$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: o977AOMqAIjHI4EZo38iB4gHTPZVlWRqd/F33kOWXgI= Subject key identifier: DF:0E:13:65:C8:E2:40:C8:43:B3:93:57:E3:B3:09:76:DF:88:BE:D9 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 0667 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 0661 Signing time: Fri 08 Aug 2025 22:57:46 +0000 Manifest this update: Fri 08 Aug 2025 22:57:46 +0000 Manifest next update: Fri 15 Aug 2025 22:57:46 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: ADAYBNs5vklvFouxMQlNIdQ+S4+5xYzEnGw43CAJ/To=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Aug 8 22:57:46 2025 GMT Not After : Aug 15 22:57:46 2025 GMT Subject: CN=689680ea-b75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:76:1d:60:75:7d:5d:cf:23:5d:0a:cc:32: bf:c3:ed:7b:15:64:2e:02:a5:a3:2c:ff:f8:71:45: 64:2b:89:35:93:08:f6:23:e8:bb:a0:c7:57:71:73: 81:75:19:5f:47:11:ee:33:c3:81:fe:13:1f:c0:32: 1a:60:8c:41:6b:bc:14:a4:fc:89:6d:1a:9a:45:79: 43:56:94:f3:f3:b3:28:a6:e2:9d:0d:11:14:d9:8b: c2:91:55:01:ad:14:6b:18:5b:39:d9:eb:11:98:14: 12:5c:84:b1:04:56:15:5a:3c:e5:bf:4d:a0:ab:5d: d7:64:61:a8:a8:b3:48:7e:ac:81:22:26:56:fc:7b: ae:71:98:f8:0d:f4:c2:21:b6:a4:4c:79:36:c9:46: 2d:19:a5:f9:05:b0:fe:6d:7f:e0:96:a2:ce:42:37: 48:2f:76:fa:07:0f:b4:ec:42:bb:c7:27:fd:4b:1b: b8:58:a0:e3:be:e4:b7:c3:a9:b2:08:18:c6:73:ad: d4:dd:db:8d:a8:8d:69:0a:d4:fb:63:89:cf:e0:ef: 9f:89:f3:3b:84:de:92:b8:51:df:4f:f6:5d:c2:78: d9:32:52:71:27:50:60:eb:dc:07:72:72:5f:ab:59: af:84:c5:33:36:c8:78:53:4f:cd:c3:39:77:47:05: 39:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0E:13:65:C8:E2:40:C8:43:B3:93:57:E3:B3:09:76:DF:88:BE:D9 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:6b:9c:82:27:b1:04:e4:79:46:ea:5b:06:8b:69:37:47:a0: 7d:8e:cd:b7:9a:47:9a:bc:08:42:9a:cb:31:9a:57:93:0a:a0: 74:9a:3d:60:c6:64:b2:63:f8:ad:8e:e9:7d:b5:ad:e5:b9:7c: 0b:fa:b4:c3:87:7a:2e:1e:5a:55:a5:6e:92:b6:2f:08:3f:68: ed:25:5e:80:8e:e6:0b:0f:a2:4b:6e:01:c6:7d:e8:b6:de:0d: a7:8c:4d:95:ba:1f:b2:72:25:88:68:56:2c:eb:46:9a:13:fd: 11:05:a4:60:e3:10:29:c7:75:81:e3:f0:38:98:02:49:ee:96: 59:30:57:62:79:e9:b8:94:fd:ce:2b:c2:e1:1b:26:fc:52:c0: 11:f0:a6:87:73:f9:ca:e2:b4:2b:5b:ea:2a:4b:6e:a5:31:68: 7b:3a:b9:2f:04:5b:0c:54:89:ea:01:b3:a9:e9:47:2e:8f:cf: 98:a8:6a:f0:c2:83:14:54:66:75:2a:e9:86:ec:7e:fb:66:00: 0a:58:7d:3a:61:75:8d:80:b8:98:5d:d4:dc:8f:74:48:b3:8e: 05:82:f6:e9:0c:69:55:eb:a3:88:4c:c4:05:c5:f7:ee:26:1e: c2:a5:7a:40:58:cd:ea:be:9c:b2:83:5c:7b:1d:04:40:cd:26: 54:74:98:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwODA4MjI1NzQ2WhcNMjUwODE1MjI1NzQ2WjAYMRYwFAYD VQQDEw02ODk2ODBlYS1iNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq752HWB1fV3PI10KzDK/w+17FWQuAqWjLP/4cUVkK4k1kwj2I+i7oMdXcXOB dRlfRxHuM8OB/hMfwDIaYIxBa7wUpPyJbRqaRXlDVpTz87MopuKdDREU2YvCkVUB rRRrGFs52esRmBQSXISxBFYVWjzlv02gq13XZGGoqLNIfqyBIiZW/HuucZj4DfTC IbakTHk2yUYtGaX5BbD+bX/glqLOQjdIL3b6Bw+07EK7xyf9Sxu4WKDjvuS3w6my CBjGc63U3duNqI1pCtT7Y4nP4O+fifM7hN6SuFHfT/ZdwnjZMlJxJ1Bg69wHcnJf q1mvhMUzNsh4U0/Nwzl3RwU5EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8OE2XI 4kDIQ7OTV+OzCXbfiL7ZMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUa5yCJ7EE5HlG6lsGi2k3R6B9js23mkeavAhCmssxmleTCqB0mj1g xmSyY/itjul9ta3luXwL+rTDh3ouHlpVpW6Sti8IP2jtJV6AjuYLD6JLbgHGfei2 3g2njE2Vuh+yciWIaFYs60aaE/0RBaRg4xApx3WB4/A4mAJJ7pZZMFdieem4lP3O K8LhGyb8UsAR8KaHc/nK4rQrW+oqS26lMWh7OrkvBFsMVInqAbOp6Ucuj8+YqGrw woMUVGZ1KumG7H77ZgAKWH06YXWNgLiYXdTcj3RIs44FgvbpDGlV66OITMQFxffu Jh7CpXpAWM3qvpyyg1x7HQRAzSZUdJhB -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:51 2025 by rpki-client