$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: gnPqQXbJX4tSQ82JNH5yRWSgJqTm1jhe5YOKr2MW4sc= Subject key identifier: CD:18:24:8A:9D:55:F7:A7:E9:81:F3:29:73:BC:BF:64:A9:4A:E0:1F Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0AB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2B90 Signing time: Sun 10 Aug 2025 15:54:37 +0000 Manifest this update: Sun 10 Aug 2025 15:54:37 +0000 Manifest next update: Sun 17 Aug 2025 15:54:37 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: XN418yVxFwKhZwg9aoOzn0sebiwJVDi1uQkTHzZTpLo=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: iuR0hKy1te9ReiQAcpbPM6UF6bcHMIJQ871N78hvW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Aug 10 15:54:37 2025 GMT Not After : Aug 17 15:54:37 2025 GMT Subject: CN=6898c0bd-1c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8e:7d:dc:d3:0f:7e:75:07:bf:50:7c:88:52: 50:f5:9b:00:23:93:04:82:ac:93:ed:c6:ff:1c:06: 63:a5:e0:06:24:4f:42:e2:e4:2b:ab:bd:53:66:45: 26:3e:81:22:22:24:01:b3:23:b1:55:b0:93:77:73: 0e:f3:bb:c0:df:d9:4d:ea:2a:21:23:42:22:cb:c7: 3a:3b:2b:d4:e2:ac:5e:21:84:33:38:b8:f9:f8:34: 27:5b:6d:e2:d0:c2:77:bb:8d:ad:69:ba:f0:65:6a: 7c:0a:56:8d:1a:32:1d:19:b8:2b:89:90:6b:5f:1f: b5:f5:ff:45:54:cc:8f:1c:3a:86:5b:9f:f3:4c:25: 7a:47:ae:51:30:a8:66:71:8a:47:d6:79:75:fb:f1: 44:ae:18:29:c4:1e:c5:e1:41:dc:85:ca:58:97:64: f4:43:19:4f:19:e7:06:c0:9d:16:48:94:6a:69:6b: 94:65:73:6c:59:54:82:7e:08:dd:25:b4:2b:4c:aa: 10:62:95:53:e0:72:0c:6c:e9:40:00:60:ae:f7:a6: bd:8c:a9:c5:e8:1b:97:13:84:f1:39:9a:72:91:43: d9:63:b1:11:6b:6d:d9:b3:88:9a:c8:54:84:56:91: 11:d4:42:91:a3:e2:31:aa:82:73:73:72:4f:70:8e: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:18:24:8A:9D:55:F7:A7:E9:81:F3:29:73:BC:BF:64:A9:4A:E0:1F X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:92:4e:80:50:ec:eb:d4:4c:ab:9a:f9:1d:6c:08:22:b8:2e: 19:a2:d5:dc:88:e2:45:df:56:95:d7:c2:53:c5:87:89:1b:28: a2:7c:33:46:07:db:a6:42:87:73:eb:26:a2:36:66:80:69:f2: 2c:30:e6:8f:82:15:bc:f0:18:5c:3c:b3:1f:e1:a4:a4:41:13: 56:4b:e4:a4:fd:bc:4f:a1:5f:8c:d4:6c:c1:6f:2f:6c:3f:50: 67:a6:a7:cc:64:12:16:ef:f8:c7:cd:6b:01:ad:04:30:ec:18: f6:cc:5f:59:a8:27:36:ca:8f:64:83:83:fe:b3:a2:92:d3:3e: ea:7d:51:c0:58:b6:ac:16:2d:c8:f2:69:33:74:7d:98:58:c3: 5e:8f:d4:df:47:92:0c:cf:b6:6f:9e:c1:15:c7:fc:d8:59:01: f7:1f:d1:b5:3b:5b:10:24:04:46:a6:0f:99:fd:50:49:f2:8e: 0f:34:69:7d:11:7d:4c:db:05:30:15:1d:1b:ef:c5:4d:9b:01: 08:9b:50:5a:c0:d7:60:4f:81:63:cf:b6:aa:c2:a8:76:ec:7b: 0f:2e:f1:05:e9:20:4e:0a:7b:b4:c2:c7:90:ee:09:8b:1a:d2: cb:ac:44:25:8e:bc:a9:b8:22:8a:d2:8c:1b:67:2d:7b:6a:5f: d0:25:8e:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjUwODEwMTU1NDM3WhcNMjUwODE3MTU1NDM3WjAYMRYwFAYD VQQDEw02ODk4YzBiZC0xYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I593NMPfnUHv1B8iFJQ9ZsAI5MEgqyT7cb/HAZjpeAGJE9C4uQrq71TZkUm PoEiIiQBsyOxVbCTd3MO87vA39lN6iohI0Iiy8c6OyvU4qxeIYQzOLj5+DQnW23i 0MJ3u42tabrwZWp8ClaNGjIdGbgriZBrXx+19f9FVMyPHDqGW5/zTCV6R65RMKhm cYpH1nl1+/FErhgpxB7F4UHchcpYl2T0QxlPGecGwJ0WSJRqaWuUZXNsWVSCfgjd JbQrTKoQYpVT4HIMbOlAAGCu96a9jKnF6BuXE4TxOZpykUPZY7ERa23Zs4iayFSE VpER1EKRo+IxqoJzc3JPcI4eWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0YJIqd Vfen6YHzKXO8v2SpSuAfMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFkk6AUOzr1EyrmvkdbAgiuC4ZotXciOJF31aV18JTxYeJGyiifDNG B9umQodz6yaiNmaAafIsMOaPghW88BhcPLMf4aSkQRNWS+Sk/bxPoV+M1GzBby9s P1BnpqfMZBIW7/jHzWsBrQQw7Bj2zF9ZqCc2yo9kg4P+s6KS0z7qfVHAWLasFi3I 8mkzdH2YWMNej9TfR5IMz7ZvnsEVx/zYWQH3H9G1O1sQJARGpg+Z/VBJ8o4PNGl9 EX1M2wUwFR0b78VNmwEIm1BawNdgT4Fjz7aqwqh27HsPLvEF6SBOCnu0wseQ7gmL GtLLrEQljrypuCKK0owbZy17al/QJY6e -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:17 2025 by rpki-client