$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: M9mmY3YZOIaEho5MDeWxA7NBjEk0Ebm2i0yKXhzh/b8= Subject key identifier: 1E:D3:DD:78:DD:7F:DF:51:99:2F:7C:9B:2E:26:CA:9B:E1:99:75:16 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: 8D Signing time: Sat 23 Aug 2025 06:48:02 +0000 Manifest this update: Sat 23 Aug 2025 06:48:01 +0000 Manifest next update: Sat 30 Aug 2025 06:48:01 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: 79959p2U750tEsPBRzWyR/qwnJlZrf4sgLaoCyO6T8E=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Aug 23 06:48:01 2025 GMT Not After : Aug 30 06:48:01 2025 GMT Subject: CN=68a96421-9f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fa:4a:27:6b:b7:8f:de:d0:90:a5:4f:86:cd: 32:48:ee:c7:0c:be:c1:31:22:1a:98:bd:ac:f9:2c: 1e:e1:a7:a0:ac:28:76:66:2a:42:51:35:ca:eb:59: ac:61:80:e7:9d:c7:a9:89:55:b8:dd:84:ac:ea:8d: 13:17:8d:8a:49:a7:1c:b9:a0:b2:89:c0:06:ca:8f: 8e:ca:26:66:bd:c7:c5:42:69:c9:ac:db:a6:a7:f2: 6a:9d:24:1d:ae:3c:c6:d0:f5:99:9d:01:9e:97:83: c7:5c:9c:0b:53:d7:0a:3c:6b:b1:7d:8f:9d:b2:ef: 41:4f:90:2a:9d:d8:0d:6a:6a:51:31:80:0f:48:f7: 7e:86:29:af:8d:10:c2:13:fe:82:cc:f1:14:79:d4: 9c:74:04:c0:df:a0:84:56:61:da:79:7d:79:00:c9: e1:1e:11:c5:4f:cd:04:75:2f:5b:c1:0a:62:fa:ab: 64:02:0b:0f:ac:c0:bb:ac:a9:5a:1a:47:33:22:6a: db:ed:19:2c:bc:b9:5b:3b:b7:46:d6:94:53:69:6f: a3:7c:7d:7f:0b:cd:03:b6:14:8b:a0:fa:a2:f2:a5: 26:9d:60:76:96:bb:0f:41:aa:05:77:c1:74:59:00: b5:49:cf:a7:d3:95:c5:34:9f:fc:82:71:3c:32:27: cb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D3:DD:78:DD:7F:DF:51:99:2F:7C:9B:2E:26:CA:9B:E1:99:75:16 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:98:fa:22:3a:9d:c2:38:8e:ef:9c:9a:36:d2:cc:e2:b4:34: c4:d5:78:97:e3:4d:27:03:79:28:45:d2:42:ff:f0:44:46:10: ef:d8:49:23:57:41:c9:1c:cc:b5:bb:4e:51:07:5e:2b:0c:95: 87:06:ba:68:36:9f:51:d7:76:72:f5:13:fe:7f:09:41:9a:c6: 44:78:0b:f0:c6:0b:aa:4c:cd:dd:9d:f9:3d:0f:a8:21:ca:f6: 95:4f:34:76:01:fd:a8:e6:84:28:d6:c3:a3:33:3c:16:88:52: bb:67:d5:b8:be:7d:33:7c:d4:0e:1e:7e:67:ba:a5:82:45:6b: 3e:b2:bb:8e:1c:c6:bd:62:07:28:71:91:e9:c0:b8:a0:4c:f1: 69:9c:d7:9b:15:8a:03:8d:94:7c:6e:3e:e7:14:f2:67:81:59: 40:e4:c2:d8:20:d4:13:7f:a9:3f:35:82:17:ee:1f:3e:64:b2: f0:c5:f3:6a:df:a7:f8:45:8d:01:c7:05:20:a7:b2:98:24:62: 57:b3:5f:cd:04:f1:88:6a:f4:8a:84:d5:2a:ab:c1:bf:24:f8: 3a:34:00:ec:09:2f:b2:d8:c8:68:30:56:21:9a:85:f5:80:f8: 8c:c0:a8:1d:e3:45:92:de:00:35:c3:e7:29:07:6a:96:29:ce: 50:e0:e9:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUwODIzMDY0ODAxWhcNMjUwODMwMDY0ODAxWjAYMRYwFAYD VQQDEw02OGE5NjQyMS05ZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/pKJ2u3j97QkKVPhs0ySO7HDL7BMSIamL2s+Swe4aegrCh2ZipCUTXK61ms YYDnncepiVW43YSs6o0TF42KSaccuaCyicAGyo+OyiZmvcfFQmnJrNump/JqnSQd rjzG0PWZnQGel4PHXJwLU9cKPGuxfY+dsu9BT5AqndgNampRMYAPSPd+himvjRDC E/6CzPEUedScdATA36CEVmHaeX15AMnhHhHFT80EdS9bwQpi+qtkAgsPrMC7rKla GkczImrb7RksvLlbO7dG1pRTaW+jfH1/C80DthSLoPqi8qUmnWB2lrsPQaoFd8F0 WQC1Sc+n05XFNJ/8gnE8MifLaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7T3Xjd f99RmS98my4mypvhmXUWMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMmPoiOp3COI7vnJo20szitDTE1XiX400nA3koRdJC//BERhDv2Ekj V0HJHMy1u05RB14rDJWHBrpoNp9R13Zy9RP+fwlBmsZEeAvwxguqTM3dnfk9D6gh yvaVTzR2Af2o5oQo1sOjMzwWiFK7Z9W4vn0zfNQOHn5nuqWCRWs+sruOHMa9Ygco cZHpwLigTPFpnNebFYoDjZR8bj7nFPJngVlA5MLYINQTf6k/NYIX7h8+ZLLwxfNq 36f4RY0BxwUgp7KYJGJXs1/NBPGIavSKhNUqq8G/JPg6NADsCS+y2MhoMFYhmoX1 gPiMwKgd40WS3gA1w+cpB2qWKc5Q4OnS -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:17 2025 by rpki-client