$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: zbi6K/JEXQwtD0m1ZiNRMi/vwvpuH49A6+Am1Ff1hts= Subject key identifier: 6A:99:E1:08:BE:7A:FC:B9:F1:48:CF:3E:E1:08:3B:6D:34:2C:AF:0D Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C6F Signing time: Fri 22 Aug 2025 18:30:55 +0000 Manifest this update: Fri 22 Aug 2025 18:30:54 +0000 Manifest next update: Fri 29 Aug 2025 18:30:54 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: pl2Y9qK/qOpa/oEMW83QaHzxzBFyQwGE9JIrXNEneMY=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Aug 22 18:30:54 2025 GMT Not After : Aug 29 18:30:54 2025 GMT Subject: CN=68a8b75e-9a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:7e:49:5a:75:de:5f:be:9c:9d:23:ef:53: b8:3f:80:d6:5a:7c:23:69:6f:49:63:06:f3:3d:c2: be:ec:a9:7b:af:9b:07:ec:2d:19:04:a1:f3:7b:bc: 1a:87:ac:c5:e6:51:61:62:8f:15:88:ff:6a:90:6c: b3:ed:66:34:a6:db:6e:c2:bb:18:02:8f:66:a3:ae: 55:04:fa:3f:0d:36:b0:44:81:c2:36:87:ff:32:6d: 31:69:ce:8a:c6:6c:46:38:77:7a:61:a1:a3:29:31: 9a:6f:9b:48:fe:0f:42:5d:55:99:f2:e3:fa:47:cd: f1:74:5a:53:2c:c6:93:8c:94:a3:aa:6c:fe:4a:99: c3:9e:f4:f5:33:3e:a3:cf:e6:a0:a5:f0:a6:7f:b8: 24:e7:32:18:09:2b:4b:9f:0e:07:96:29:3e:e1:7b: b5:95:ff:b6:63:9b:00:96:d8:7a:1f:05:3b:3a:e8: bc:ec:59:47:f4:15:ac:f1:93:7c:b4:c1:3c:40:a1: 81:56:58:24:8b:ac:2e:64:b7:2b:ec:d1:03:8c:e6: 43:05:d6:7a:2b:b8:f7:16:ff:bd:66:a5:83:6d:ed: f8:ee:0b:85:c5:64:39:e3:a9:04:f3:96:3f:42:01: 19:9c:1c:b2:de:8e:5c:bc:6f:db:cc:1d:23:d4:61: 5e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:99:E1:08:BE:7A:FC:B9:F1:48:CF:3E:E1:08:3B:6D:34:2C:AF:0D X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b2:ec:d6:d3:ef:6f:4b:08:99:70:f9:9f:bb:ff:c2:f3:41: 7c:9b:e9:e2:9a:74:80:68:2f:d7:44:5d:49:62:f2:f9:e5:60: c9:d8:8a:31:61:0d:e8:7e:8f:08:80:69:38:69:19:1e:8f:ab: 4e:a8:91:17:a7:6a:56:fa:4b:ff:59:ef:21:b7:b3:f0:d3:3e: 73:c4:cb:fc:32:55:de:b6:96:62:88:08:3d:1a:84:a8:12:f2: ce:1c:17:ca:76:e8:4c:05:68:12:bf:95:68:27:54:c9:88:38: bf:27:78:a5:b2:ac:7d:bd:51:92:d0:cd:8c:5d:f6:fc:11:4e: e3:48:0c:43:6b:0f:f0:b3:fa:00:f9:bc:5a:e5:72:cf:62:69: 2a:57:f4:4b:bc:72:21:0c:bd:10:ec:8c:40:69:6c:7e:e6:57: df:28:17:c0:b5:6e:53:59:33:a8:cc:21:e5:4c:32:4b:7e:0a: da:45:99:47:ef:cf:10:d2:cb:c5:d1:73:64:30:c6:0a:fb:73: 71:e8:6a:eb:76:08:ff:98:27:75:d3:32:15:b0:10:3a:44:ec: c3:b5:27:8c:ed:75:71:b2:84:0a:92:b7:3e:c7:ec:56:d4:be: 90:5b:6e:e3:75:54:59:0f:c5:a8:5c:7a:24:2b:15:ba:64:11: ff:a9:38:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwODIyMTgzMDU0WhcNMjUwODI5MTgzMDU0WjAYMRYwFAYD VQQDEw02OGE4Yjc1ZS05YTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T5+SVp13l++nJ0j71O4P4DWWnwjaW9JYwbzPcK+7Kl7r5sH7C0ZBKHze7wa h6zF5lFhYo8ViP9qkGyz7WY0pttuwrsYAo9mo65VBPo/DTawRIHCNof/Mm0xac6K xmxGOHd6YaGjKTGab5tI/g9CXVWZ8uP6R83xdFpTLMaTjJSjqmz+SpnDnvT1Mz6j z+agpfCmf7gk5zIYCStLnw4Hlik+4Xu1lf+2Y5sAlth6HwU7Oui87FlH9BWs8ZN8 tME8QKGBVlgki6wuZLcr7NEDjOZDBdZ6K7j3Fv+9ZqWDbe347guFxWQ546kE85Y/ QgEZnByy3o5cvG/bzB0j1GFeyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqZ4Qi+ evy58UjPPuEIO200LK8NMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlsuzW0+9vSwiZcPmfu//C80F8m+nimnSAaC/XRF1JYvL55WDJ2Iox YQ3ofo8IgGk4aRkej6tOqJEXp2pW+kv/We8ht7Pw0z5zxMv8MlXetpZiiAg9GoSo EvLOHBfKduhMBWgSv5VoJ1TJiDi/J3ilsqx9vVGS0M2MXfb8EU7jSAxDaw/ws/oA +bxa5XLPYmkqV/RLvHIhDL0Q7IxAaWx+5lffKBfAtW5TWTOozCHlTDJLfgraRZlH 788Q0svF0XNkMMYK+3Nx6Grrdgj/mCd10zIVsBA6ROzDtSeM7XVxsoQKkrc+x+xW 1L6QW27jdVRZD8WoXHokKxW6ZBH/qTiH -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:44 2025 by rpki-client