$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: KR7FnGFqiScjl0m4LJ9hqGZgffAiwTgt2z3A6+6IEuA= Subject key identifier: B7:F5:A9:D7:01:84:73:00:63:2C:25:C8:46:71:E3:FC:82:FB:D3:B9 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 017A Signing time: Thu 07 Aug 2025 04:12:44 +0000 Manifest this update: Thu 07 Aug 2025 04:12:43 +0000 Manifest next update: Thu 14 Aug 2025 04:12:43 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: wvmG1l7BsCeq4RrWyUDX4xGje2CpjgZQnv6Y6eOUlDo=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Aug 7 04:12:43 2025 GMT Not After : Aug 14 04:12:43 2025 GMT Subject: CN=689427bc-4514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:15:93:de:4e:8a:cc:da:79:d3:88:32:c5: 0d:35:76:fc:27:23:2f:0d:76:6e:d5:7c:c7:64:39: 43:67:d9:1a:61:0b:b7:b1:32:50:53:42:f3:9b:00: a8:48:cc:a6:83:fe:f8:78:6a:f8:d1:62:fd:3b:1c: 1f:48:25:f8:50:f5:36:a9:ea:6f:6e:f9:cb:af:f5: 38:62:ae:07:1a:a3:17:ac:a8:86:8a:6c:af:ed:fb: c4:84:7e:77:a5:cd:99:0e:ee:84:d5:8e:bd:04:ac: 9b:d1:fe:eb:61:d5:69:81:f9:b2:f0:e2:a7:bf:34: cf:f0:4d:3d:4b:61:e8:e6:51:69:69:30:46:7b:2c: ed:46:a4:e1:af:64:30:8b:5e:b8:e6:78:73:e6:aa: fe:2d:47:1c:ce:b3:c6:28:c8:00:cc:56:8f:27:5c: 50:55:ae:e3:a0:4b:5a:58:f1:80:0c:64:b0:a5:a5: f6:d4:75:2f:7a:bf:7d:0f:a8:7d:d1:5e:41:13:93: 1b:65:fa:1c:73:7e:dd:cf:aa:a8:57:37:d6:5f:f7: d0:e6:b5:83:b3:af:3c:b1:2e:34:94:98:dd:7d:bb: 97:82:bf:1b:0c:02:d1:a6:b1:ee:f1:08:70:58:c6: 49:3c:cd:0a:37:46:81:4f:f5:a3:ed:5d:2a:7d:42: cc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F5:A9:D7:01:84:73:00:63:2C:25:C8:46:71:E3:FC:82:FB:D3:B9 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9f:98:09:49:7c:21:1a:a7:01:ab:a4:86:a9:28:3b:c9:e2: 9f:09:24:d7:99:c6:80:cf:61:1d:25:f3:56:65:57:6d:b5:4a: 3a:23:75:23:04:9c:b5:92:25:7b:0b:eb:74:8b:cb:b0:48:92: 19:16:12:20:f5:db:ef:06:0b:40:44:70:9f:31:7b:94:21:15: 6a:ad:1d:cc:4d:e7:6c:27:19:53:4b:52:a6:a5:56:05:32:7f: 2e:dc:96:4d:be:6e:80:28:66:f1:e4:31:74:da:62:40:ab:59: 72:b9:66:06:a7:93:bf:5a:1d:59:97:2e:6a:bd:6a:66:b7:71: 48:40:0c:1b:1a:76:20:f5:5a:7d:34:78:bd:55:78:a8:03:ac: 6e:7e:f0:f0:46:f0:8a:8c:49:8a:3f:e9:a6:24:c2:4b:4b:e8: f6:7c:f0:17:83:c4:3b:02:61:35:5d:2c:b1:30:6f:f2:30:c0: ae:ba:88:83:ac:a3:96:23:9a:26:e7:22:fb:83:c7:bc:89:52: a0:37:54:eb:b1:c8:4d:df:b5:9e:76:e3:7f:8c:0c:0e:fd:53: a2:9f:cf:77:0f:b0:38:e6:61:e4:90:b9:09:be:b8:4d:05:48: 96:4a:01:f7:55:d0:7f:61:18:8c:ba:3c:e7:3c:ed:3f:0b:04: 8b:8c:3e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwODA3MDQxMjQzWhcNMjUwODE0MDQxMjQzWjAYMRYwFAYD VQQDEw02ODk0MjdiYy00NTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjsVk95OiszaedOIMsUNNXb8JyMvDXZu1XzHZDlDZ9kaYQu3sTJQU0LzmwCo SMymg/74eGr40WL9OxwfSCX4UPU2qepvbvnLr/U4Yq4HGqMXrKiGimyv7fvEhH53 pc2ZDu6E1Y69BKyb0f7rYdVpgfmy8OKnvzTP8E09S2Ho5lFpaTBGeyztRqThr2Qw i1645nhz5qr+LUcczrPGKMgAzFaPJ1xQVa7joEtaWPGADGSwpaX21HUver99D6h9 0V5BE5MbZfocc37dz6qoVzfWX/fQ5rWDs688sS40lJjdfbuXgr8bDALRprHu8Qhw WMZJPM0KN0aBT/Wj7V0qfULMRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf1qdcB hHMAYywlyEZx4/yC+9O5MB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfn5gJSXwhGqcBq6SGqSg7yeKfCSTXmcaAz2EdJfNWZVdttUo6I3Uj BJy1kiV7C+t0i8uwSJIZFhIg9dvvBgtARHCfMXuUIRVqrR3MTedsJxlTS1KmpVYF Mn8u3JZNvm6AKGbx5DF02mJAq1lyuWYGp5O/Wh1Zly5qvWpmt3FIQAwbGnYg9Vp9 NHi9VXioA6xufvDwRvCKjEmKP+mmJMJLS+j2fPAXg8Q7AmE1XSyxMG/yMMCuuoiD rKOWI5om5yL7g8e8iVKgN1TrschN37WeduN/jAwO/VOin893D7A45mHkkLkJvrhN BUiWSgH3VdB/YRiMujznPO0/CwSLjD4B -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:07 2025 by rpki-client