$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: qBJSLGbbmhMlU0b8PyXOio3M+JwriJvdLlnlyBLaaRQ= Subject key identifier: DA:51:BE:49:FE:EC:CD:1B:0F:66:BA:89:E1:42:FA:2F:BF:B6:63:FB Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0F8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F51 Signing time: Fri 22 Aug 2025 17:44:37 +0000 Manifest this update: Fri 22 Aug 2025 17:44:36 +0000 Manifest next update: Fri 29 Aug 2025 17:44:36 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: ApVOgiVrkiu+PjkYrO6foIRAlnbJ4gHUvh9Y9PH1/Y8=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3980 (0xf8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Aug 22 17:44:36 2025 GMT Not After : Aug 29 17:44:36 2025 GMT Subject: CN=68a8ac84-a362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:15:84:36:d9:c9:4a:5c:30:36:4a:98:87:c2: 1d:25:01:6d:03:ed:7c:fc:26:d7:35:ad:c5:f5:45: fc:bb:ec:4f:e1:2d:ff:f5:4e:6b:d3:b6:07:0b:20: 43:64:cb:96:52:89:e1:42:11:17:47:79:5b:ab:ad: fd:7e:a6:3a:9d:17:07:89:31:a0:8a:ac:f8:08:e8: d1:d5:c3:c4:f0:7c:03:81:69:13:e1:9b:e5:80:22: db:e6:d8:4f:b6:2f:ac:c2:a1:8f:82:90:e7:fe:5c: f6:80:16:6a:45:28:1c:ed:64:3f:dc:70:a6:cd:18: 84:d9:8c:3a:e4:0c:3e:28:c8:b3:b3:09:b1:a2:87: 08:37:2e:3f:d1:9d:10:db:62:bf:7a:47:78:45:5b: a6:ac:12:85:e9:28:93:38:1b:00:c5:d3:c8:0a:b6: 65:04:81:18:b8:37:c1:de:02:66:c4:83:fc:2f:35: 74:58:d9:41:b7:e6:6f:11:dc:c1:75:6a:fb:8e:d4: db:ca:13:c8:1d:d4:99:fa:d6:f8:7b:c6:60:bf:94: 67:bd:d2:95:ed:50:10:2d:c7:7b:a4:4d:60:0a:85: 64:ea:bd:82:6c:0d:97:2d:b0:5f:3f:12:3e:59:6c: 50:35:ca:f5:62:9e:fd:fe:07:9a:41:b3:d6:27:ba: 7d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:51:BE:49:FE:EC:CD:1B:0F:66:BA:89:E1:42:FA:2F:BF:B6:63:FB X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:85:75:f4:c9:a8:86:83:72:77:a5:42:3e:22:63:d7:e0:03: 0f:d6:b2:62:1b:61:ed:98:64:d2:2f:9d:d9:04:33:d2:e9:04: 02:79:e5:13:45:40:27:92:16:ae:29:ea:37:c7:57:88:58:36: 92:c7:07:fd:59:4e:aa:ed:82:5b:81:95:19:a3:c9:6b:fb:0e: 9c:26:f9:9b:74:62:a6:15:6e:b5:28:ad:ff:3d:a4:f0:21:89: 7b:74:dd:a7:61:cf:13:67:0b:8c:44:ae:17:49:75:17:76:2e: d6:b9:28:df:03:46:a4:0e:55:3d:d7:eb:e8:3a:00:2d:8d:41: d8:99:d8:f0:51:aa:7b:8c:77:12:f8:d9:19:1d:f7:ff:ba:e8: af:9a:5c:66:ca:9e:85:3e:97:e1:d3:8e:52:0a:a4:7b:22:e1: 30:5e:d9:56:be:63:69:0b:9f:99:61:da:f9:7d:b8:61:fd:62: 4c:b0:b3:19:2b:5f:8f:78:a7:ca:86:10:3d:44:bd:d4:da:78: 4c:ad:39:8d:47:99:3d:1b:4e:b6:5b:a1:d2:91:e7:1a:25:33: bb:2f:fe:a9:b1:81:71:51:f8:bb:a8:39:0d:38:43:02:6c:3d: fc:2d:12:50:76:d3:8c:5e:21:20:e6:34:51:73:c5:b9:ca:78: f6:f1:76:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUwODIyMTc0NDM2WhcNMjUwODI5MTc0NDM2WjAYMRYwFAYD VQQDEw02OGE4YWM4NC1hMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxWENtnJSlwwNkqYh8IdJQFtA+18/CbXNa3F9UX8u+xP4S3/9U5r07YHCyBD ZMuWUonhQhEXR3lbq639fqY6nRcHiTGgiqz4COjR1cPE8HwDgWkT4ZvlgCLb5thP ti+swqGPgpDn/lz2gBZqRSgc7WQ/3HCmzRiE2Yw65Aw+KMizswmxoocINy4/0Z0Q 22K/ekd4RVumrBKF6SiTOBsAxdPICrZlBIEYuDfB3gJmxIP8LzV0WNlBt+ZvEdzB dWr7jtTbyhPIHdSZ+tb4e8Zgv5RnvdKV7VAQLcd7pE1gCoVk6r2CbA2XLbBfPxI+ WWxQNcr1Yp79/geaQbPWJ7p95wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpRvkn+ 7M0bD2a6ieFC+i+/tmP7MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAhXX0yaiGg3J3pUI+ImPX4AMP1rJiG2HtmGTSL53ZBDPS6QQCeeUT RUAnkhauKeo3x1eIWDaSxwf9WU6q7YJbgZUZo8lr+w6cJvmbdGKmFW61KK3/PaTw IYl7dN2nYc8TZwuMRK4XSXUXdi7WuSjfA0akDlU91+voOgAtjUHYmdjwUap7jHcS +NkZHff/uuivmlxmyp6FPpfh045SCqR7IuEwXtlWvmNpC5+ZYdr5fbhh/WJMsLMZ K1+PeKfKhhA9RL3U2nhMrTmNR5k9G062W6HSkecaJTO7L/6psYFxUfi7qDkNOEMC bD38LRJQdtOMXiEg5jRRc8W5ynj28XZo -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:02 2025 by rpki-client