$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: 1TLKzBYDGyrxlHFGDYVBcMspA59km+qP7JlfcZpkJfs= Subject key identifier: D7:68:8C:EA:E7:43:FE:BE:86:E3:FE:B4:0B:C1:2A:6A:03:64:7E:25 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0AF4 Signing time: Sat 14 Jun 2025 19:13:59 +0000 Manifest this update: Sat 14 Jun 2025 19:13:58 +0000 Manifest next update: Sat 21 Jun 2025 19:13:58 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: wHpgEY3OozQgGCdSO5xy7ClhpoewhlbFT2j6DabJxxQ=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Jun 14 19:13:58 2025 GMT Not After : Jun 21 19:13:58 2025 GMT Subject: CN=684dc9f7-1d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:11:82:36:b9:22:37:6b:5e:e9:4d:fc:2e: 96:e1:e6:ed:b9:60:36:50:19:8f:24:88:59:a5:19: 27:47:37:cf:cd:14:1e:a4:12:24:39:ab:4e:b2:31: df:e7:50:9c:91:79:3d:bb:26:94:bd:89:b2:d7:b0: 17:cd:26:20:cd:77:f2:1c:b8:80:69:8c:34:cc:84: 4b:5c:b1:b0:a5:ec:45:ff:a6:c4:a7:8f:cf:e0:0f: b5:91:22:ec:f0:b4:5f:2c:14:d1:40:cf:63:83:b9: e8:0f:ee:28:10:62:54:d1:19:5e:ea:36:09:09:3f: 3a:cb:66:0e:17:0c:27:4a:0a:e0:f7:0d:54:3d:4e: 98:d0:7e:c7:9b:bc:c4:d4:df:7c:c0:bd:f3:34:ad: c7:e1:6b:e2:10:e8:b2:8e:72:d3:f0:fb:e6:47:4f: 27:45:41:25:a3:ed:7a:87:af:16:ff:27:d1:0d:cb: 55:af:c2:44:b1:da:55:fc:98:32:96:15:cd:59:26: be:85:21:77:73:cd:6b:e4:4b:72:f1:45:de:18:ec: 17:c8:65:bc:d2:eb:57:d4:21:5b:bc:5c:f4:be:61: b9:c5:48:fe:3f:eb:8f:13:f9:1e:bc:5d:c1:c6:c4: 72:0a:a3:d6:c7:47:98:44:c7:9f:f4:bb:b3:0f:1e: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:68:8C:EA:E7:43:FE:BE:86:E3:FE:B4:0B:C1:2A:6A:03:64:7E:25 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:02:82:c0:22:e4:1c:2d:7f:18:3f:45:bb:da:be:00:97:09: 4e:e3:6f:b9:a4:10:28:bf:43:d3:eb:b7:a5:ca:c8:2a:52:91: a9:0c:4a:85:2b:64:08:7e:38:00:f8:18:28:22:59:c7:86:d7: 2c:87:25:c6:45:b3:d6:64:78:9c:11:ab:57:ec:79:ee:48:5d: 2f:cf:7f:c3:f5:1f:c4:18:cc:a2:36:26:07:40:20:28:80:4d: 10:00:2e:96:a4:69:9e:f9:ff:b6:a1:bd:7e:75:59:80:de:15: f6:79:85:02:bd:de:a5:98:8f:b3:90:a1:be:20:3d:b6:55:32: cc:39:07:6e:ca:5f:84:18:99:11:0b:c8:66:23:99:b7:c0:e2: 3c:85:1c:a1:7e:e1:76:a9:ab:57:b7:32:28:de:c0:0a:fb:a2: 6b:32:2c:9e:45:a2:d2:34:aa:8c:8a:7b:be:4d:34:bd:d7:c5: 7a:5d:be:09:5f:5f:f4:2d:ad:f3:26:02:4b:d0:4f:e9:96:3e: 1b:25:f6:c5:b9:1f:0c:66:84:36:47:a3:7c:7c:a1:71:4f:4b: d9:0b:83:cd:5c:6d:ad:3c:bc:c8:2b:72:d1:29:fe:21:c9:92: 93:61:2c:50:84:2b:02:b9:a0:c7:cb:a1:e6:ae:a9:68:89:65: 27:47:63:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwNjE0MTkxMzU4WhcNMjUwNjIxMTkxMzU4WjAYMRYwFAYD VQQDEw02ODRkYzlmNy0xZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2YRgja5IjdrXulN/C6W4ebtuWA2UBmPJIhZpRknRzfPzRQepBIkOatOsjHf 51CckXk9uyaUvYmy17AXzSYgzXfyHLiAaYw0zIRLXLGwpexF/6bEp4/P4A+1kSLs 8LRfLBTRQM9jg7noD+4oEGJU0Rle6jYJCT86y2YOFwwnSgrg9w1UPU6Y0H7Hm7zE 1N98wL3zNK3H4WviEOiyjnLT8PvmR08nRUElo+16h68W/yfRDctVr8JEsdpV/Jgy lhXNWSa+hSF3c81r5Ety8UXeGOwXyGW80utX1CFbvFz0vmG5xUj+P+uPE/kevF3B xsRyCqPWx0eYRMef9LuzDx5URQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdojOrn Q/6+huP+tAvBKmoDZH4lMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgAoLAIuQcLX8YP0W72r4AlwlO42+5pBAov0PT67elysgqUpGpDEqF K2QIfjgA+BgoIlnHhtcshyXGRbPWZHicEatX7HnuSF0vz3/D9R/EGMyiNiYHQCAo gE0QAC6WpGme+f+2ob1+dVmA3hX2eYUCvd6lmI+zkKG+ID22VTLMOQduyl+EGJkR C8hmI5m3wOI8hRyhfuF2qatXtzIo3sAK+6JrMiyeRaLSNKqMinu+TTS918V6Xb4J X1/0La3zJgJL0E/plj4bJfbFuR8MZoQ2R6N8fKFxT0vZC4PNXG2tPLzIK3LRKf4h yZKTYSxQhCsCuaDHy6HmrqloiWUnR2Nk -----END CERTIFICATE-----Generated at Sun Jun 15 09:40:44 2025 by rpki-client