$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: Q35MkhFPiSaBoCSoRUqeOaOz8a6Pn4DIRdrVtXzvj5M= Subject key identifier: 99:0C:58:00:81:31:89:42:E0:E7:0A:A0:B4:3B:BE:BA:9C:3E:E0:10 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 62 Signing time: Sat 23 Aug 2025 07:17:14 +0000 Manifest this update: Sat 23 Aug 2025 07:17:14 +0000 Manifest next update: Sat 30 Aug 2025 07:17:14 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: O+Lerwz3yckbiNvJ3QpCwpaekRCOpxjPXqdWM4UFzmE=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Aug 23 07:17:14 2025 GMT Not After : Aug 30 07:17:14 2025 GMT Subject: CN=68a96afa-32ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b3:5f:33:8b:c9:a3:24:89:83:43:d1:cc:ef: 1a:ee:81:f6:56:4b:ca:83:7a:9f:4b:a9:6f:a6:d8: 5b:b2:04:ce:eb:c0:4d:ee:52:39:2c:e7:dd:a6:23: e9:36:e8:95:48:8b:96:d3:a9:24:e6:8f:e4:07:53: f2:14:45:12:60:cf:e8:9c:4d:27:65:5d:bd:5d:36: 53:7d:ad:80:87:b5:9e:20:52:ad:55:de:41:49:bc: 0d:e5:bf:85:96:47:a3:20:fe:da:a9:24:da:06:bd: 03:2e:c8:3c:ab:de:25:ce:9c:ae:c0:61:f5:1c:90: be:de:f6:36:94:76:7a:b4:d4:64:2e:b2:dd:b4:54: 85:f8:45:6b:bf:69:57:13:d4:c1:f7:50:6b:f4:b1: 71:e8:0a:7e:27:c0:c7:1f:1c:56:50:dc:b7:4a:ef: 6e:d9:d5:93:2d:54:4e:48:cc:9b:54:a9:f1:3b:64: b5:c0:d0:02:61:dc:9a:a7:04:67:b4:ad:90:fd:79: 2b:4a:a7:4a:d0:f5:74:55:ff:07:59:7e:b4:d5:b3: 8a:14:f8:26:0e:ce:98:60:9f:7f:da:05:f4:16:77: aa:2a:bf:64:e5:b4:00:94:52:31:01:4a:38:9d:1a: 8b:7c:e2:57:33:20:d3:fa:76:fe:4d:61:fe:73:e3: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0C:58:00:81:31:89:42:E0:E7:0A:A0:B4:3B:BE:BA:9C:3E:E0:10 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f0:7c:35:08:38:74:43:01:1e:d7:2b:60:b4:a7:a2:8d:4f: 51:6b:7c:05:10:45:25:e1:1e:7c:18:3c:33:7d:11:77:67:59: 04:3e:7d:bd:cc:dc:3f:bf:10:e3:88:5a:a6:db:35:29:d4:15: 6f:17:44:fa:de:b2:77:94:a4:d0:a4:6b:69:47:ae:10:39:f0: ff:85:46:5e:e8:d7:a6:67:7f:36:af:db:07:8d:98:e7:ae:a4: 75:63:f4:02:bb:08:85:a1:19:c0:b7:79:8f:f6:bf:8e:e9:ff: 91:4b:a9:a4:8c:d3:c5:1c:b1:d1:bd:b0:b0:26:c7:55:e6:c8: 07:e5:6f:8d:e8:06:e6:cb:aa:ad:6f:2d:0c:91:c7:75:6c:7a: 4e:bf:30:f1:01:4a:21:fb:c5:05:75:ea:d1:a9:7c:a8:b9:61: 20:ea:e3:54:08:23:67:ab:4f:75:ad:68:25:e9:1d:43:f4:b2: dc:42:c4:8c:6f:8a:a9:96:c1:07:7b:93:7f:ba:13:6a:3e:43: bc:c1:8d:94:85:0a:fc:3c:83:27:9b:92:b3:d1:24:d3:96:15: 23:7a:e5:c7:5c:f7:e1:f7:0f:5e:db:be:c6:d4:9e:a0:37:1e: 60:b8:fe:c7:78:d3:83:c2:18:14:e9:4b:b7:9e:74:6a:57:45: 4a:4a:30:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA4MjMwNzE3MTRaFw0yNTA4MzAwNzE3MTRaMBgxFjAUBgNV BAMTDTY4YTk2YWZhLTMyY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYs18zi8mjJImDQ9HM7xrugfZWS8qDep9LqW+m2FuyBM7rwE3uUjks592mI+k2 6JVIi5bTqSTmj+QHU/IURRJgz+icTSdlXb1dNlN9rYCHtZ4gUq1V3kFJvA3lv4WW R6Mg/tqpJNoGvQMuyDyr3iXOnK7AYfUckL7e9jaUdnq01GQust20VIX4RWu/aVcT 1MH3UGv0sXHoCn4nwMcfHFZQ3LdK727Z1ZMtVE5IzJtUqfE7ZLXA0AJh3JqnBGe0 rZD9eStKp0rQ9XRV/wdZfrTVs4oU+CYOzphgn3/aBfQWd6oqv2TltACUUjEBSjid Got84lczINP6dv5NYf5z45WtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmQxYAIEx iULg5wqgtDu+upw+4BAwHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADfwfDUIOHRDAR7XK2C0p6KNT1FrfAUQRSXhHnwYPDN9EXdnWQQ+fb3M 3D+/EOOIWqbbNSnUFW8XRPresneUpNCka2lHrhA58P+FRl7o16Znfzav2weNmOeu pHVj9AK7CIWhGcC3eY/2v47p/5FLqaSM08UcsdG9sLAmx1XmyAflb43oBubLqq1v LQyRx3Vsek6/MPEBSiH7xQV16tGpfKi5YSDq41QII2erT3WtaCXpHUP0stxCxIxv iqmWwQd7k3+6E2o+Q7zBjZSFCvw8gyebkrPRJNOWFSN65cdc9+H3D17bvsbUnqA3 HmC4/sd404PCGBTpS7eedGpXRUpKMIc= -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:19 2025 by rpki-client