$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: lEZ93taMcHMv4DHtdovHq1n9sQX+yd3BQVrH8L3XN98= Subject key identifier: 3A:80:A7:3A:A6:64:60:9C:17:6F:4F:95:D7:A9:F6:20:7B:16:DE:23 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CEC Signing time: Sun 10 Aug 2025 16:07:59 +0000 Manifest this update: Sun 10 Aug 2025 16:07:59 +0000 Manifest next update: Sun 17 Aug 2025 16:07:59 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: x6phtoaS6PWFr2K9juS7wbiCsvryCbGSnyBsGKRWmJ0=) 2: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: 2aGejYYAILu+vq+h9Ds1ItJ4A2WEADfQRUwQnuAzQp4=) 3: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: dyKQZQJFWOlaLCos4pICmePW3GQtvzVk28wWqQnX6xA=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7425 (0x1d01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Aug 10 16:07:59 2025 GMT Not After : Aug 17 16:07:59 2025 GMT Subject: CN=6898c3df-2116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:90:4a:b6:7a:97:c6:46:a3:4d:cf:f3:90:62: 6d:78:32:13:30:d9:53:86:2f:db:61:28:44:3f:76: 48:08:6c:5a:c5:e2:54:ba:79:72:ee:33:4f:95:1d: 0d:ee:21:11:34:ff:d2:c3:2e:f3:4b:9f:d4:21:2a: eb:de:62:43:71:b6:e7:c9:60:00:f4:3b:dd:f8:36: 74:d9:35:5a:f8:c5:34:dd:f5:11:e1:bc:c2:ae:7f: ed:f8:a9:e7:0a:c5:00:8e:1a:69:6b:49:f4:4d:c1: f5:0c:c8:a1:f9:e0:7f:e5:ff:f9:7f:ef:9c:e4:6d: 46:bd:d6:bb:f6:aa:cb:5e:f9:e2:8e:5c:94:56:81: b3:89:33:76:e7:b9:94:50:b8:a2:06:45:1f:75:ed: 7f:2f:72:02:dd:75:e0:5b:dd:f9:8b:c0:68:7b:71: 76:a9:7d:b0:b1:48:01:00:1f:7e:49:8f:50:89:ef: 84:33:30:a0:68:57:6e:dc:4b:17:cd:05:0e:1b:4c: 9f:33:f4:d5:76:2e:8b:ed:0d:ea:07:ee:a8:93:60: fa:88:a7:ba:f1:f9:51:98:cf:1c:c7:47:dd:7d:24: 90:e2:e0:fc:9e:46:0b:8b:c6:0d:0a:8f:9b:54:f1: cb:d4:f4:1d:ee:d9:16:b2:92:23:27:e2:de:42:40: d8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:80:A7:3A:A6:64:60:9C:17:6F:4F:95:D7:A9:F6:20:7B:16:DE:23 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:6f:b7:5e:9e:be:44:65:c5:bc:a1:75:41:42:f2:4f:03:36: 07:33:7b:14:61:c1:46:67:c7:eb:bf:42:aa:98:ff:43:95:73: e0:d3:93:a5:ff:62:30:54:6c:b8:5c:f9:14:a3:f4:11:60:73: 9f:fa:e6:ff:df:e1:18:9a:76:bd:bf:ca:b4:24:08:d2:46:9f: 51:46:da:18:60:34:6e:39:16:bd:79:9a:84:31:06:91:ac:d4: d8:0e:62:34:c1:56:23:26:8c:63:75:9c:41:a0:ba:05:85:55: 01:0e:98:5e:70:db:3b:3b:d1:1f:15:2f:56:db:bc:4d:d2:ae: 86:33:a2:7e:b8:aa:a2:0d:18:05:a1:3c:ce:e8:70:f2:4d:2f: 47:40:14:6b:ea:e0:ea:c7:d9:8f:94:3e:d7:70:a9:73:25:61: 05:ec:ca:11:91:29:49:3b:95:08:5d:67:85:68:52:dc:ab:8a: f1:69:18:0e:fe:6e:e7:1d:af:f4:76:a6:1d:c1:a9:87:88:06: 18:28:51:37:d3:18:30:b3:56:dd:7b:a3:2f:9c:04:0d:78:b5: 71:8b:d8:d7:aa:4f:11:fb:d5:90:e4:08:92:1a:fd:9a:3b:11: a5:95:83:97:7d:32:ec:91:2d:da:07:00:f6:e9:05:59:34:e4: 40:40:ba:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwODEwMTYwNzU5WhcNMjUwODE3MTYwNzU5WjAYMRYwFAYD VQQDEw02ODk4YzNkZi0yMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35BKtnqXxkajTc/zkGJteDITMNlThi/bYShEP3ZICGxaxeJUunly7jNPlR0N 7iERNP/Swy7zS5/UISrr3mJDcbbnyWAA9Dvd+DZ02TVa+MU03fUR4bzCrn/t+Knn CsUAjhppa0n0TcH1DMih+eB/5f/5f++c5G1Gvda79qrLXvnijlyUVoGziTN257mU ULiiBkUfde1/L3IC3XXgW935i8Boe3F2qX2wsUgBAB9+SY9Qie+EMzCgaFdu3EsX zQUOG0yfM/TVdi6L7Q3qB+6ok2D6iKe68flRmM8cx0fdfSSQ4uD8nkYLi8YNCo+b VPHL1PQd7tkWspIjJ+LeQkDYzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqApzqm ZGCcF29Pldep9iB7Ft4jMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1b7denr5EZcW8oXVBQvJPAzYHM3sUYcFGZ8frv0KqmP9DlXPg05Ol /2IwVGy4XPkUo/QRYHOf+ub/3+EYmna9v8q0JAjSRp9RRtoYYDRuORa9eZqEMQaR rNTYDmI0wVYjJoxjdZxBoLoFhVUBDphecNs7O9EfFS9W27xN0q6GM6J+uKqiDRgF oTzO6HDyTS9HQBRr6uDqx9mPlD7XcKlzJWEF7MoRkSlJO5UIXWeFaFLcq4rxaRgO /m7nHa/0dqYdwamHiAYYKFE30xgws1bde6MvnAQNeLVxi9jXqk8R+9WQ5AiSGv2a OxGllYOXfTLskS3aBwD26QVZNORAQLrw -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:25 2025 by rpki-client