$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: ivKskLvBpQqflWSH2zoylW//5OK69ynRHLkkLmGPYAw= Subject key identifier: B2:2C:DC:EA:DD:27:3C:C3:F1:48:6B:DE:A5:D0:A9:CD:8E:FE:D6:BE Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 173B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 20A0 Signing time: Fri 22 Aug 2025 16:43:14 +0000 Manifest this update: Fri 22 Aug 2025 16:43:13 +0000 Manifest next update: Fri 29 Aug 2025 16:43:13 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: fdvWP/J8LUsubkaWGWrTRLft+/4x/m8i3Gm7wcp04Jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5947 (0x173b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Aug 22 16:43:13 2025 GMT Not After : Aug 29 16:43:13 2025 GMT Subject: CN=68a89e21-acc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:53:67:4c:1b:0a:31:21:f9:77:84:9f:49: 74:89:73:5b:61:3f:8a:74:cf:c9:e7:73:ff:68:28: b9:18:14:a0:48:64:11:d0:38:77:0d:d2:92:88:b2: 41:70:f5:fd:12:57:f0:68:36:2a:63:50:5e:96:f8: a5:bc:f1:3e:25:c7:99:bb:9a:81:ca:6d:ef:1e:51: bf:54:4e:aa:94:ac:ad:08:70:3f:a8:29:9c:8e:af: 41:7b:a2:e0:a6:1c:ae:dc:27:30:a5:d0:93:58:7a: 1b:fb:c9:54:4e:b4:0c:7a:e7:13:c1:23:fe:c9:82: ea:5c:b5:83:bf:1c:1f:07:82:3f:20:76:ef:2b:0b: f7:b9:d3:0a:ef:2a:09:ac:e3:2e:e1:d1:ab:4c:0e: 9e:3d:aa:fd:c7:21:85:76:6c:4f:d3:a3:a8:88:61: 96:3e:44:04:da:cf:dd:3e:b3:38:b0:d1:eb:bc:81: 78:8c:1c:08:35:6f:f4:15:41:1f:47:3a:42:21:25: 3c:8e:65:17:0e:49:c3:a5:98:21:3c:f7:34:7d:49: 3c:22:38:02:3e:a1:77:5e:ec:d6:62:36:d6:74:bd: 98:b1:b9:b2:f1:06:69:4f:cc:75:48:55:41:ce:3b: 3f:c3:f4:91:0f:25:f5:a0:4c:1a:2f:9e:f3:51:e3: 5d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2C:DC:EA:DD:27:3C:C3:F1:48:6B:DE:A5:D0:A9:CD:8E:FE:D6:BE X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:72:84:40:5c:36:9a:25:2b:8a:c6:fb:f0:c8:2c:5e:ec:e0: 43:4a:1e:be:e3:d9:d0:81:31:1c:50:c9:9b:a8:92:fc:b0:b8: 86:1f:bb:3d:c9:e7:72:37:75:c3:3c:1c:a9:5b:9f:4e:54:41: 95:17:d9:e9:df:65:0d:f5:9e:7d:12:87:78:28:0f:45:cf:b4: cd:5c:56:07:22:10:4b:7c:22:80:52:cc:c9:93:2e:9f:44:e1: 4b:c4:56:50:0e:2c:83:f0:18:08:68:56:8b:29:c7:ca:83:69: 21:0f:b8:bf:94:9d:ae:4e:33:af:18:bf:ee:53:c3:da:5d:e4: c5:f8:7a:4d:75:af:42:f7:9d:75:1b:df:32:0a:1c:09:1f:3b: ed:7c:99:f1:d2:24:8b:30:dd:4a:34:61:ef:ce:e8:77:53:d9: 90:a1:1f:2e:27:40:01:4f:7e:05:5d:c9:f2:00:a5:3a:6b:30: f1:a7:68:1f:15:d6:a0:76:5c:a8:6c:e2:ee:09:a8:e3:58:9e: 30:8d:1a:09:88:12:cf:0a:72:c2:4c:11:99:0c:9d:8e:05:69: a7:3a:0e:6e:c6:e2:ed:5d:8f:9f:4b:30:6a:e1:be:6b:24:b2: cc:ed:b4:87:6f:8b:ca:d0:ac:11:03:66:d0:1e:3a:ab:4a:cc: a9:bc:3d:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwODIyMTY0MzEzWhcNMjUwODI5MTY0MzEzWjAYMRYwFAYD VQQDEw02OGE4OWUyMS1hY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhtTZ0wbCjEh+XeEn0l0iXNbYT+KdM/J53P/aCi5GBSgSGQR0Dh3DdKSiLJB cPX9ElfwaDYqY1BelvilvPE+JceZu5qBym3vHlG/VE6qlKytCHA/qCmcjq9Be6Lg phyu3CcwpdCTWHob+8lUTrQMeucTwSP+yYLqXLWDvxwfB4I/IHbvKwv3udMK7yoJ rOMu4dGrTA6ePar9xyGFdmxP06OoiGGWPkQE2s/dPrM4sNHrvIF4jBwINW/0FUEf RzpCISU8jmUXDknDpZghPPc0fUk8IjgCPqF3XuzWYjbWdL2Ysbmy8QZpT8x1SFVB zjs/w/SRDyX1oEwaL57zUeNd7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIs3Ord JzzD8Uhr3qXQqc2O/ta+MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAccoRAXDaaJSuKxvvwyCxe7OBDSh6+49nQgTEcUMmbqJL8sLiGH7s9 yedyN3XDPBypW59OVEGVF9np32UN9Z59Eod4KA9Fz7TNXFYHIhBLfCKAUszJky6f ROFLxFZQDiyD8BgIaFaLKcfKg2khD7i/lJ2uTjOvGL/uU8PaXeTF+HpNda9C9511 G98yChwJHzvtfJnx0iSLMN1KNGHvzuh3U9mQoR8uJ0ABT34FXcnyAKU6azDxp2gf FdagdlyobOLuCajjWJ4wjRoJiBLPCnLCTBGZDJ2OBWmnOg5uxuLtXY+fSzBq4b5r JLLM7bSHb4vK0KwRA2bQHjqrSsypvD0j -----END CERTIFICATE-----Generated at Sun Aug 24 04:46:39 2025 by rpki-client