$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: Rg79KIT0ZPebPr+AVo6v/h67vE3VeHP00z3/snZRlwQ= Subject key identifier: A1:67:1C:D5:E4:79:D1:9B:1F:61:DF:65:D1:F2:33:05:EC:61:04:E8 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0590 Signing time: Sat 09 Aug 2025 01:04:44 +0000 Manifest this update: Sat 09 Aug 2025 01:04:44 +0000 Manifest next update: Sat 16 Aug 2025 01:04:44 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: FCxGPP7ONPDM8OKAXvZScoZEDkWOT7Ol2nEGrd5Ko7Q=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Aug 9 01:04:44 2025 GMT Not After : Aug 16 01:04:44 2025 GMT Subject: CN=68969eac-f0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:eb:97:96:85:30:ce:57:01:c7:1f:79:3b: 2f:25:d2:87:e1:a0:c3:94:51:8b:66:c1:50:1d:30: 53:e9:52:47:81:39:41:2c:74:f1:20:e4:94:39:44: 87:3b:90:dd:7b:7a:58:8f:77:ad:fb:05:a1:a7:39: b7:82:61:2b:2b:ec:1b:58:00:eb:dd:6a:cd:5c:ae: 1b:87:74:2e:65:76:61:26:e1:88:a9:6b:85:37:6c: 35:64:b0:d9:80:18:f4:c5:c3:41:89:08:c0:c3:8c: 81:4f:40:b2:1a:35:58:93:81:50:60:a1:5f:04:03: 31:72:67:77:2b:e3:39:a0:30:0e:23:bd:f2:0e:c1: 0f:11:19:71:17:80:1b:92:87:48:d5:ce:39:0e:83: f6:d6:48:93:be:dd:b1:2c:db:2f:90:1e:34:b3:12: 1f:cc:48:e6:40:3f:32:1c:12:c8:42:9e:56:5a:4b: f2:9c:2c:d9:c4:4b:cf:b7:25:3e:5a:7c:47:86:fb: c0:fc:5f:b2:43:a5:fa:2a:8a:d4:f5:5b:14:f8:e7: cb:37:3e:2b:1a:1c:a7:d7:1a:d3:8d:48:9f:48:df: 6b:d5:7e:41:90:13:6e:6b:70:63:34:c6:d1:1f:cb: da:ae:ae:f7:f2:03:43:69:af:75:ad:24:a4:36:eb: dc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:67:1C:D5:E4:79:D1:9B:1F:61:DF:65:D1:F2:33:05:EC:61:04:E8 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b6:0f:8b:22:d5:86:21:d7:45:1d:17:b7:88:92:f3:66:5a: 3b:f5:37:9e:6a:39:57:28:f7:39:80:f6:4d:ac:29:c1:8d:df: b0:07:9f:fc:1c:d6:f6:c1:ef:67:a4:49:eb:c4:1f:79:c4:ec: d0:9b:8a:21:bc:4d:74:ee:8d:df:8d:f1:86:e8:71:44:5f:c8: 52:47:1b:f9:6e:04:1f:f6:c2:52:6b:eb:46:55:3d:94:d4:26: 58:b7:79:5f:eb:59:e0:11:cb:e2:75:4b:a1:6a:ad:71:b6:bb: a9:d6:47:0f:65:d4:f0:10:2f:c8:2b:65:ed:2b:e7:f1:9a:84: 16:e3:a9:04:a3:4c:ee:23:66:64:64:da:0f:6b:18:6c:a9:5f: 9f:30:12:34:82:bc:7c:d1:01:a9:7b:90:28:91:4a:59:5f:0e: c8:d5:d1:41:bd:bf:5b:03:82:73:41:0d:fe:2f:c7:7d:b6:1d: f1:25:a1:ff:19:7d:3b:9a:a6:74:d5:ef:e8:e7:e7:27:d4:dc: 76:51:49:36:8b:f3:5e:6f:2b:f0:bb:94:67:4f:78:3e:6f:8b: df:ee:8c:61:07:9a:aa:ba:c6:35:a0:cb:bd:0d:b1:26:22:d6: f0:bd:54:f0:c2:13:a0:c6:20:b6:78:ae:78:f6:60:dd:23:47: 21:d5:2a:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwODA5MDEwNDQ0WhcNMjUwODE2MDEwNDQ0WjAYMRYwFAYD VQQDEw02ODk2OWVhYy1mMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJvrl5aFMM5XAccfeTsvJdKH4aDDlFGLZsFQHTBT6VJHgTlBLHTxIOSUOUSH O5Dde3pYj3et+wWhpzm3gmErK+wbWADr3WrNXK4bh3QuZXZhJuGIqWuFN2w1ZLDZ gBj0xcNBiQjAw4yBT0CyGjVYk4FQYKFfBAMxcmd3K+M5oDAOI73yDsEPERlxF4Ab kodI1c45DoP21kiTvt2xLNsvkB40sxIfzEjmQD8yHBLIQp5WWkvynCzZxEvPtyU+ WnxHhvvA/F+yQ6X6KorU9VsU+OfLNz4rGhyn1xrTjUifSN9r1X5BkBNua3BjNMbR H8varq738gNDaa91rSSkNuvc1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFnHNXk edGbH2HfZdHyMwXsYQToMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5tg+LItWGIddFHRe3iJLzZlo79TeeajlXKPc5gPZNrCnBjd+wB5/8 HNb2we9npEnrxB95xOzQm4ohvE107o3fjfGG6HFEX8hSRxv5bgQf9sJSa+tGVT2U 1CZYt3lf61ngEcvidUuhaq1xtrup1kcPZdTwEC/IK2XtK+fxmoQW46kEo0zuI2Zk ZNoPaxhsqV+fMBI0grx80QGpe5AokUpZXw7I1dFBvb9bA4JzQQ3+L8d9th3xJaH/ GX07mqZ01e/o5+cn1Nx2UUk2i/Nebyvwu5RnT3g+b4vf7oxhB5qqusY1oMu9DbEm ItbwvVTwwhOgxiC2eK549mDdI0ch1SoB -----END CERTIFICATE-----Generated at Sun Aug 10 05:45:09 2025 by rpki-client