$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: 2G+rUsNre+QgXDf5ZZEYpcnnGHaOy4MvdLi0UPL3ULU= Subject key identifier: C8:D9:AE:B0:4C:C9:20:96:71:22:4E:8C:7D:9C:0E:35:D7:D3:93:50 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: C4 Signing time: Sat 23 Aug 2025 05:59:14 +0000 Manifest this update: Sat 23 Aug 2025 05:59:13 +0000 Manifest next update: Sat 30 Aug 2025 05:59:13 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: QQerxKUbpdUYxJB3kTy4sVrmmf3nwlgP0KQPwZ+sbvU=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Aug 23 05:59:13 2025 GMT Not After : Aug 30 05:59:13 2025 GMT Subject: CN=68a958b2-374d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ea:76:18:34:0d:e1:a8:10:e3:ef:c3:bf:53: 9d:61:5b:54:17:eb:25:d8:c4:c3:f6:c7:50:bd:1d: 72:c7:5c:de:ef:df:26:dc:0a:d8:b3:72:c2:8a:d5: 22:38:5f:32:c9:e0:88:f7:57:b8:29:8f:6f:74:02: 8c:c2:91:0e:f7:88:54:0e:7d:eb:bc:aa:d3:d2:79: b1:da:24:47:32:11:33:b4:25:04:20:d1:42:74:04: f3:bd:96:25:41:03:5f:63:cc:86:e8:81:2b:3f:a4: ef:41:85:80:8c:65:b3:9e:04:9d:5f:97:89:a4:a7: 04:fc:40:4e:7f:41:ab:2c:1c:1f:67:5f:a9:13:70: 32:db:30:af:fe:4f:85:8d:3e:ab:10:1f:6a:7b:37: 47:5a:6e:7e:02:db:c1:ab:93:bc:44:5d:17:fd:f7: 0a:fe:b9:17:77:42:1b:8b:c9:e8:87:89:e7:fc:48: fa:9b:df:39:67:0d:7a:de:d2:39:9f:90:f4:74:6c: d0:dc:a4:bc:af:fd:a8:4b:a8:c8:d8:24:2c:79:24: 9d:c2:ff:cf:c7:09:ae:2f:9d:1d:68:6f:20:b8:1d: d0:24:7d:e9:b9:57:9d:fc:a3:a4:fe:e7:f4:d2:f4: 70:d7:da:e2:00:68:ab:00:58:64:1e:6f:4f:a5:5c: 48:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D9:AE:B0:4C:C9:20:96:71:22:4E:8C:7D:9C:0E:35:D7:D3:93:50 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:02:ce:19:fa:42:bc:1e:8c:cc:9e:d3:87:53:8b:8f:20:98: 6e:fc:fe:a0:1d:0b:e6:88:50:a3:1d:37:d1:03:a3:94:ad:7b: 28:b2:e3:67:ed:e0:09:8c:c5:1d:41:73:35:0d:54:5e:53:2c: cc:8a:58:6e:18:18:be:df:bf:17:bd:2f:fa:0d:a4:fe:e7:e3: 92:1c:fc:2e:72:14:13:aa:a8:bb:1d:c4:15:7c:21:f0:87:49: 48:03:a3:24:97:ce:b3:1e:15:71:f4:51:da:a5:56:5b:a6:e6: 80:d2:07:b6:91:9a:57:66:be:d6:bc:1d:fc:8b:cc:11:7b:83: f0:83:c0:e0:34:a5:71:2a:51:3f:e1:31:1b:e2:f8:74:a6:b6: c6:9c:db:cb:41:4c:6f:69:51:af:35:99:5d:3c:b2:d9:60:62: 06:77:dc:58:05:c2:6a:b5:f0:9b:0a:b7:16:64:b6:22:8a:86: a6:60:cc:30:35:8c:f8:04:da:ff:f5:0d:4d:58:d6:6c:86:b2: ed:4e:a8:39:e0:5a:25:cf:31:9c:a0:ec:a5:62:27:66:8e:78: 10:1f:6b:16:bf:5e:85:ba:ff:4a:5c:bb:11:62:01:0e:a9:e1: 6f:bb:c9:dc:5e:3a:5b:3a:87:20:54:32:ed:26:f3:6a:9f:fd: a8:ae:30:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwODIzMDU1OTEzWhcNMjUwODMwMDU1OTEzWjAYMRYwFAYD VQQDEw02OGE5NThiMi0zNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+p2GDQN4agQ4+/Dv1OdYVtUF+sl2MTD9sdQvR1yx1ze798m3ArYs3LCitUi OF8yyeCI91e4KY9vdAKMwpEO94hUDn3rvKrT0nmx2iRHMhEztCUEINFCdATzvZYl QQNfY8yG6IErP6TvQYWAjGWzngSdX5eJpKcE/EBOf0GrLBwfZ1+pE3Ay2zCv/k+F jT6rEB9qezdHWm5+AtvBq5O8RF0X/fcK/rkXd0Ibi8noh4nn/Ej6m985Zw163tI5 n5D0dGzQ3KS8r/2oS6jI2CQseSSdwv/PxwmuL50daG8guB3QJH3puVed/KOk/uf0 0vRw19riAGirAFhkHm9PpVxIDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjZrrBM ySCWcSJOjH2cDjXX05NQMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKAs4Z+kK8HozMntOHU4uPIJhu/P6gHQvmiFCjHTfRA6OUrXsosuNn 7eAJjMUdQXM1DVReUyzMilhuGBi+378XvS/6DaT+5+OSHPwuchQTqqi7HcQVfCHw h0lIA6Mkl86zHhVx9FHapVZbpuaA0ge2kZpXZr7WvB38i8wRe4Pwg8DgNKVxKlE/ 4TEb4vh0prbGnNvLQUxvaVGvNZldPLLZYGIGd9xYBcJqtfCbCrcWZLYiioamYMww NYz4BNr/9Q1NWNZshrLtTqg54FolzzGcoOylYidmjngQH2sWv16Fuv9KXLsRYgEO qeFvu8ncXjpbOocgVDLtJvNqn/2orjBa -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:38 2025 by rpki-client