$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft File: IQlGzanedd75YJiV-_Ie2Exy9Oc.mft (raw, json) Hash identifier: h8jMbWcLzboYlSWJt3nkjembnVhRjpyCYO7SZeywMY0= Subject key identifier: D7:24:12:53:C5:5F:BB:3E:A6:F7:69:CD:36:5F:29:98:34:0A:CA:21 Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft Manifest number: 89 Signing time: Thu 07 Aug 2025 07:09:58 +0000 Manifest this update: Thu 07 Aug 2025 07:09:57 +0000 Manifest next update: Thu 14 Aug 2025 07:09:57 +0000 Files and hashes: 1: IQlGzanedd75YJiV-_Ie2Exy9Oc.crl (hash: wds6XATOWA7dwsYG5maJBgq/oVfvEInZNiwGJaHhQkQ=) 2: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (hash: S974N0P9f8Bg6Jc7BIscRXeUqpVDlIBE/NP1Bo0j0PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Aug 7 07:09:57 2025 GMT Not After : Aug 14 07:09:57 2025 GMT Subject: CN=68945146-b3ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:ab:5c:a0:d0:0e:cc:ea:0f:ce:0c:54:07: 2a:1e:57:fb:f4:4f:4a:e8:97:bb:21:40:2c:05:0e: 0c:15:05:91:db:f5:4c:0f:e3:d8:c8:a8:6d:f4:8f: ed:b6:f2:69:94:94:89:4b:b8:f1:56:2f:0d:ba:86: 48:57:8a:a4:7f:c2:b6:6d:66:31:d7:fd:32:f2:6f: a2:ec:17:15:50:35:f5:3c:e3:17:8a:88:63:a3:68: 18:42:fb:14:da:4d:11:93:d7:5b:14:ff:bf:08:9c: 80:02:2c:9a:ca:18:63:92:01:54:74:db:fb:2c:71: 72:84:c6:4b:1c:76:1b:20:72:f0:e1:dd:99:e2:33: 72:a7:27:70:f1:d7:b1:55:8e:2b:22:e3:34:41:99: f0:4c:dc:b6:22:d8:86:5c:c1:3f:d1:46:40:34:07: e6:46:21:20:19:3d:d3:4d:52:ec:77:0c:18:8c:2b: 2a:3b:f0:c9:12:c1:9b:6d:df:3e:3e:00:02:fe:ca: cc:6d:72:54:91:eb:52:b4:7f:b9:5c:37:4d:b8:d9: 5c:9d:26:5a:1f:4a:5f:a7:67:d7:c9:4d:77:45:b2: 75:8f:ca:5d:23:ee:8b:9b:22:66:64:17:fd:cb:06: da:2f:a3:ce:d2:f4:f5:f2:02:bd:e7:16:10:3c:60: 05:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:24:12:53:C5:5F:BB:3E:A6:F7:69:CD:36:5F:29:98:34:0A:CA:21 X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:e5:1a:ab:e2:61:d1:fe:5a:b0:b3:3b:49:10:9d:77:df:4f: 51:b1:76:8c:76:ff:25:85:55:47:57:f7:fe:6e:bb:84:b2:bf: 85:ea:50:9d:c6:c9:2c:83:31:6e:d7:27:72:91:a0:f6:e2:84: 7f:34:d1:15:13:8a:76:7a:c1:41:59:9f:87:b5:ce:27:2d:c3: b1:ec:d8:49:43:b5:ba:33:bb:5d:61:a4:2d:d5:78:45:c3:e8: 94:56:c8:0f:ef:85:aa:fb:35:17:a6:8b:24:e1:3c:5f:07:e4: a1:b1:cf:47:85:59:1d:ee:da:3b:2c:48:0f:97:04:39:06:41: 84:17:5c:0f:2d:4f:65:86:74:20:6f:6b:27:0a:8d:57:20:a0: e1:3d:60:ab:dd:c2:52:d6:f7:70:88:24:4b:8c:81:84:05:82: 13:81:75:82:83:7d:0d:ad:df:d9:9c:77:d8:14:ff:2d:28:6a: 04:e0:58:35:37:dd:2c:85:8a:0b:46:c2:a2:c9:c1:61:ac:25: e9:5b:9d:fb:de:8f:27:dd:f3:05:0c:15:20:72:4b:87:24:fd: 3c:91:cc:09:0a:33:ef:77:64:ed:c8:9f:68:e1:1a:06:c4:39: 22:94:69:34:d4:4e:e9:70:1c:f7:e3:7a:e0:06:fd:6d:a7:9b: 98:2d:e0:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1MzcxMTAvBgNVBAUTKDIxMDk0NkNEQTlERTc1REVGOTYwOTg5NUZCRjIxRUQ4 NEM3MkY0RTcwHhcNMjUwODA3MDcwOTU3WhcNMjUwODE0MDcwOTU3WjAYMRYwFAYD VQQDEw02ODk0NTE0Ni1iM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHOrXKDQDszqD84MVAcqHlf79E9K6Je7IUAsBQ4MFQWR2/VMD+PYyKht9I/t tvJplJSJS7jxVi8NuoZIV4qkf8K2bWYx1/0y8m+i7BcVUDX1POMXiohjo2gYQvsU 2k0Rk9dbFP+/CJyAAiyayhhjkgFUdNv7LHFyhMZLHHYbIHLw4d2Z4jNypydw8dex VY4rIuM0QZnwTNy2ItiGXME/0UZANAfmRiEgGT3TTVLsdwwYjCsqO/DJEsGbbd8+ PgAC/srMbXJUketStH+5XDdNuNlcnSZaH0pfp2fXyU13RbJ1j8pdI+6LmyJmZBf9 ywbaL6PO0vT18gK95xYQPGAFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNckElPF X7s+pvdpzTZfKZg0CsohMB8GA1UdIwQYMBaAFCEJRs2p3nXe+WCYlfvyHthMcvTn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84N0RENTQ4Q0Ey NzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRkNzVZSmlWLV9JZTJFeHk5 T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84N0RENTQ4Q0EyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRk NzVZSmlWLV9JZTJFeHk5T2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ5Rqr4mHR/lqwsztJEJ13309RsXaMdv8lhVVHV/f+bruEsr+F6lCd xsksgzFu1ydykaD24oR/NNEVE4p2esFBWZ+Htc4nLcOx7NhJQ7W6M7tdYaQt1XhF w+iUVsgP74Wq+zUXposk4TxfB+Shsc9HhVkd7to7LEgPlwQ5BkGEF1wPLU9lhnQg b2snCo1XIKDhPWCr3cJS1vdwiCRLjIGEBYITgXWCg30Nrd/ZnHfYFP8tKGoE4Fg1 N90shYoLRsKiycFhrCXpW5373o8n3fMFDBUgckuHJP08kcwJCjPvd2TtyJ9o4RoG xDkilGk01E7pcBz343rgBv1tp5uYLeDC -----END CERTIFICATE-----Generated at Fri Aug 8 20:56:17 2025 by rpki-client