46:97:f0:ec:ee:93:12:8b:8f:b3:38:79:94:37:7a:5d: 60:23:16:87:c1:d5:6b:1a:79:ff:d4:a0:8e:9e:90:57:e8:ca: 6c:02:a4:dd:a5:f4:fa:a4:a2:d1:d8:c3:ab:0b:7d:c9:d3:7d: 20:e2:cb:82:4c:13:ab:02:b0:84:00:d6:74:f1:c9:43:3c:d3: ca:bf:40:cc:77:7b:d1:83:4c:89:4a:06:85:f0:af:26:c3:16: 63:e2:a1:f1:1c:fb:82:f4:14:b2:f1:5e:a0:ed:8e:fb:9e:10: 77:ad:80:9c:a2:58:4b:36:20:dc:85:02:aa:54:45:4c:9a:27: 27:7f:47:5c:1e:4c:b4:28:11:aa:88:d7:60:76:5c:49:20:0c: 3e:a3:ed:d4:b0:98:94:a9:b8:b5:ca:37:34:08:19:76:f3:03: 68:43:c5:ae:de:f8:8f:ec:f0:5d:1a:d8:81:36:25:97:95:a5: fd:c1:23:46:d3:02:d2:a0:02:83:5a:6e:5f:db:9d:6d:b2:11: 97:8b:8b:9b:c0:95:5b:db:47:71:b9:c6:f4:ee:0a:b7:a9:51: d8:ed:10:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwODA4MTgzODAwWhcNMjUwODE1MTgzODAwWjAYMRYwFAYD VQQDEw02ODk2NDQwOC01MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvPBh3bS6AMj2AiH+XSA7aOTQVG8fX0jcFyA6lCpqmuzaLw/L8IdeAbbbrfk uUVe8YnVFBR2ixG1md7H0wKMqckKb1c8oCUvgwYfRnu0ZQm/EiSTQGWDee6lC4U5 OA7/9U1w6RTvTKx+4tGCHOMkSxAGDICuxa7Og2eXTSZtEtTPFEExK2i5/DCjIM0W ++buTTCDYiTaWjdBmGvwWtYHf6XC/1weBmWjRxh3eDJl+AszbwidVPD6xzztAD9V t6HLraSAgOmTUt2YF1l9KLCMdznxd3k2oU+GxoPoci68dB2R/izrLMZG+GZv5p/C A1bNWKLl8JYprjzkc90Mym4kEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPioA2eo nbdv3I+fp4eVviMBTXK7MB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuQ017V/08oBIFhR7IA/8CMksnCqi7YEc57+s9hL0/uTUTux1gZEaX 8OzukxKLj7M4eZQ3el1gIxaHwdVrGnn/1KCOnpBX6MpsAqTdpfT6pKLR2MOrC33J 030g4suCTBOrArCEANZ08clDPNPKv0DMd3vRg0yJSgaF8K8mwxZj4qHxHPuC9BSy 8V6g7Y77nhB3rYCcolhLNiDchQKqVEVMmicnf0dcHky0KBGqiNdgdlxJIAw+o+3U sJiUqbi1yjc0CBl28wNoQ8Wu3viP7PBdGtiBNiWXlaX9wSNG0wLSoAKDWm5f251t shGXi4ubwJVb20dxucb07gq3qVHY7RBf -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:17 2025 by rpki-client