$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft File: iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft (raw, json) Hash identifier: L71Jon/XleVdVt/oBP+hobcS88RlqKJ+7qipYxyFz7U= Subject key identifier: 64:7D:80:B9:2C:0F:23:DF:C6:22:EA:36:F5:E5:41:D6:9C:84:D3:9A Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Certificate serial: 1142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft Manifest number: 1138 Signing time: Tue 12 Aug 2025 17:22:54 +0000 Manifest this update: Tue 12 Aug 2025 17:22:54 +0000 Manifest next update: Tue 19 Aug 2025 17:22:54 +0000 Files and hashes: 1: iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl (hash: DSvnocKK8WaNNBWH7HagpR2QC+ODzsq72PsBN6ihdV8=) 2: 6127B9001FE711ECB8454E83C4F9AE02.roa (hash: +yvtNS8LKQHKe3DTi4wIovOu3eQ4uVvjs9/gUB2eHD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4418 (0x1142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3078, serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Validity Not Before: Aug 12 17:22:54 2025 GMT Not After : Aug 19 17:22:54 2025 GMT Subject: CN=689b786e-3aed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:aa:80:a3:c0:c1:9c:60:9e:55:95:76:b4: 82:42:5a:2b:c7:0a:96:28:9b:4e:c0:88:c6:4f:b2: c6:c0:ce:3d:0a:33:1c:df:35:8f:e9:09:d9:cd:47: 86:2f:d2:8c:3f:31:5c:9b:ff:fd:d8:7d:8b:bd:06: 34:b6:11:36:65:2e:76:f9:c6:0c:ca:3c:3b:cf:57: 5d:8b:06:87:64:c3:3d:96:06:00:5a:b1:ad:11:51: 59:5d:a7:a9:5a:86:13:5c:7a:35:56:bb:cb:92:d6: 30:bc:2b:0d:94:a8:bc:56:ad:0a:78:02:b4:52:a2: 12:72:28:d4:d4:25:b0:7b:d3:e2:b8:17:7a:79:e7: 66:8f:26:20:ab:34:48:33:31:f5:43:66:41:e4:5a: f6:08:32:95:3a:99:1f:42:37:f0:ab:59:f0:c1:41: cb:8c:a1:ad:aa:fa:c6:c6:d0:21:51:53:9f:10:b1: 8b:28:56:6d:8f:08:10:c8:2b:db:eb:8f:a0:7c:13: dd:ce:b0:95:ad:58:c6:39:84:86:8b:32:ef:63:7c: 7a:a8:7e:8c:e2:a5:c4:64:07:d0:92:bb:3b:f9:83: b8:5f:d0:84:ae:50:da:fb:62:9f:56:b2:e4:3e:6f: 80:62:5f:2f:60:59:bb:37:be:c6:53:ad:fd:c0:b9: 1e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7D:80:B9:2C:0F:23:DF:C6:22:EA:36:F5:E5:41:D6:9C:84:D3:9A X509v3 Authority Key Identifier: keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:fe:1e:80:07:f6:ee:a0:5c:52:2a:9c:a0:b8:28:3c:bc:b2: 6f:2b:48:c4:10:75:07:94:b9:4b:33:7a:bc:f4:4a:85:91:02: 10:37:79:25:a2:43:84:e8:7f:91:86:24:1c:f0:62:be:7e:40: d7:c9:a2:b0:63:6c:94:53:51:db:a3:be:42:70:c8:cf:1b:86: 48:ce:2d:5e:5d:59:30:e3:6c:68:ef:82:f5:e3:9c:92:55:a5: 6c:eb:56:8f:5d:e5:7b:04:5d:81:86:0a:bb:80:fb:32:ce:dc: 3c:25:64:9a:67:77:fe:5b:ae:89:22:05:b9:5b:90:64:1b:5d: ea:71:ac:65:f6:f4:b7:8a:e0:c8:ef:50:f7:c0:51:2b:ff:72: f7:2e:48:1f:23:e7:63:d6:ab:81:0e:f6:c8:a1:5c:f2:97:0c: 9c:6b:77:e6:a1:c1:ee:cb:c6:fe:52:a3:db:09:d7:fd:c0:61: d6:dd:f6:9a:fc:23:49:3a:b4:f5:13:99:02:10:fe:50:25:e4: 3f:25:0f:c4:5b:02:45:e7:dd:f7:49:6b:43:a3:9e:f9:38:7c: 28:fb:d5:f6:ff:94:f9:7c:06:f8:01:80:83:c6:3d:47:e1:3f: b9:5e:04:1f:df:4a:f0:9d:56:33:82:0d:9a:93:bc:5b:7e:34: 89:78:24:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB OTVGRjU4MzMwHhcNMjUwODEyMTcyMjU0WhcNMjUwODE5MTcyMjU0WjAYMRYwFAYD VQQDEw02ODliNzg2ZS0zYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJaqgKPAwZxgnlWVdrSCQlorxwqWKJtOwIjGT7LGwM49CjMc3zWP6QnZzUeG L9KMPzFcm//92H2LvQY0thE2ZS52+cYMyjw7z1ddiwaHZMM9lgYAWrGtEVFZXaep WoYTXHo1VrvLktYwvCsNlKi8Vq0KeAK0UqIScijU1CWwe9PiuBd6eedmjyYgqzRI MzH1Q2ZB5Fr2CDKVOpkfQjfwq1nwwUHLjKGtqvrGxtAhUVOfELGLKFZtjwgQyCvb 64+gfBPdzrCVrVjGOYSGizLvY3x6qH6M4qXEZAfQkrs7+YO4X9CErlDa+2KfVrLk Pm+AYl8vYFm7N77GU639wLkeiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGR9gLks DyPfxiLqNvXlQdachNOaMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzA3OC82NkM4MzAyQzEzQkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRz OXI5VWpOTlZsdDZwWF9XRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2/h6AB/buoFxSKpyguCg8vLJvK0jEEHUHlLlLM3q89EqFkQIQN3kl okOE6H+RhiQc8GK+fkDXyaKwY2yUU1Hbo75CcMjPG4ZIzi1eXVkw42xo74L145yS VaVs61aPXeV7BF2Bhgq7gPsyztw8JWSaZ3f+W66JIgW5W5BkG13qcaxl9vS3iuDI 71D3wFEr/3L3LkgfI+dj1quBDvbIoVzylwyca3fmocHuy8b+UqPbCdf9wGHW3faa /CNJOrT1E5kCEP5QJeQ/JQ/EWwJF5933SWtDo575OHwo+9X2/5T5fAb4AYCDxj1H 4T+5XgQf30rwnVYzgg2ak7xbfjSJeCQu -----END CERTIFICATE-----Generated at Wed Aug 13 02:51:37 2025 by rpki-client