$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: UQRNqu3dzSuOyLoQ0nOfN6JixBJTtKp3MBspxSgNaCk= Subject key identifier: 88:13:74:43:86:DD:39:1A:F1:08:E1:1F:05:50:5C:4B:19:0D:6B:F1 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B10 Signing time: Fri 08 Aug 2025 19:36:27 +0000 Manifest this update: Fri 08 Aug 2025 19:36:27 +0000 Manifest next update: Fri 15 Aug 2025 19:36:27 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: gR9p/V/w3qG+8sae5ZOvH6EqNI9fsHDW5MzLsq510Oc=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Aug 8 19:36:27 2025 GMT Not After : Aug 15 19:36:27 2025 GMT Subject: CN=689651bb-d673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:12:56:ac:43:05:66:b3:26:2a:a0:3c:c8:cf: 9b:79:a4:bc:4c:fa:47:27:fe:4c:32:35:69:d6:fa: aa:0d:49:52:76:bf:be:9a:95:bb:56:ea:91:90:09: 0c:9a:0a:ba:7d:24:90:37:1d:82:57:a6:b4:2d:4a: b4:ed:2c:21:97:28:3b:47:ed:32:1c:91:0b:85:25: 1a:13:ad:e0:3f:4b:6a:b7:39:00:4f:da:24:49:4a: 10:96:76:5d:fc:bc:38:14:17:5e:78:17:d7:5a:a7: 1f:1b:0d:f9:fa:97:87:b4:8f:16:ab:f6:e7:44:31: f4:ff:78:ec:76:b7:c7:f3:84:fa:be:21:99:0e:72: b6:7b:a9:33:ca:1c:da:74:1e:5b:0a:9f:e3:b3:47: 46:ca:85:33:2d:6c:fb:04:b3:ed:d5:79:f1:69:0e: 20:21:b8:98:12:bb:e7:c9:6d:7d:f2:9f:4b:6e:f7: cc:fc:a2:06:f8:de:2a:82:9b:95:a7:10:cc:38:1a: 25:23:7d:54:68:4f:ff:90:93:44:e1:47:58:6d:85: fe:34:cb:49:93:82:ca:81:a1:7d:a3:79:b8:f6:51: 0f:f3:49:54:86:26:cb:7d:f7:f4:2c:1e:37:74:93: 43:83:ed:f3:fc:6d:a2:f5:ec:d2:9e:7e:6f:2e:5a: a2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:13:74:43:86:DD:39:1A:F1:08:E1:1F:05:50:5C:4B:19:0D:6B:F1 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:7d:42:32:84:99:8b:b7:0d:0d:c3:c4:09:bb:0b:c4:f3:51: a1:bd:8b:f9:28:d5:bd:06:26:33:93:d0:82:80:5a:32:05:8c: 2c:f7:cd:b9:a6:1e:c2:dd:dc:61:95:74:3b:de:37:98:76:5f: 26:37:71:62:34:86:a3:f7:da:1f:94:cf:f0:05:7f:63:3c:28: f5:f4:11:26:12:e0:0d:55:7c:f1:00:14:4f:43:85:a0:25:f6: f0:1a:9a:49:74:48:6a:f5:c0:1c:2e:04:93:34:24:37:6d:ed: c1:77:b2:52:10:8c:2a:6a:38:56:a5:c6:f0:b7:cd:48:a6:b4: 9d:31:66:3b:6f:9f:54:e3:61:8a:04:96:e9:c1:ba:4c:46:b1: 60:fa:5c:f2:67:28:36:64:54:59:b1:b0:a9:21:b9:b2:02:39: 8e:82:af:6b:81:dc:a0:0f:29:05:ee:2d:a6:5b:cb:79:8b:0f: 47:53:54:8a:bb:6a:c9:4d:d7:fc:d4:7e:52:74:9d:1f:79:54: 24:6e:fc:11:43:48:79:a3:21:5f:69:68:14:20:8a:3c:04:fa: 0d:b0:42:2a:5f:8f:ab:01:95:90:dc:7d:3b:f2:04:d0:29:b9: 6e:bd:f3:8e:2c:fd:ec:3d:31:10:2d:89:f5:8e:a8:5b:01:03: 6d:68:fd:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwODA4MTkzNjI3WhcNMjUwODE1MTkzNjI3WjAYMRYwFAYD VQQDEw02ODk2NTFiYi1kNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBJWrEMFZrMmKqA8yM+beaS8TPpHJ/5MMjVp1vqqDUlSdr++mpW7VuqRkAkM mgq6fSSQNx2CV6a0LUq07Swhlyg7R+0yHJELhSUaE63gP0tqtzkAT9okSUoQlnZd /Lw4FBdeeBfXWqcfGw35+peHtI8Wq/bnRDH0/3jsdrfH84T6viGZDnK2e6kzyhza dB5bCp/js0dGyoUzLWz7BLPt1XnxaQ4gIbiYErvnyW198p9LbvfM/KIG+N4qgpuV pxDMOBolI31UaE//kJNE4UdYbYX+NMtJk4LKgaF9o3m49lEP80lUhibLfff0LB43 dJNDg+3z/G2i9ezSnn5vLlqiRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgTdEOG 3Tka8QjhHwVQXEsZDWvxMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCifUIyhJmLtw0Nw8QJuwvE81GhvYv5KNW9BiYzk9CCgFoyBYws9825 ph7C3dxhlXQ73jeYdl8mN3FiNIaj99oflM/wBX9jPCj19BEmEuANVXzxABRPQ4Wg JfbwGppJdEhq9cAcLgSTNCQ3be3Bd7JSEIwqajhWpcbwt81IprSdMWY7b59U42GK BJbpwbpMRrFg+lzyZyg2ZFRZsbCpIbmyAjmOgq9rgdygDykF7i2mW8t5iw9HU1SK u2rJTdf81H5SdJ0feVQkbvwRQ0h5oyFfaWgUIIo8BPoNsEIqX4+rAZWQ3H078gTQ KbluvfOOLP3sPTEQLYn1jqhbAQNtaP3p -----END CERTIFICATE-----Generated at Sun Aug 10 16:01:47 2025 by rpki-client