$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: eXqSDDSgsHi06HRm+KZBClKfsRFeFzSjCK+lManIzS4= Subject key identifier: DB:E5:9A:65:2B:35:6E:9A:D1:0E:50:B4:07:7C:B7:FF:28:80:60:02 Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 077E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 0773 Signing time: Fri 22 Aug 2025 21:41:47 +0000 Manifest this update: Fri 22 Aug 2025 21:41:46 +0000 Manifest next update: Fri 29 Aug 2025 21:41:46 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: kFljrMvY60lzkd386EBuFYB6MGWZAqNQSAUN6YhpMUU=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: CNZBv4FK9ZWvTtzm+cWIR1zfUXJg63OkryMkTZVFNpg=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: BlNMvykSVEqNeWKjQSI6MISWgcMVQUYKsr+oWp8+db0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1918 (0x77e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Aug 22 21:41:46 2025 GMT Not After : Aug 29 21:41:46 2025 GMT Subject: CN=68a8e41b-b592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:5d:c4:56:85:eb:cc:21:e8:93:38:fa:84: c6:99:bf:7a:18:e0:01:c7:52:93:ef:10:fc:b1:95: 28:90:42:52:6a:e2:05:8b:95:1e:f4:89:ae:b2:c8: 78:a6:1f:ca:e3:d9:dc:c2:ec:bb:a5:06:e5:1d:ba: 75:02:40:c1:81:cc:e5:4c:50:1a:fc:9e:e3:0b:53: 11:c5:0e:5e:d5:56:df:c5:f4:97:c9:0f:44:92:c5: 47:6e:a8:a5:e9:32:d8:b7:f7:30:8a:27:9e:df:ff: cb:96:d5:72:49:42:66:4b:da:97:f2:68:ec:31:1d: 68:6c:2f:53:2b:ba:bc:8f:f3:3c:80:7c:89:71:bb: 73:b5:f3:9d:c1:28:e0:33:90:39:81:d8:dc:dd:9f: ae:74:5b:5b:0b:af:fb:8f:55:76:f8:e6:1d:55:70: 17:26:d3:5c:cf:68:01:e4:f4:04:7f:cc:8c:5c:b6: ca:0e:8a:88:a6:60:52:c3:44:31:27:3c:c4:25:59: 7a:22:75:0f:f9:fe:6e:fb:9c:57:31:47:26:d5:0a: 15:19:88:f9:80:c1:07:10:f6:d2:5a:a8:f1:0a:7a: cb:fd:45:c0:97:dd:e8:ff:f1:68:cf:63:90:22:da: 02:53:d2:6f:0b:9b:7d:fc:df:8a:5a:9c:5e:1e:89: b0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E5:9A:65:2B:35:6E:9A:D1:0E:50:B4:07:7C:B7:FF:28:80:60:02 X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:8e:8c:34:4d:51:2f:6b:fa:ad:96:36:d8:f4:a8:91:b7:87: 57:67:1c:e4:4c:84:28:f3:8d:1e:89:2d:79:8c:93:5c:4b:15: 2a:03:4e:0f:46:c3:f7:48:c9:4a:4e:3e:92:87:c8:65:9b:27: 26:18:43:91:34:c3:f7:1d:fa:b0:99:cc:49:ee:f6:cb:0d:2e: e5:67:47:2d:e2:84:24:3d:0e:c2:ac:d4:b6:fa:6f:f4:94:a2: 65:7c:8a:55:5f:f1:4f:7f:7d:40:56:8e:40:b7:c3:94:63:49: 6e:d4:3f:20:0e:34:0e:b9:ad:97:21:e7:5a:7d:37:51:dd:ff: 55:7c:3e:a2:ac:6a:c1:12:59:ac:1a:c5:bb:b4:17:b2:03:97: 58:55:e2:c1:00:df:ac:78:95:91:b5:73:bc:a9:d8:aa:98:b4: 23:37:e8:2f:e9:3d:3b:be:27:e1:bb:29:61:f8:94:1e:1c:1b: bc:e2:bb:73:bc:e6:0b:c0:b7:b5:58:51:fc:f1:60:d4:f7:d4: c9:10:d9:42:0a:de:3d:57:32:d5:71:2a:b7:54:60:07:2f:8f: fa:1c:4d:45:af:57:4c:db:d1:7a:0b:72:f4:3e:ac:77:e6:c2: 9f:d5:e2:46:a3:22:98:44:66:21:1f:d2:eb:1b:07:d0:d0:ec: f0:06:6e:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUwODIyMjE0MTQ2WhcNMjUwODI5MjE0MTQ2WjAYMRYwFAYD VQQDEw02OGE4ZTQxYi1iNTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKNdxFaF68wh6JM4+oTGmb96GOABx1KT7xD8sZUokEJSauIFi5Ue9Imussh4 ph/K49ncwuy7pQblHbp1AkDBgczlTFAa/J7jC1MRxQ5e1VbfxfSXyQ9EksVHbqil 6TLYt/cwiiee3//LltVySUJmS9qX8mjsMR1obC9TK7q8j/M8gHyJcbtztfOdwSjg M5A5gdjc3Z+udFtbC6/7j1V2+OYdVXAXJtNcz2gB5PQEf8yMXLbKDoqIpmBSw0Qx JzzEJVl6InUP+f5u+5xXMUcm1QoVGYj5gMEHEPbSWqjxCnrL/UXAl93o//Foz2OQ ItoCU9JvC5t9/N+KWpxeHomwwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvlmmUr NW6a0Q5QtAd8t/8ogGACMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXjow0TVEva/qtljbY9KiRt4dXZxzkTIQo840eiS15jJNcSxUqA04P RsP3SMlKTj6Sh8hlmycmGEORNMP3HfqwmcxJ7vbLDS7lZ0ct4oQkPQ7CrNS2+m/0 lKJlfIpVX/FPf31AVo5At8OUY0lu1D8gDjQOua2XIedafTdR3f9VfD6irGrBElms GsW7tBeyA5dYVeLBAN+seJWRtXO8qdiqmLQjN+gv6T07vifhuylh+JQeHBu84rtz vOYLwLe1WFH88WDU99TJENlCCt49VzLVcSq3VGAHL4/6HE1Fr1dM29F6C3L0Pqx3 5sKf1eJGoyKYRGYhH9LrGwfQ0OzwBm48 -----END CERTIFICATE-----Generated at Sun Aug 24 00:43:14 2025 by rpki-client