$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: mgPgKZ43RxnrGV7BkGajzOFPCAP1tv+3GjxuPfe4njA= Subject key identifier: 3D:23:AD:15:0A:85:08:8E:57:5A:7B:B0:7A:44:0B:D8:2D:74:E3:33 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: BD Signing time: Sat 09 Aug 2025 06:19:57 +0000 Manifest this update: Sat 09 Aug 2025 06:19:56 +0000 Manifest next update: Sat 16 Aug 2025 06:19:56 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: TgRKYA5Jf7+RtE8QyOtP0OV51VJWVmCECDSR0ggDGIU=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Aug 9 06:19:56 2025 GMT Not After : Aug 16 06:19:56 2025 GMT Subject: CN=6896e88c-f7e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:4c:32:13:53:28:d2:58:de:d5:64:d2:98: c3:9d:48:6c:7e:80:2e:1c:73:49:1f:ed:a7:d7:52: c4:11:13:37:dd:aa:b2:af:48:8a:b9:81:04:3d:40: d7:b6:14:a5:f5:08:a6:b5:70:b0:49:da:78:ca:4f: 7d:e7:95:24:54:35:04:66:47:a1:78:3a:a2:64:ea: 1c:07:65:f4:d7:f1:6c:ca:7b:a3:0e:b3:8e:42:b2: 7d:20:80:52:2e:38:8e:15:d9:e7:85:0a:c5:ed:af: c7:ba:a0:f1:93:73:98:1e:f5:05:64:97:eb:c8:4c: 55:e4:72:9f:d6:ea:da:7d:dc:10:8e:8e:37:3a:3a: f1:10:b5:c3:11:14:32:79:8d:bf:ee:62:79:9f:81: 1d:fe:32:e0:c4:ca:be:5c:ac:72:67:fd:34:a5:18: a7:28:cc:c2:28:b4:26:14:98:2d:8b:01:85:f2:99: bb:db:87:ec:7d:c8:75:a2:5e:12:5b:02:6f:fb:62: 39:8c:74:e2:00:72:75:71:b5:d4:25:9e:dc:84:53: 46:cb:1b:01:7a:4a:d6:c5:29:7e:5e:b6:8a:09:db: b5:26:61:4b:83:3f:97:75:7d:e2:1e:9e:c8:bf:e1: be:46:af:4b:89:26:f5:ee:b2:fb:62:a1:a6:88:81: 78:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:23:AD:15:0A:85:08:8E:57:5A:7B:B0:7A:44:0B:D8:2D:74:E3:33 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e8:db:a6:94:62:ab:4a:19:9e:bf:5e:fd:6e:22:40:5c:87: f5:4b:d4:1f:93:6a:26:83:e9:50:9e:a5:f9:e4:f6:2e:d5:fd: 51:85:39:a7:74:0b:ad:0e:f9:8d:86:19:11:96:cc:aa:68:0f: 17:75:27:8f:55:d8:94:30:da:4c:54:81:3c:3a:12:3e:a9:51: f3:5d:c1:48:71:bd:a3:3f:d9:41:3a:24:1e:70:e5:9d:90:2a: 97:7c:c0:89:7f:13:13:5d:a4:2c:06:2b:1f:a9:7b:74:e7:23: fc:c7:79:6f:c8:4e:16:d8:b3:b0:20:67:99:46:16:c8:3b:bb: fe:24:85:68:66:90:3c:d9:05:14:62:5e:fb:15:fa:46:38:25: cb:50:ff:8c:4e:32:02:3d:32:17:7f:b2:ce:db:17:b5:47:93: cd:78:d1:23:83:86:53:4e:40:07:cb:9c:66:e1:94:c3:08:a8: 8e:a5:8e:7b:bb:92:e2:65:89:2c:da:a0:7e:55:5e:d1:6c:a2: 45:82:4d:ca:30:18:32:a8:d4:5a:0d:ea:e5:9e:c2:de:7a:5c: 9d:99:11:89:b6:01:7c:f8:f4:9a:7e:55:ad:0c:63:28:4c:e2: f1:29:c0:7b:04:5d:25:3b:b5:f3:49:18:28:87:02:19:f7:16: e9:4a:a5:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwODA5MDYxOTU2WhcNMjUwODE2MDYxOTU2WjAYMRYwFAYD VQQDEw02ODk2ZTg4Yy1mN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9lMMhNTKNJY3tVk0pjDnUhsfoAuHHNJH+2n11LEERM33aqyr0iKuYEEPUDX thSl9QimtXCwSdp4yk9955UkVDUEZkeheDqiZOocB2X01/FsynujDrOOQrJ9IIBS LjiOFdnnhQrF7a/HuqDxk3OYHvUFZJfryExV5HKf1urafdwQjo43OjrxELXDERQy eY2/7mJ5n4Ed/jLgxMq+XKxyZ/00pRinKMzCKLQmFJgtiwGF8pm724fsfch1ol4S WwJv+2I5jHTiAHJ1cbXUJZ7chFNGyxsBekrWxSl+XraKCdu1JmFLgz+XdX3iHp7I v+G+Rq9LiSb17rL7YqGmiIF4zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0jrRUK hQiOV1p7sHpEC9gtdOMzMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI6NumlGKrShmev179biJAXIf1S9Qfk2omg+lQnqX55PYu1f1RhTmn dAutDvmNhhkRlsyqaA8XdSePVdiUMNpMVIE8OhI+qVHzXcFIcb2jP9lBOiQecOWd kCqXfMCJfxMTXaQsBisfqXt05yP8x3lvyE4W2LOwIGeZRhbIO7v+JIVoZpA82QUU Yl77FfpGOCXLUP+MTjICPTIXf7LO2xe1R5PNeNEjg4ZTTkAHy5xm4ZTDCKiOpY57 u5LiZYks2qB+VV7RbKJFgk3KMBgyqNRaDerlnsLeelydmRGJtgF8+PSaflWtDGMo TOLxKcB7BF0lO7XzSRgohwIZ9xbpSqWx -----END CERTIFICATE-----Generated at Mon Aug 11 02:02:58 2025 by rpki-client