$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: 7oRfGkPNyBJVSZD54z8SqmdQQujKCt08KJHWIhlHAQ0= Subject key identifier: C8:00:0F:80:A0:A5:37:86:B8:5A:07:30:8D:D3:2F:1E:F3:D6:66:C7 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: 7C Signing time: Sat 09 Aug 2025 07:14:54 +0000 Manifest this update: Sat 09 Aug 2025 07:14:54 +0000 Manifest next update: Sat 16 Aug 2025 07:14:54 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: qT+67BUdp/A53jv+SWZo73pu28qTcd+6xhuk0fKQLtc=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: NJttL+qjjIMKQduatRuB9wCf9GQJviKk9JlU07XKUgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Aug 9 07:14:54 2025 GMT Not After : Aug 16 07:14:54 2025 GMT Subject: CN=6896f56e-d90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:42:49:53:f0:77:e2:9a:6a:d0:33:b2:c1:53: 64:da:d5:59:f2:13:03:99:f8:f6:0d:1a:c5:f3:07: c6:8d:c9:15:a1:5b:dc:9d:ff:3c:bc:9d:e3:35:91: 9c:09:f3:8a:f7:af:52:48:34:58:72:9f:17:b6:dd: e9:e5:2f:60:c4:c2:a2:37:e2:02:0b:dc:7e:c3:22: d6:60:ee:9d:9b:ae:72:1f:50:49:2e:a1:4c:6c:61: 5a:71:95:6e:8a:37:3f:9b:6f:94:44:c8:d5:67:00: 14:f2:5b:41:de:49:a1:01:43:f4:ab:ad:89:0f:13: d0:63:d5:58:11:db:1f:61:30:49:17:5e:0e:7c:0a: 2e:bb:46:05:b9:3a:e2:ac:83:f1:da:6b:19:09:6a: 43:7c:56:78:b0:87:a2:df:c0:0e:f7:1d:d9:a4:b8: ac:65:7c:fc:96:cd:1d:18:ab:92:47:90:b0:32:4f: fb:e8:33:37:87:61:b7:45:f0:75:1e:7e:cb:09:5f: c8:20:c6:6a:f3:a5:39:c1:bd:3f:ed:2c:c3:6b:2c: ac:c8:35:f9:85:f2:7d:d6:cf:a5:b3:e6:98:76:f5: 44:a4:8f:17:e3:5b:63:59:6c:11:3a:b1:6a:49:06: e3:0c:5d:de:c4:0f:86:ef:a8:67:45:49:1d:53:44: 0f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:00:0F:80:A0:A5:37:86:B8:5A:07:30:8D:D3:2F:1E:F3:D6:66:C7 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:24:67:27:63:92:33:39:ad:2a:63:8c:0b:ec:60:02:17:c1: 01:67:1a:4c:24:8b:0b:10:55:33:f2:fe:3c:ff:74:2e:5f:d2: f0:97:95:03:c1:fb:3d:a5:16:e1:f5:a7:14:19:97:64:b1:5e: 70:d1:df:2b:58:77:d3:7e:91:69:ba:d8:1b:97:83:07:c7:60: d3:8e:5e:07:54:2d:54:b6:31:4b:7b:17:ae:0c:4f:46:50:61: 94:e9:3d:38:2d:dc:85:8b:c0:27:66:3e:c0:91:65:6f:e4:27: 6e:f8:b2:61:97:5a:18:f0:ba:2e:bc:7f:77:f7:9f:75:63:e1: ca:1c:1f:60:3e:56:ba:9c:29:b9:37:a8:b3:e8:bc:4c:11:fa: a3:fa:ec:65:5e:2e:32:71:84:97:9b:1c:26:03:72:17:ec:b5: 1b:fa:b6:8d:8d:0d:42:6a:cc:a6:c0:f5:4c:0f:39:3a:ef:ba: 02:33:b4:09:c4:16:fc:dd:55:4d:84:42:f7:53:45:c9:2a:85: 51:c8:19:dd:de:0a:09:f5:88:b4:55:a7:a8:e6:fe:9b:2e:86: a9:20:ef:fb:f3:3b:79:1d:04:4b:9b:78:e2:e5:cb:38:57:ee: 46:8f:20:58:c1:90:64:e0:5e:51:75:97:a3:80:70:c6:0e:2e: 84:48:88:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODM3QjExMC8GA1UEBRMoRkEyMjgwMUM1MkFFMkE1RkM0OTFCN0NCRUJFNjhFRkNB MkM4RDFEOTAeFw0yNTA4MDkwNzE0NTRaFw0yNTA4MTYwNzE0NTRaMBgxFjAUBgNV BAMTDTY4OTZmNTZlLWQ5MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSQklT8HfimmrQM7LBU2Ta1VnyEwOZ+PYNGsXzB8aNyRWhW9yd/zy8neM1kZwJ 84r3r1JINFhynxe23enlL2DEwqI34gIL3H7DItZg7p2brnIfUEkuoUxsYVpxlW6K Nz+bb5REyNVnABTyW0HeSaEBQ/SrrYkPE9Bj1VgR2x9hMEkXXg58Ci67RgW5OuKs g/HaaxkJakN8Vniwh6LfwA73HdmkuKxlfPyWzR0Yq5JHkLAyT/voMzeHYbdF8HUe fssJX8ggxmrzpTnBvT/tLMNrLKzINfmF8n3Wz6Wz5ph29USkjxfjW2NZbBE6sWpJ BuMMXd7ED4bvqGdFSR1TRA/lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyAAPgKCl N4a4WgcwjdMvHvPWZscwHwYDVR0jBBgwFoAU+iKAHFKuKl/EkbfL6+aO/KLI0dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MzdCLzE1OEQ3RjNDQjk5 QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLWlLQUhGS3VLbF9Fa2JmTDYtYU9fS0xJMGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MzdCLzE1OEQ3RjNDQjk5QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xf RWtiZkw2LWFPX0tMSTBkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEYkZydjkjM5rSpjjAvsYAIXwQFnGkwkiwsQVTPy/jz/dC5f0vCXlQPB +z2lFuH1pxQZl2SxXnDR3ytYd9N+kWm62BuXgwfHYNOOXgdULVS2MUt7F64MT0ZQ YZTpPTgt3IWLwCdmPsCRZW/kJ274smGXWhjwui68f3f3n3Vj4cocH2A+VrqcKbk3 qLPovEwR+qP67GVeLjJxhJebHCYDchfstRv6to2NDUJqzKbA9UwPOTrvugIztAnE FvzdVU2EQvdTRckqhVHIGd3eCgn1iLRVp6jm/psuhqkg7/vzO3kdBEubeOLlyzhX 7kaPIFjBkGTgXlF1l6OAcMYOLoRIiP4= -----END CERTIFICATE-----Generated at Sat Aug 9 15:10:04 2025 by rpki-client