$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: rTgDJzN/GCTmI6JM6tOTNzkMEGx4AX1YtI08mKIAi/Q= Subject key identifier: C4:E6:82:2C:DB:28:8E:1D:D4:6C:05:C3:FA:32:34:30:6D:E6:DD:84 Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: FC Signing time: Sat 23 Aug 2025 05:18:59 +0000 Manifest this update: Sat 23 Aug 2025 05:18:59 +0000 Manifest next update: Sat 30 Aug 2025 05:18:59 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: JgEYcF0K9ERhAOawx+l5GgDAcNtqAtKeSVQrmvVDhHo=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: rdcsVeSD/0uRXsupB+gdsyd8ZZ4QY82jQKGKV8TuBBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Aug 23 05:18:59 2025 GMT Not After : Aug 30 05:18:59 2025 GMT Subject: CN=68a94f43-adcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:f8:4a:11:33:b9:20:7e:78:e0:83:7d:07: 06:da:d4:86:8c:e2:e1:09:23:71:f4:7f:e9:c2:62: 83:e9:f1:f2:9c:bd:e3:7b:52:88:52:c1:09:95:d8: f7:49:62:a2:01:83:47:80:34:e9:a5:e4:0d:57:c2: 8b:bb:ca:93:91:91:de:f6:a4:e9:9a:67:16:a7:d9: 76:71:f0:76:19:f5:2d:8e:82:fb:16:08:ee:bb:bb: 37:d8:c0:cc:a7:55:b1:63:0d:51:c3:e3:22:38:51: 24:1d:76:76:f1:a0:dd:44:ff:d5:58:4a:f3:1e:cc: 61:7d:df:3f:9a:4d:b5:1b:18:28:e8:45:36:9b:d4: ac:52:e7:76:ff:18:3d:ce:3e:7a:b6:d3:9f:40:67: db:a2:58:5e:37:20:ea:4f:02:9d:8f:33:54:1c:ec: c0:26:d1:99:16:06:65:2f:dd:86:8b:6e:a7:8b:01: d0:4f:24:a9:ff:2e:40:ec:60:9b:6a:fd:4b:7a:bf: d3:35:29:d0:23:f5:ae:87:b2:c1:fd:e5:e3:08:b8: 13:2c:cb:2d:59:04:a9:ae:e5:85:04:63:15:c4:e3: 60:10:d8:31:80:8d:c5:2d:82:2b:b4:a5:9b:c9:52: cd:2e:1b:19:7e:75:62:38:92:f0:33:d1:33:bc:de: 56:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E6:82:2C:DB:28:8E:1D:D4:6C:05:C3:FA:32:34:30:6D:E6:DD:84 X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0f:16:c8:cf:c6:15:71:79:d6:26:3c:3f:f6:06:0b:36:ee: 3f:9c:a8:72:d5:ed:41:4c:d6:ac:4d:b3:ae:ba:63:5b:a5:b6: 0d:b0:62:d1:c7:fc:b8:0b:f1:8c:d2:e4:c1:98:11:84:28:58: 5b:14:7f:d3:33:2e:aa:75:6e:88:7d:64:3f:aa:0b:ae:05:b6: d6:fd:37:47:96:fc:96:70:4f:b1:21:92:c1:8a:97:2e:a5:36: 57:5d:89:62:b0:80:d2:63:76:ae:8b:f7:00:a2:9e:50:78:a2: b5:a5:af:5d:66:f1:a0:c0:53:2d:2b:b1:2e:c1:86:3e:65:51: 96:de:4f:34:ca:f8:8a:38:fd:18:27:43:a0:74:66:10:e7:23: d4:cc:60:34:31:92:ed:11:11:d8:e9:10:11:ce:4c:bf:17:4e: 01:c4:16:64:ab:4a:cf:d3:e8:4f:6a:08:53:6f:30:0d:64:88: 93:cb:70:f2:7a:cf:0e:e0:4e:80:a0:d3:a3:11:c5:83:d4:4a: 1a:d5:bd:11:05:01:ab:6e:0b:a9:51:0b:71:ce:7d:cd:d5:ae: ac:01:d0:74:4a:d3:fe:d9:23:f7:40:51:4a:4e:cd:8a:ab:9d: 9d:ac:7d:d8:4d:68:b5:a1:78:f9:bf:75:fe:d6:61:0b:fd:2c: 38:57:b9:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjUwODIzMDUxODU5WhcNMjUwODMwMDUxODU5WjAYMRYwFAYD VQQDEw02OGE5NGY0My1hZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu/4ShEzuSB+eOCDfQcG2tSGjOLhCSNx9H/pwmKD6fHynL3je1KIUsEJldj3 SWKiAYNHgDTppeQNV8KLu8qTkZHe9qTpmmcWp9l2cfB2GfUtjoL7Fgjuu7s32MDM p1WxYw1Rw+MiOFEkHXZ28aDdRP/VWErzHsxhfd8/mk21Gxgo6EU2m9SsUud2/xg9 zj56ttOfQGfbolheNyDqTwKdjzNUHOzAJtGZFgZlL92Gi26niwHQTySp/y5A7GCb av1Ler/TNSnQI/Wuh7LB/eXjCLgTLMstWQSpruWFBGMVxONgENgxgI3FLYIrtKWb yVLNLhsZfnViOJLwM9EzvN5WrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTmgizb KI4d1GwFw/oyNDBt5t2EMB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNDxbIz8YVcXnWJjw/9gYLNu4/nKhy1e1BTNasTbOuumNbpbYNsGLR x/y4C/GM0uTBmBGEKFhbFH/TMy6qdW6IfWQ/qguuBbbW/TdHlvyWcE+xIZLBipcu pTZXXYlisIDSY3aui/cAop5QeKK1pa9dZvGgwFMtK7EuwYY+ZVGW3k80yviKOP0Y J0OgdGYQ5yPUzGA0MZLtERHY6RARzky/F04BxBZkq0rP0+hPaghTbzANZIiTy3Dy es8O4E6AoNOjEcWD1Eoa1b0RBQGrbgupUQtxzn3N1a6sAdB0StP+2SP3QFFKTs2K q52drH3YTWi1oXj5v3X+1mEL/Sw4V7kj -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:24 2025 by rpki-client