$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: ZTEjSADO8U6Nlnycja0aREPz/X2gZMCXgTTISTqCLnY= Subject key identifier: EE:44:76:7A:0F:2F:6C:99:3C:83:45:B4:5B:94:34:A4:80:D5:9B:F8 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: AB Signing time: Mon 11 Aug 2025 06:20:02 +0000 Manifest this update: Mon 11 Aug 2025 06:20:01 +0000 Manifest next update: Mon 18 Aug 2025 06:20:01 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: BfSLBv5bn6q4WzDyiJLJsydhKbalqIizZM1WVxmOxsk=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Aug 11 06:20:01 2025 GMT Not After : Aug 18 06:20:01 2025 GMT Subject: CN=68998b92-dff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7b:83:62:77:1b:74:19:19:e1:7c:5f:1c:e1: c7:ff:a3:20:9d:84:79:e6:45:d3:43:75:0d:23:bd: 3d:b7:8d:4c:36:30:01:4d:19:7f:c4:d4:82:57:dd: f9:29:a8:34:b3:a2:3e:c4:52:c7:c3:d1:20:07:ff: 05:b4:71:7e:e3:73:f5:87:00:f2:f2:96:7b:73:c0: fa:18:53:fa:96:0e:b9:27:22:eb:08:ac:64:6a:f4: 91:2d:0e:6c:a5:ae:92:81:85:27:e8:78:31:b4:86: ea:fc:ff:e6:c8:97:af:bb:94:d3:e8:1d:4f:a3:42: 8c:8b:e3:94:80:cb:a1:35:2f:c0:cd:e2:b2:c7:8d: af:ec:d5:78:42:52:51:b5:bc:83:58:9d:73:7a:bd: bf:b1:2c:76:2c:8d:73:1d:5a:3e:ff:0a:69:de:bd: 62:49:b0:30:6b:da:02:a0:62:ef:80:14:f6:4f:af: 28:9b:20:64:99:1d:8b:51:d0:3e:30:9e:c1:1c:6c: 16:fa:fb:30:10:81:a0:58:4e:5f:e9:d5:d9:19:f7: 5c:69:53:6b:35:9e:e4:16:b5:79:d1:db:ba:d0:f6: 29:e8:8c:3f:8e:f0:49:7c:ba:e0:22:a1:a2:6d:ff: 64:d0:2a:2a:3d:74:e0:a2:69:d0:18:c6:b0:92:89: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:44:76:7A:0F:2F:6C:99:3C:83:45:B4:5B:94:34:A4:80:D5:9B:F8 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f2:01:21:c5:d3:e2:7b:e1:30:d3:e2:c2:33:c5:27:89:39:79: e2:b3:38:47:4d:ae:03:48:bc:df:f1:9d:12:81:da:00:7f:a0: d4:9c:b2:ee:8f:91:ea:19:0f:e1:95:78:7f:01:19:2c:25:3e: 56:a4:06:af:70:52:3e:05:da:02:17:8c:26:16:48:a9:fa:fa: 51:f1:dd:82:95:56:cc:48:24:23:d2:83:77:b8:06:27:a6:a9: ea:4f:fb:18:12:88:c8:da:ec:41:99:62:38:fd:86:d2:a0:f1: bd:02:b6:64:38:69:22:50:14:ec:ae:85:a4:60:75:3d:c2:06: d0:50:5f:f5:b8:b4:e4:a8:27:ff:86:77:90:91:cc:d4:55:37: cf:15:73:8c:7a:90:ca:52:d8:11:46:d3:f0:51:5a:b6:fc:68: 63:2c:7b:0d:72:ff:4e:fd:c5:ee:cf:30:9e:15:f1:7b:c9:39: ee:a6:b7:e2:8d:86:90:98:41:a1:30:58:8e:d8:c2:21:7e:ab: 34:df:de:1a:44:79:75:d2:55:85:52:23:8a:33:cf:31:b1:cc: 8a:6d:f9:e9:87:6f:13:d9:1c:ca:03:68:11:71:89:b4:57:3b: 4c:d9:07:c5:3d:f5:69:33:96:08:56:0b:ef:88:f8:44:38:91: f4:c8:99:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUwODExMDYyMDAxWhcNMjUwODE4MDYyMDAxWjAYMRYwFAYD VQQDEw02ODk5OGI5Mi1kZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXuDYncbdBkZ4XxfHOHH/6MgnYR55kXTQ3UNI709t41MNjABTRl/xNSCV935 Kag0s6I+xFLHw9EgB/8FtHF+43P1hwDy8pZ7c8D6GFP6lg65JyLrCKxkavSRLQ5s pa6SgYUn6HgxtIbq/P/myJevu5TT6B1Po0KMi+OUgMuhNS/AzeKyx42v7NV4QlJR tbyDWJ1zer2/sSx2LI1zHVo+/wpp3r1iSbAwa9oCoGLvgBT2T68omyBkmR2LUdA+ MJ7BHGwW+vswEIGgWE5f6dXZGfdcaVNrNZ7kFrV50du60PYp6Iw/jvBJfLrgIqGi bf9k0CoqPXTgomnQGMawkolzQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5EdnoP L2yZPINFtFuUNKSA1Zv4MB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDyASHF0+J74TDT4sIzxSeJOXniszhHTa4DSLzf8Z0SgdoAf6DUnLLu j5HqGQ/hlXh/ARksJT5WpAavcFI+BdoCF4wmFkip+vpR8d2ClVbMSCQj0oN3uAYn pqnqT/sYEojI2uxBmWI4/YbSoPG9ArZkOGkiUBTsroWkYHU9wgbQUF/1uLTkqCf/ hneQkczUVTfPFXOMepDKUtgRRtPwUVq2/GhjLHsNcv9O/cXuzzCeFfF7yTnuprfi jYaQmEGhMFiO2MIhfqs0394aRHl10lWFUiOKM88xscyKbfnph28T2RzKA2gRcYm0 VztM2QfFPfVpM5YIVgvviPhEOJH0yJnA -----END CERTIFICATE-----Generated at Wed Aug 13 00:37:56 2025 by rpki-client