$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: tR3CUYBsgokrdgLVh+ZMi5ub5aYWs1pykWlQ9Xz5sgE= Subject key identifier: 8A:88:6B:20:C8:B0:18:C1:1E:AC:3B:33:60:24:A7:71:E6:2C:14:5F Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 06A9 Signing time: Fri 22 Aug 2025 22:20:42 +0000 Manifest this update: Fri 22 Aug 2025 22:20:41 +0000 Manifest next update: Fri 29 Aug 2025 22:20:41 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: LxMUFuo/JvmvQBSq0Yde24W7YxHDSnJT59BFvkFYkqA=) 2: F0C772307F7E11F087D1053FC4F9AE02.roa (hash: Lb1m3FTSOQax7zqKZpCDvXrkebnW9I3SAu32mOC96Us=) 3: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 4: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Aug 22 22:20:41 2025 GMT Not After : Aug 29 22:20:41 2025 GMT Subject: CN=68a8ed3a-3d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4e:4e:77:fa:14:9c:df:c5:79:8e:81:f4:47: 57:58:34:0e:36:cd:9b:cc:6d:11:e8:93:b6:11:02: 7a:e9:16:a6:61:24:15:b7:a4:ae:2f:45:34:e0:08: cb:42:62:45:52:cd:60:a9:58:ce:ad:ca:e3:ab:05: c6:7c:92:29:34:2b:73:ef:c9:5e:30:2c:e7:36:9b: 15:02:3a:ca:e4:f1:e8:48:87:e3:84:21:67:d2:6f: b5:e1:4b:7b:a5:b0:34:c1:4f:09:12:3f:12:01:8d: fa:a0:40:04:56:fa:78:85:e2:ed:5b:f1:f1:30:dc: 78:a5:60:a1:da:a1:cc:40:fe:b0:2c:48:3e:c5:8d: 61:94:9f:e4:01:26:2e:38:e2:be:d2:77:6a:78:3e: 2c:69:4f:c4:9a:f2:d5:10:75:2a:3f:8f:73:84:00: 81:f9:72:5f:ed:6f:a9:6e:15:7b:60:03:a3:17:41: 92:1f:b6:b5:92:a2:af:1b:b8:a3:6b:de:84:a8:2b: c4:0b:53:97:fc:30:2c:5f:12:e0:8d:f1:95:8a:46: b1:21:da:21:4c:96:f1:0c:74:bd:f1:e6:e6:f3:79: 45:c1:bf:c8:66:3b:e4:cf:f1:8a:ef:a0:3e:0b:6b: 55:cd:70:14:e7:c0:72:ba:b4:95:98:4d:66:d9:56: 72:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:88:6B:20:C8:B0:18:C1:1E:AC:3B:33:60:24:A7:71:E6:2C:14:5F X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:2f:50:27:94:77:5c:54:7f:38:6d:52:7d:9e:e6:c4:15:96: 1d:e5:eb:4e:37:7f:7e:9f:92:9a:03:4a:a1:36:ad:5a:42:90: a1:3e:a7:9a:c7:4d:57:cc:d1:64:68:b1:ad:6a:2c:b1:54:35: 04:1f:4d:da:5f:13:4a:c2:c8:fe:ce:bc:1a:85:66:f5:3f:5b: 39:b4:fd:40:db:e0:51:f5:84:ea:8d:f9:80:99:64:b4:f4:80: 0d:4f:10:df:d6:9c:aa:d6:9b:36:41:85:74:9d:b4:6a:2c:7b: 0a:8c:ff:09:75:62:66:6d:4d:a4:3d:08:cf:c2:37:e8:0b:20: bb:44:e6:6f:1c:f3:5f:d5:6e:e1:78:a5:54:9d:7d:54:7b:3e: 53:d5:02:cd:8e:31:22:cf:c2:56:56:31:a1:a8:10:c0:8c:e5: db:ea:b3:ed:f1:77:b3:f1:ae:61:5f:11:67:8b:2c:5e:ed:38: c3:da:19:8c:76:13:4f:63:93:95:3e:43:8e:99:b0:32:1b:a4: 71:85:e4:1d:4b:b9:79:c6:69:27:f0:a4:15:ef:b7:22:09:2f: 33:72:a6:eb:e0:8f:cd:15:e4:00:42:5f:de:e9:a0:f7:c5:81: 61:fe:83:a1:70:2e:9c:f9:13:88:e1:ab:6c:00:1e:c6:2e:55: 09:6f:85:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwODIyMjIyMDQxWhcNMjUwODI5MjIyMDQxWjAYMRYwFAYD VQQDEw02OGE4ZWQzYS0zZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU5Od/oUnN/FeY6B9EdXWDQONs2bzG0R6JO2EQJ66RamYSQVt6SuL0U04AjL QmJFUs1gqVjOrcrjqwXGfJIpNCtz78leMCznNpsVAjrK5PHoSIfjhCFn0m+14Ut7 pbA0wU8JEj8SAY36oEAEVvp4heLtW/HxMNx4pWCh2qHMQP6wLEg+xY1hlJ/kASYu OOK+0ndqeD4saU/EmvLVEHUqP49zhACB+XJf7W+pbhV7YAOjF0GSH7a1kqKvG7ij a96EqCvEC1OX/DAsXxLgjfGVikaxIdohTJbxDHS98ebm83lFwb/IZjvkz/GK76A+ C2tVzXAU58ByurSVmE1m2VZyJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqIayDI sBjBHqw7M2Akp3HmLBRfMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaL1AnlHdcVH84bVJ9nubEFZYd5etON39+n5KaA0qhNq1aQpChPqea x01XzNFkaLGtaiyxVDUEH03aXxNKwsj+zrwahWb1P1s5tP1A2+BR9YTqjfmAmWS0 9IANTxDf1pyq1ps2QYV0nbRqLHsKjP8JdWJmbU2kPQjPwjfoCyC7ROZvHPNf1W7h eKVUnX1Uez5T1QLNjjEiz8JWVjGhqBDAjOXb6rPt8Xez8a5hXxFniyxe7TjD2hmM dhNPY5OVPkOOmbAyG6RxheQdS7l5xmkn8KQV77ciCS8zcqbr4I/NFeQAQl/e6aD3 xYFh/oOhcC6c+ROI4atsAB7GLlUJb4Wq -----END CERTIFICATE-----Generated at Sat Aug 23 20:59:17 2025 by rpki-client