$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft File: iiZW272QAzaEH_UDU2_5kY_rJcY.mft (raw, json) Hash identifier: teuiFrzgj1PcLV1p4T5KkVHWOANOf9CKMiinMIP85bg= Subject key identifier: F8:1B:5F:88:23:17:8B:F0:2D:9A:57:F2:3D:7F:5E:6C:8B:23:C8:20 Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 0A19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft Manifest number: 0A0D Signing time: Fri 22 Aug 2025 19:57:16 +0000 Manifest this update: Fri 22 Aug 2025 19:57:16 +0000 Manifest next update: Fri 29 Aug 2025 19:57:16 +0000 Files and hashes: 1: iiZW272QAzaEH_UDU2_5kY_rJcY.crl (hash: Ze7iGKyPTieDiTmLB0C1OjMPuIncn1cXEk7vxxhpIIo=) 2: 9244682C7BD711EAA889485EC4F9AE02.roa (hash: ZCM+V6Y56yepaeegUajjp4xOF8Q6SeyZY2EvL4X5a+Y=) 3: 8B802D485F2211EC88AA0F84C4F9AE02.roa (hash: qSGZ+j4RvXroFxByBDcPf9/bS2chAaWe7JM19f3ZPpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: Aug 22 19:57:16 2025 GMT Not After : Aug 29 19:57:16 2025 GMT Subject: CN=68a8cb9c-f6b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a6:dc:47:48:9b:49:c4:1c:17:7c:38:85:e8: 2d:92:a1:79:22:89:d5:9a:42:ea:a7:8d:08:8c:99: 90:6d:2b:88:93:0b:c7:57:36:15:0c:ab:17:0f:7c: a3:09:a4:47:a5:cb:57:35:59:66:b4:7d:fd:fd:bf: e4:a5:89:d3:d6:66:45:e5:e3:d4:51:92:34:a4:9d: 0f:24:d3:be:79:f5:bc:28:c4:dc:24:80:99:cd:f5: d1:a7:4c:68:f8:62:a0:4e:88:53:a9:54:9e:55:61: 97:55:b1:ae:17:bf:0a:59:45:ff:31:2e:56:f9:30: c5:8e:12:bb:71:aa:0d:c5:af:1d:be:f4:3d:2a:f3: 68:22:0c:94:c4:de:e0:92:ac:fe:2d:6c:f8:eb:43: 37:a6:cf:0c:5f:fd:2f:ef:b1:98:f6:85:d7:8f:09: d3:b4:a8:6f:21:d7:62:27:e7:4a:6c:e4:6f:fd:c9: d8:03:e4:6a:a4:e0:45:05:9a:16:63:e0:cd:ef:09: f4:d6:fa:20:ef:4e:ef:e7:b3:c6:2f:a0:76:80:63: 29:ed:5f:ea:21:cf:f9:2c:70:e6:df:c5:73:58:35: 20:a6:ab:15:2c:d5:59:7e:21:72:b2:50:f0:5e:b1: a2:95:9c:10:0d:65:5d:72:b7:8c:c4:e0:ab:96:b0: be:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1B:5F:88:23:17:8B:F0:2D:9A:57:F2:3D:7F:5E:6C:8B:23:C8:20 X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8c:dd:8e:23:b2:10:65:5a:d3:6c:c6:22:7a:74:ac:5c:68: 5f:16:ba:7d:5e:ee:ec:ca:97:78:33:6b:0b:59:c6:cf:9d:ef: 62:75:6e:86:14:b0:82:cd:df:ee:96:a5:f8:3a:59:d0:1c:2e: 45:94:1b:3b:40:ca:12:ef:5d:b5:3d:fc:40:52:9a:38:ba:9f: c5:8c:85:e2:99:d9:08:b8:f4:8e:30:d6:9d:87:52:1f:27:ce: 50:cd:7b:4c:3e:f8:c0:e1:6c:12:8a:74:3b:9f:4e:95:74:bd: 9a:35:17:a8:18:ca:06:9f:f8:4c:3a:6a:f4:49:61:5e:e5:ad: 3b:6f:90:d9:7e:7d:7e:96:48:8c:df:c5:d1:52:86:0a:79:34: d3:ab:1b:34:4a:3e:c4:ee:ff:f0:7e:70:59:1e:08:4e:30:78: 27:6d:f9:ac:5d:09:04:f3:0d:e2:b5:9f:d3:75:9a:1a:1a:b2: 24:ca:f7:23:d1:87:bc:71:07:14:f0:30:f1:08:f8:73:71:45: 7a:fb:b9:5c:e7:65:ab:c9:05:97:95:1b:db:ea:c1:df:67:8c: 11:01:ad:da:ec:14:7f:3f:1b:c4:e7:75:06:d2:f3:5d:7d:e5: 9c:c0:07:fd:0b:d8:ac:36:4d:ae:c9:90:1e:41:eb:93:e4:f4: 16:26:37:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjUwODIyMTk1NzE2WhcNMjUwODI5MTk1NzE2WjAYMRYwFAYD VQQDEw02OGE4Y2I5Yy1mNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvabcR0ibScQcF3w4hegtkqF5IonVmkLqp40IjJmQbSuIkwvHVzYVDKsXD3yj CaRHpctXNVlmtH39/b/kpYnT1mZF5ePUUZI0pJ0PJNO+efW8KMTcJICZzfXRp0xo +GKgTohTqVSeVWGXVbGuF78KWUX/MS5W+TDFjhK7caoNxa8dvvQ9KvNoIgyUxN7g kqz+LWz460M3ps8MX/0v77GY9oXXjwnTtKhvIddiJ+dKbORv/cnYA+RqpOBFBZoW Y+DN7wn01vog707v57PGL6B2gGMp7V/qIc/5LHDm38VzWDUgpqsVLNVZfiFyslDw XrGilZwQDWVdcreMxOCrlrC+TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgbX4gj F4vwLZpX8j1/XmyLI8ggMB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjY3Qy81QjUzODk2NjdCRDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6 YUVIX1VEVTJfNWtZX3JKY1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZjN2OI7IQZVrTbMYienSsXGhfFrp9Xu7sypd4M2sLWcbPne9idW6G FLCCzd/ulqX4OlnQHC5FlBs7QMoS7121PfxAUpo4up/FjIXimdkIuPSOMNadh1If J85QzXtMPvjA4WwSinQ7n06VdL2aNReoGMoGn/hMOmr0SWFe5a07b5DZfn1+lkiM 38XRUoYKeTTTqxs0Sj7E7v/wfnBZHghOMHgnbfmsXQkE8w3itZ/TdZoaGrIkyvcj 0Ye8cQcU8DDxCPhzcUV6+7lc52WryQWXlRvb6sHfZ4wRAa3a7BR/PxvE53UG0vNd feWcwAf9C9isNk2uyZAeQeuT5PQWJjeE -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:46 2025 by rpki-client