$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: NzmTU6uhqTB6Qmaxrz8nMuIDrjj4yg5KTCIMIrDVRkQ= Subject key identifier: 89:BB:F4:38:FA:EC:A9:AF:FB:2D:EB:8F:84:9D:3C:DB:AE:AD:ED:62 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 12F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 12DF Signing time: Fri 22 Aug 2025 17:10:59 +0000 Manifest this update: Fri 22 Aug 2025 17:10:59 +0000 Manifest next update: Fri 29 Aug 2025 17:10:59 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: tgUroIguOC4Ixh+jsFXjrCWUcOj23dY2pKN8dB2zbZw=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: qsHbNpoijKrtGMWbxqEqnKfl2y6Wb4U5iSQj3PTcQI0=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: 9kzHJ+mrOXjrh7/imCy9YTTgW8CKx7edCdpIZZ1nyQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4850 (0x12f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Aug 22 17:10:59 2025 GMT Not After : Aug 29 17:10:59 2025 GMT Subject: CN=68a8a4a3-b8b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:04:4d:42:1e:f2:5f:32:e4:34:31:2f:6e: 60:67:69:1a:d7:a4:47:24:71:3a:79:af:7c:60:76: 52:b9:87:ce:c7:2a:31:a7:3b:4a:98:75:2a:63:6e: 84:8e:64:2c:f9:30:a6:1f:7b:3f:0a:ae:9d:22:21: c4:1a:e0:88:b2:e4:59:7a:95:1f:39:ea:d1:8e:04: 53:2a:d7:c6:61:11:c2:43:e2:d0:23:10:79:b9:ce: c3:dc:05:ad:5f:9f:f7:e2:7d:f1:67:b8:de:56:ae: 86:09:c7:96:ae:a8:54:2a:83:5a:3a:3e:37:8a:08: 4c:b7:9e:5c:f6:5f:0c:c0:57:d1:9c:51:a7:b8:cf: b2:e8:30:2c:22:fe:ab:ff:c6:32:76:43:b5:1a:40: ee:b6:4b:e1:ef:13:28:3e:24:9d:93:76:50:07:6d: 10:39:ce:34:73:df:ba:c9:2d:7c:ef:96:55:12:e4: 07:66:06:8c:73:6a:c1:fa:26:4b:bd:44:24:1f:3f: df:06:b6:36:4f:7b:f2:9d:05:8a:08:42:7d:cc:bd: f6:ff:b6:f3:f6:c8:07:b7:da:22:c5:50:bd:a0:3a: d3:4b:08:e5:b0:28:c7:b3:32:dd:14:3e:e6:20:bf: 72:58:bf:b2:7d:1c:b8:fb:7d:af:3b:9a:50:08:74: c0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BB:F4:38:FA:EC:A9:AF:FB:2D:EB:8F:84:9D:3C:DB:AE:AD:ED:62 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:9e:70:73:69:45:36:80:16:bf:b1:32:ac:aa:4c:74:c2:fa: 65:c9:ed:f6:56:15:7e:e9:77:a2:18:f2:55:fe:a6:48:76:ae: a4:bf:5f:c5:67:39:dc:6c:8a:47:99:7a:84:17:d8:09:15:7b: 38:94:8b:89:e1:61:47:92:f7:45:a5:48:29:77:c6:9b:82:ec: d8:8a:4b:bf:e4:e6:14:a9:8c:80:06:d6:4d:22:f3:5f:71:65: c3:d6:eb:ae:9c:64:77:53:51:68:34:86:d2:e7:44:c7:fb:2e: e5:06:9f:95:77:da:b4:33:1b:57:a4:28:42:a0:fd:7a:f2:f2: d8:40:38:c2:d7:35:ea:bf:53:d9:fd:92:e0:b0:5d:23:85:bf: e6:23:b0:86:af:11:b6:40:bb:03:22:f3:eb:8c:ab:f7:e5:28: 8e:a8:b4:12:99:58:97:c3:36:1d:91:b8:2f:16:d4:48:fb:b0: 7d:12:e8:9e:98:db:9d:f0:51:a8:10:12:bb:14:6d:ec:fc:97: c9:89:23:5c:47:f3:63:4c:90:41:70:3e:70:2e:cf:b6:74:4e: 33:aa:b8:24:5b:98:92:a8:92:13:b5:e2:e6:43:95:57:ad:45: 89:6b:b1:dd:2c:a1:b1:38:42:50:40:a8:78:94:f5:f3:0c:8f: 77:85:39:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUwODIyMTcxMDU5WhcNMjUwODI5MTcxMDU5WjAYMRYwFAYD VQQDEw02OGE4YTRhMy1iOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK0ETUIe8l8y5DQxL25gZ2ka16RHJHE6ea98YHZSuYfOxyoxpztKmHUqY26E jmQs+TCmH3s/Cq6dIiHEGuCIsuRZepUfOerRjgRTKtfGYRHCQ+LQIxB5uc7D3AWt X5/34n3xZ7jeVq6GCceWrqhUKoNaOj43ighMt55c9l8MwFfRnFGnuM+y6DAsIv6r /8YydkO1GkDutkvh7xMoPiSdk3ZQB20QOc40c9+6yS1875ZVEuQHZgaMc2rB+iZL vUQkHz/fBrY2T3vynQWKCEJ9zL32/7bz9sgHt9oixVC9oDrTSwjlsCjHszLdFD7m IL9yWL+yfRy4+32vO5pQCHTAHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm79Dj6 7Kmv+y3rj4SdPNuure1iMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhnnBzaUU2gBa/sTKsqkx0wvplye32VhV+6XeiGPJV/qZIdq6kv1/F ZzncbIpHmXqEF9gJFXs4lIuJ4WFHkvdFpUgpd8abguzYiku/5OYUqYyABtZNIvNf cWXD1uuunGR3U1FoNIbS50TH+y7lBp+Vd9q0MxtXpChCoP168vLYQDjC1zXqv1PZ /ZLgsF0jhb/mI7CGrxG2QLsDIvPrjKv35SiOqLQSmViXwzYdkbgvFtRI+7B9Euie mNud8FGoEBK7FG3s/JfJiSNcR/NjTJBBcD5wLs+2dE4zqrgkW5iSqJITteLmQ5VX rUWJa7HdLKGxOEJQQKh4lPXzDI93hTl0 -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:25 2025 by rpki-client