$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft File: iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft (raw, json) Hash identifier: V2mD0r4p+iMOssPPS7Q8AtDX1DrbOUMu0ZlI8OH/91w= Subject key identifier: 3B:D0:4D:A9:2B:AF:1D:55:6B:56:EC:73:90:09:3B:27:1E:DA:82:08 Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft Manifest number: FA Signing time: Sat 23 Aug 2025 05:24:57 +0000 Manifest this update: Sat 23 Aug 2025 05:24:57 +0000 Manifest next update: Sat 30 Aug 2025 05:24:57 +0000 Files and hashes: 1: iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl (hash: HlAyoh+USmCfbHTkRD9jtqOV4g7NAM4Sjx3yvOehaAo=) 2: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (hash: IjBd7XUR2i0dTIqKZWCJ7zm+gZSogWBX4IMREVDmhgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90, serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Validity Not Before: Aug 23 05:24:57 2025 GMT Not After : Aug 30 05:24:57 2025 GMT Subject: CN=68a950a9-95e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:25:9f:67:a0:07:98:0f:45:4d:7c:d9:76:ca: b8:b1:aa:ca:cb:a2:e3:1d:3b:30:07:41:e3:ad:26: 1e:0e:44:e1:ff:1a:ad:8c:39:ad:fb:cd:96:b6:c1: 56:c9:88:29:fb:7d:88:0d:67:d5:90:13:71:fc:08: 8b:4e:82:1b:9c:53:73:d3:b3:1c:50:c6:6f:57:78: 80:a6:6d:59:c7:29:d6:d0:1b:72:b7:5d:fc:a9:fe: 80:10:db:b9:7a:dc:80:0b:a5:97:5e:f9:64:bc:98: db:8d:ba:1d:fb:54:7a:79:d2:61:1a:4d:62:99:68: 83:c4:c3:dd:8d:b7:58:9b:11:27:a7:64:e9:46:5c: 0f:08:4f:3f:06:b1:4b:68:34:21:20:5c:d9:65:98: ba:48:f9:88:6a:55:b6:e4:1d:f5:34:91:e4:5c:68: e6:6c:29:05:57:ad:ab:c6:69:7e:fb:37:d8:a7:4a: 77:a5:f5:c7:93:9c:a2:2d:cd:4a:5a:0e:3b:c5:d8: 8b:04:a9:89:fe:2e:aa:32:6d:1f:f2:0b:69:4b:04: 46:a8:5f:64:e7:ad:ae:fb:95:a9:0a:6a:76:51:57: e2:ba:8c:f3:10:78:59:02:27:70:5e:fa:77:15:36: 2d:f0:86:be:dd:00:fe:89:3e:62:73:77:d4:ac:81: ea:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D0:4D:A9:2B:AF:1D:55:6B:56:EC:73:90:09:3B:27:1E:DA:82:08 X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:a1:2b:84:f5:c8:2b:ff:95:79:84:95:f6:e3:57:5b:d8:3e: e1:95:de:15:4c:e2:a7:49:1f:07:1d:c3:a5:83:40:67:af:58: 0e:80:dc:78:6c:b7:d3:6b:4f:ec:44:8d:fa:ad:62:b7:33:7c: 08:ef:c2:91:ce:65:f9:32:48:8e:bd:38:15:a7:0c:28:aa:55: db:24:6d:d0:66:f7:9f:e5:32:39:99:43:07:40:db:03:e1:e9: 02:d9:7f:8d:5f:c2:c4:60:7b:dc:e0:2b:10:f2:93:ff:af:4c: 74:50:5f:81:69:fb:2d:39:d2:dd:bd:46:90:d7:26:2e:45:ec: 6f:51:f3:98:4a:52:5b:ad:0a:89:8b:fe:b5:13:d5:25:4e:c0: ff:1e:32:c8:b3:98:dc:ea:c8:af:45:4c:4a:87:24:38:52:2e: 1f:0f:fa:48:28:dd:57:eb:1e:32:73:fc:bb:29:3a:03:b2:69: 31:f3:90:67:44:4c:4c:e1:95:75:a5:b5:34:4b:9b:ac:e5:b4: 16:09:0a:61:bc:ff:99:aa:45:5a:a0:a4:d6:b8:e2:a3:32:8d: ad:83:0e:e2:01:0a:03:8b:8b:ce:1f:b1:12:99:3f:f4:83:16: e9:4b:97:0f:7f:52:3c:f3:8a:5c:b6:e7:ab:f0:cc:2f:47:bd: 33:e4:8e:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FEOTAxMTAvBgNVBAUTKDg4MDkxOEE4NzU2RjA0OTMxQTMyRjRDRUEzNDFDNEYy M0ZBRDUwRUYwHhcNMjUwODIzMDUyNDU3WhcNMjUwODMwMDUyNDU3WjAYMRYwFAYD VQQDEw02OGE5NTBhOS05NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSWfZ6AHmA9FTXzZdsq4sarKy6LjHTswB0HjrSYeDkTh/xqtjDmt+82WtsFW yYgp+32IDWfVkBNx/AiLToIbnFNz07McUMZvV3iApm1ZxynW0Btyt138qf6AENu5 etyAC6WXXvlkvJjbjbod+1R6edJhGk1imWiDxMPdjbdYmxEnp2TpRlwPCE8/BrFL aDQhIFzZZZi6SPmIalW25B31NJHkXGjmbCkFV62rxml++zfYp0p3pfXHk5yiLc1K Wg47xdiLBKmJ/i6qMm0f8gtpSwRGqF9k562u+5WpCmp2UVfiuozzEHhZAidwXvp3 FTYt8Ia+3QD+iT5ic3fUrIHqdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvQTakr rx1Va1bsc5AJOyce2oIIMB8GA1UdIwQYMBaAFIgJGKh1bwSTGjL0zqNBxPI/rVDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUQ5MC8wMzAwQzUxNDBG MEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJKTWFNdlRPbzBIRThqLXRV TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJK TWFNdlRPbzBIRThqLXRVTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUoSuE9cgr/5V5hJX241db2D7hld4VTOKnSR8HHcOlg0Bnr1gOgNx4 bLfTa0/sRI36rWK3M3wI78KRzmX5MkiOvTgVpwwoqlXbJG3QZvef5TI5mUMHQNsD 4ekC2X+NX8LEYHvc4CsQ8pP/r0x0UF+BafstOdLdvUaQ1yYuRexvUfOYSlJbrQqJ i/61E9UlTsD/HjLIs5jc6sivRUxKhyQ4Ui4fD/pIKN1X6x4yc/y7KToDsmkx85Bn RExM4ZV1pbU0S5us5bQWCQphvP+ZqkVaoKTWuOKjMo2tgw7iAQoDi4vOH7ESmT/0 gxbpS5cPf1I884pctuer8MwvR70z5I5Y -----END CERTIFICATE-----Generated at Sun Aug 24 06:46:52 2025 by rpki-client