$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: u3VJFgo8eAvZxi37p1DXjzs+1HYEZ1toUBDfTmo7bzA= Subject key identifier: 0C:EF:C4:1D:A2:90:D4:A0:24:E9:85:54:FA:62:85:78:84:FC:AC:6B Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C16 Signing time: Sun 10 Aug 2025 18:42:30 +0000 Manifest this update: Sun 10 Aug 2025 18:42:30 +0000 Manifest next update: Sun 17 Aug 2025 18:42:30 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: Ljk1U2h56TTrVoJ+6BO7TGGOshNYV3GeUO0xG8C+I8Q=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Aug 10 18:42:30 2025 GMT Not After : Aug 17 18:42:30 2025 GMT Subject: CN=6898e816-722e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:d6:bb:96:44:94:31:5f:f9:28:a0:01:ff: be:85:a2:17:c7:0b:29:c5:c7:c1:7c:b1:05:62:ec: 37:48:7d:cf:ce:18:c4:59:33:c6:cd:5d:65:1f:42: 76:e4:58:bf:89:93:e4:7e:b1:37:46:ef:71:a0:29: ef:99:ab:ce:3d:4e:5e:00:64:be:b9:a1:a2:3e:00: 5b:09:68:b7:2f:19:c9:a3:13:4b:a7:4f:ac:cb:71: 62:b5:41:ca:9d:c3:56:a5:ba:0b:c6:eb:ec:07:75: 3c:39:d6:b7:a3:97:29:db:f0:9c:16:3f:1b:94:68: c9:1a:f3:96:ec:77:e0:0b:36:ec:82:ec:12:85:02: 5c:e8:97:84:d2:8f:39:92:62:4c:43:c6:2c:58:32: 1b:1b:6e:26:cb:e9:4e:ba:50:00:e0:b1:17:19:2d: f1:84:36:4d:12:50:30:54:ff:9f:0a:a4:e3:f2:82: 87:6d:ac:06:6a:74:6e:ed:31:01:c5:75:f5:0c:50: a7:24:c4:d2:13:0f:c5:34:96:25:f5:52:e0:89:f4: 0b:43:74:45:2b:8a:86:9e:25:bf:7d:40:eb:0d:ba: e5:fe:73:25:03:b6:a0:e0:4c:67:bf:67:aa:51:be: e0:9a:18:24:26:9c:c9:65:b8:89:94:3d:c6:09:f0: c3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:EF:C4:1D:A2:90:D4:A0:24:E9:85:54:FA:62:85:78:84:FC:AC:6B X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:32:de:d0:5b:cc:df:73:4c:15:76:9f:4d:b0:af:2a:16:f7: 7e:ff:f7:40:68:a4:a7:93:d2:d4:52:b4:05:4a:5a:a2:34:90: 3e:5b:63:94:4c:b4:ea:1c:bd:e4:b8:fa:a7:17:92:08:5a:33: a7:ff:fb:8d:3c:cf:42:87:2b:54:a2:ee:23:9b:f6:63:a6:a9: 72:26:5a:b9:f0:bd:29:1f:a0:a1:23:d6:23:dc:45:f7:64:06: af:e7:93:0e:ef:95:f0:aa:5c:77:d4:dd:d7:01:71:7a:ca:fb: 76:37:f4:6c:30:74:b9:6c:46:27:87:c1:6d:cf:3c:eb:1b:c2: 5c:c2:a7:b2:eb:75:a9:45:a4:36:c9:44:9b:42:eb:4b:bb:f4: 4d:23:c9:f1:38:39:62:f4:b5:cb:b4:1d:99:4b:12:cc:6d:f3: 0b:3a:ec:25:d3:61:5d:c9:84:c7:31:07:e3:2c:d5:36:76:0e: 6b:2e:38:c8:af:f7:26:68:fe:f3:df:a6:3d:c8:1b:28:87:83: 24:4f:3f:13:22:5b:f6:f1:64:b5:48:56:15:26:45:27:79:70: 52:f0:04:24:d3:73:e1:32:81:c3:0b:85:6f:fd:f6:b5:e5:43: 8c:9a:5a:a8:11:7a:43:f0:68:f2:66:8e:f8:dd:b7:a4:57:1f: 1e:23:99:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUwODEwMTg0MjMwWhcNMjUwODE3MTg0MjMwWjAYMRYwFAYD VQQDEw02ODk4ZTgxNi03MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGPWu5ZElDFf+SigAf++haIXxwspxcfBfLEFYuw3SH3PzhjEWTPGzV1lH0J2 5Fi/iZPkfrE3Ru9xoCnvmavOPU5eAGS+uaGiPgBbCWi3LxnJoxNLp0+sy3FitUHK ncNWpboLxuvsB3U8Oda3o5cp2/CcFj8blGjJGvOW7HfgCzbsguwShQJc6JeE0o85 kmJMQ8YsWDIbG24my+lOulAA4LEXGS3xhDZNElAwVP+fCqTj8oKHbawGanRu7TEB xXX1DFCnJMTSEw/FNJYl9VLgifQLQ3RFK4qGniW/fUDrDbrl/nMlA7ag4Exnv2eq Ub7gmhgkJpzJZbiJlD3GCfDDvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzvxB2i kNSgJOmFVPpihXiE/KxrMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Mt7QW8zfc0wVdp9NsK8qFvd+//dAaKSnk9LUUrQFSlqiNJA+W2OU TLTqHL3kuPqnF5IIWjOn//uNPM9ChytUou4jm/ZjpqlyJlq58L0pH6ChI9Yj3EX3 ZAav55MO75Xwqlx31N3XAXF6yvt2N/RsMHS5bEYnh8FtzzzrG8Jcwqey63WpRaQ2 yUSbQutLu/RNI8nxODli9LXLtB2ZSxLMbfMLOuwl02FdyYTHMQfjLNU2dg5rLjjI r/cmaP7z36Y9yBsoh4MkTz8TIlv28WS1SFYVJkUneXBS8AQk03PhMoHDC4Vv/fa1 5UOMmlqoEXpD8GjyZo743bekVx8eI5mT -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:04 2025 by rpki-client