$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: qa8K+JOXEPAocLZvZ4wPnQMIna7cBkep+lgHZb5nFOE= Subject key identifier: 78:BD:4B:03:A6:9A:61:12:22:F4:27:65:29:FC:71:35:19:23:B6:7E Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 032F Signing time: Sat 09 Aug 2025 01:39:27 +0000 Manifest this update: Sat 09 Aug 2025 01:39:27 +0000 Manifest next update: Sat 16 Aug 2025 01:39:27 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: HVxk6CJk2Urtai0aE3bgAECtEnBgy25mozWUE3twWWQ=) 2: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: du3inK9qkjwR/A2n6vO6SMQjDynHJ0y0PAziJifzAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54, serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: Aug 9 01:39:27 2025 GMT Not After : Aug 16 01:39:27 2025 GMT Subject: CN=6896a6cf-6b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:59:86:1a:36:d2:16:86:a5:1c:bd:2f:5e: be:01:af:1b:2d:60:4b:d1:c6:07:80:7f:f3:a0:f2: 02:e2:f8:23:ea:7b:bc:9a:16:d4:6a:21:49:9b:ee: af:40:1f:3b:ff:40:47:3e:58:33:c5:88:6d:12:fa: 29:d7:ae:e8:a5:1e:df:bd:57:cb:a2:e3:8a:93:fd: 5a:2c:fc:48:5f:c9:c8:fd:6e:35:99:56:88:b3:e8: 57:6f:6c:58:82:f3:49:9a:b9:2f:f4:9c:be:a8:91: 83:75:b9:d3:84:60:d8:be:41:3b:04:b8:e4:d9:25: 31:c7:e1:60:ad:c7:75:3c:81:0c:47:c6:c4:46:f1: 18:35:ed:7a:94:6b:d7:59:71:64:eb:8d:d7:cd:e0: 21:a9:4b:f1:36:b6:9e:ff:5f:9e:e9:2a:dd:b3:3e: 95:6a:c6:3b:3d:92:78:70:d5:62:c8:97:a7:94:29: bf:6f:19:42:aa:fb:4a:4f:b9:09:cb:75:d4:f9:b0: 1b:b0:0b:38:e9:5c:3a:d4:11:0e:c0:0f:57:b3:f1: 17:8d:ba:68:ad:9b:fd:2c:73:45:d5:7a:a8:0c:56: 50:ff:2d:0f:e6:b0:4f:5d:cd:d9:7f:90:33:e5:2e: 35:44:d6:aa:12:a9:55:ea:b9:7c:02:43:27:ab:3a: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:BD:4B:03:A6:9A:61:12:22:F4:27:65:29:FC:71:35:19:23:B6:7E X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5c:20:0e:ce:d7:a8:ef:a4:43:1b:66:5e:c1:04:b9:20:a0: 34:c0:d7:b9:ce:c1:95:e7:b3:45:15:68:fe:38:89:0e:6b:4a: 91:8d:2b:08:14:5d:96:00:13:46:10:52:65:3b:1c:ab:b9:ca: 1d:83:97:76:54:92:af:b6:89:80:40:2f:a5:bd:45:1b:be:f3: 60:ef:07:2a:47:ea:13:cd:09:5c:66:3a:3e:9c:3e:5c:0c:89: 13:63:01:f0:f4:03:92:8d:98:35:6b:4f:75:62:27:dd:36:21: bd:a5:5c:c4:eb:9a:ad:fc:ca:74:4c:9d:80:8b:e5:c9:b9:ad: 86:cf:a3:a1:aa:5c:9e:5b:b0:88:9e:f6:d2:bc:9f:fa:b3:a0: 1d:ec:d8:2f:a7:52:d3:9d:66:b2:f2:3a:5f:c9:e6:a0:79:65: b6:26:cb:09:90:fb:16:14:6b:c2:95:f7:32:7b:ce:64:c3:8c: 90:ff:e8:f2:16:18:ca:79:8c:a8:86:62:7f:8b:1c:df:f9:1d: f1:d2:c4:21:b3:ea:0c:84:0f:d2:04:30:28:88:f2:70:18:25: d3:be:e7:d0:98:e6:53:d5:76:bd:1a:a0:5b:5c:6e:f8:50:33: 54:e5:9f:69:98:49:7f:96:66:fd:4e:5e:b5:21:10:af:2f:45: 6d:59:9f:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjUwODA5MDEzOTI3WhcNMjUwODE2MDEzOTI3WjAYMRYwFAYD VQQDEw02ODk2YTZjZi02Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OBZhho20haGpRy9L16+Aa8bLWBL0cYHgH/zoPIC4vgj6nu8mhbUaiFJm+6v QB87/0BHPlgzxYhtEvop167opR7fvVfLouOKk/1aLPxIX8nI/W41mVaIs+hXb2xY gvNJmrkv9Jy+qJGDdbnThGDYvkE7BLjk2SUxx+Fgrcd1PIEMR8bERvEYNe16lGvX WXFk643XzeAhqUvxNrae/1+e6Srdsz6VasY7PZJ4cNViyJenlCm/bxlCqvtKT7kJ y3XU+bAbsAs46Vw61BEOwA9Xs/EXjbporZv9LHNF1XqoDFZQ/y0P5rBPXc3Zf5Az 5S41RNaqEqlV6rl8AkMnqzpsUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHi9SwOm mmESIvQnZSn8cTUZI7Z+MB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeXCAOzteo76RDG2ZewQS5IKA0wNe5zsGV57NFFWj+OIkOa0qRjSsI FF2WABNGEFJlOxyrucodg5d2VJKvtomAQC+lvUUbvvNg7wcqR+oTzQlcZjo+nD5c DIkTYwHw9AOSjZg1a091YifdNiG9pVzE65qt/Mp0TJ2Ai+XJua2Gz6OhqlyeW7CI nvbSvJ/6s6Ad7Ngvp1LTnWay8jpfyeageWW2JssJkPsWFGvClfcye85kw4yQ/+jy FhjKeYyohmJ/ixzf+R3x0sQhs+oMhA/SBDAoiPJwGCXTvufQmOZT1Xa9GqBbXG74 UDNU5Z9pmEl/lmb9Tl61IRCvL0VtWZ/0 -----END CERTIFICATE-----Generated at Sat Aug 9 15:12:14 2025 by rpki-client