$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: OK4HQ2MyN8WEnkvt79gFb9hZ8LDrdQbBJ2gO9YtigBk= Subject key identifier: 9F:5B:CB:F7:87:B0:F6:02:27:6E:DD:29:D7:13:BA:C1:15:96:2F:25 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0123 Signing time: Sat 23 Aug 2025 04:51:28 +0000 Manifest this update: Sat 23 Aug 2025 04:51:27 +0000 Manifest next update: Sat 30 Aug 2025 04:51:27 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: vuk2A94aHV3lEMlxffC3NF36v/fLX5Kp6mvUdj+NOXk=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Aug 23 04:51:27 2025 GMT Not After : Aug 30 04:51:27 2025 GMT Subject: CN=68a948cf-b6bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3a:03:79:84:84:db:49:ff:16:c6:e8:af:8b: 4c:48:04:a7:09:e8:52:c7:6a:40:8c:7d:7e:3f:f5: ee:2b:a2:21:08:4a:e0:21:3a:a7:da:b9:73:70:68: 3b:23:6e:c6:4e:aa:0d:2f:6e:e9:f6:e0:30:83:5c: 25:43:93:47:38:7a:9d:2d:3d:04:9d:03:10:6d:ad: 5e:1c:4f:95:81:d0:5e:e3:ba:a9:e9:7b:d1:eb:bc: 1b:62:44:5e:e6:68:bf:f7:92:90:9b:8d:c4:99:36: fd:cf:c1:fa:ef:c4:11:cb:8d:06:b6:aa:3b:4f:39: 5e:ca:73:9e:32:ae:f7:d3:f0:aa:dc:f4:e6:93:79: c0:bf:6a:21:30:e4:35:6d:b9:62:bd:69:27:49:64: a3:df:ff:a9:c7:13:92:ca:88:78:7e:68:22:76:da: fd:f2:6c:20:58:ff:df:5e:97:38:86:e2:8c:d9:65: 75:b5:b0:fa:1b:e9:9d:c4:77:1d:4b:c7:7b:49:a8: bc:ab:50:99:88:69:56:56:60:e9:a1:d9:a8:b6:51: 08:01:e4:1e:d3:b8:18:72:43:0a:55:c6:44:83:5d: d5:4f:c8:9d:2d:39:40:da:9d:b5:0d:c5:05:2c:2b: 06:17:7f:7d:4f:7f:89:98:4b:1a:04:06:52:94:dd: 93:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:5B:CB:F7:87:B0:F6:02:27:6E:DD:29:D7:13:BA:C1:15:96:2F:25 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:cb:a1:6c:59:69:2e:62:aa:57:cf:3f:73:f7:67:58:35:5a: 39:b9:ec:b2:e3:ff:0e:bb:75:17:c4:23:33:73:8f:64:ed:dd: 74:69:fe:59:f0:22:e2:97:53:36:b1:36:d4:d7:db:cd:d2:69: e9:09:1d:30:b3:f2:08:2c:55:f6:f4:88:83:2e:7a:f2:61:32: 9a:10:8a:45:c3:25:a6:71:74:2e:00:9a:56:c7:43:0c:ad:d0: 54:8f:dc:bd:d6:be:27:cd:9d:21:f9:fb:2e:a9:42:90:17:08: 37:eb:c2:ca:02:e5:e3:b2:77:8a:9e:77:ac:ad:b1:d6:06:f8: ae:9f:c2:03:ad:fa:2e:fd:02:8e:4e:cd:48:32:8a:76:40:c1: a5:c5:41:30:f8:d2:69:82:35:4b:1f:2b:b3:1b:0c:51:d3:c2: 10:16:70:c4:c5:50:3d:09:52:2f:e5:82:9d:cc:0f:f3:da:e0: 18:48:6d:b2:e9:12:1a:df:f1:30:0b:9d:d8:d7:f2:d2:7d:dc: c3:1a:08:e2:b5:e3:65:aa:e3:b7:85:a3:0e:c3:a6:e7:27:97: aa:f6:48:84:e0:1b:b6:f6:91:83:c3:c7:13:92:70:f4:2d:88: 8f:d9:b3:c2:00:d2:10:4e:5b:2d:8d:75:d8:cb:85:fa:3a:4d: 83:81:8a:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUwODIzMDQ1MTI3WhcNMjUwODMwMDQ1MTI3WjAYMRYwFAYD VQQDEw02OGE5NDhjZi1iNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjoDeYSE20n/Fsbor4tMSASnCehSx2pAjH1+P/XuK6IhCErgITqn2rlzcGg7 I27GTqoNL27p9uAwg1wlQ5NHOHqdLT0EnQMQba1eHE+VgdBe47qp6XvR67wbYkRe 5mi/95KQm43EmTb9z8H678QRy40Gtqo7TzleynOeMq730/Cq3PTmk3nAv2ohMOQ1 bblivWknSWSj3/+pxxOSyoh4fmgidtr98mwgWP/fXpc4huKM2WV1tbD6G+mdxHcd S8d7Sai8q1CZiGlWVmDpodmotlEIAeQe07gYckMKVcZEg13VT8idLTlA2p21DcUF LCsGF399T3+JmEsaBAZSlN2TaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9by/eH sPYCJ27dKdcTusEVli8lMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBry6FsWWkuYqpXzz9z92dYNVo5ueyy4/8Ou3UXxCMzc49k7d10af5Z 8CLil1M2sTbU19vN0mnpCR0ws/IILFX29IiDLnryYTKaEIpFwyWmcXQuAJpWx0MM rdBUj9y91r4nzZ0h+fsuqUKQFwg368LKAuXjsneKnnesrbHWBviun8IDrfou/QKO Ts1IMop2QMGlxUEw+NJpgjVLHyuzGwxR08IQFnDExVA9CVIv5YKdzA/z2uAYSG2y 6RIa3/EwC53Y1/LSfdzDGgjiteNlquO3haMOw6bnJ5eq9kiE4Bu29pGDw8cTknD0 LYiP2bPCANIQTlstjXXYy4X6Ok2DgYrc -----END CERTIFICATE-----Generated at Sat Aug 23 17:43:24 2025 by rpki-client