$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft File: iP8qX1-BdhNDU35LVLXmoW8gfqk.mft (raw, json) Hash identifier: 7hI3rUqSDHy0ToOWExyezMFx/HvcpKkdETYg3crNo8k= Subject key identifier: CE:36:E7:BD:81:EA:C3:D5:92:24:92:81:01:B5:10:9C:97:F3:B7:8D Authority key identifier: 88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 Certificate issuer: /CN=A91CF1E7/serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft Manifest number: 0171 Signing time: Sat 23 Aug 2025 03:54:22 +0000 Manifest this update: Sat 23 Aug 2025 03:54:21 +0000 Manifest next update: Sat 30 Aug 2025 03:54:21 +0000 Files and hashes: 1: iP8qX1-BdhNDU35LVLXmoW8gfqk.crl (hash: LtZqr3gz3ZL1s0jTeycOo97Tx1CEBMS4BH1gEvE12kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF1E7, serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Validity Not Before: Aug 23 03:54:21 2025 GMT Not After : Aug 30 03:54:21 2025 GMT Subject: CN=68a93b6d-0918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:1a:d0:2c:83:40:e3:9c:66:83:5b:a6:d6:d9: 89:6b:fb:26:2e:f8:5a:50:69:bc:b1:f9:af:e0:2f: ba:f7:d8:76:b8:d6:f8:2a:c9:a6:84:10:2a:a2:43: 25:e5:34:93:13:8b:bd:91:d7:7d:0e:78:2b:f5:04: 94:45:f6:0c:d3:e3:1d:56:77:18:7b:ac:f1:aa:55: 7b:da:21:6d:3e:73:d3:4a:25:9f:02:a9:76:0a:5b: 8d:1e:5b:1b:38:6e:cc:0d:92:e2:50:be:00:07:35: 70:0a:84:30:28:5b:b8:46:33:2f:ba:ef:f5:ac:06: 73:6b:33:ea:e1:40:04:00:39:8b:97:1b:8b:ca:54: d6:9f:c1:9d:bf:1d:45:0b:6c:ef:c5:cb:b5:9e:22: 72:32:26:82:fd:2a:59:a0:c2:d7:65:d3:cd:d7:0e: 2f:7a:65:cb:02:2e:b0:24:0b:4d:45:05:3b:44:00: 6d:4c:55:df:c8:af:43:0c:7a:d7:6f:77:7e:ab:49: af:39:3e:e0:f1:bb:d9:3a:2d:57:9d:3a:9e:99:3f: dd:2b:a3:76:99:02:81:e7:15:f5:68:10:17:25:85: 63:fa:7d:34:a9:da:c9:8c:fc:45:0e:58:20:b6:c7: c5:5f:ca:8c:b1:91:6b:45:cc:8a:41:9a:24:9e:fe: 58:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:36:E7:BD:81:EA:C3:D5:92:24:92:81:01:B5:10:9C:97:F3:B7:8D X509v3 Authority Key Identifier: keyid:88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c7:c7:84:10:01:f0:98:b5:aa:11:0a:c8:e7:62:da:3e:99: 04:a2:b9:f6:c5:c4:c7:84:c6:7e:05:cc:58:b7:08:1f:4b:f3: bc:f7:f9:32:5d:d7:b4:1a:1d:8d:af:8f:8c:68:6f:13:04:65: be:c6:6d:0f:03:d1:be:b8:05:94:48:4d:83:60:16:d6:08:15: 22:0d:32:b2:77:a7:a9:a0:38:da:72:36:ed:1f:29:48:18:4d: 3d:34:44:71:23:bb:e5:3b:6c:8e:5d:71:9f:47:3b:f8:55:85: 42:35:9a:05:83:b8:cf:30:54:6c:7e:c8:ab:9b:9f:3b:4e:42: f2:b2:82:20:03:e0:09:83:0f:1b:d2:9c:a3:23:8c:75:c8:62: 40:d3:e2:3f:d5:64:e8:e1:41:62:fb:e3:b1:d1:55:df:fa:54: 25:6a:53:6c:c8:86:66:bc:fc:49:f4:92:55:80:60:76:9b:75: 95:aa:f6:ed:bc:e9:0a:82:3c:56:3c:cb:f8:32:bd:dd:f7:6b: 30:cc:6f:12:65:50:05:ea:5b:97:c5:88:52:d1:81:59:07:23: 23:0f:de:29:f1:8b:2b:d1:83:09:a0:85:83:a4:92:42:10:e3: 14:ed:e2:84:a6:d9:f9:89:97:fb:84:95:f5:00:f6:52:b7:80: e3:59:d5:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YxRTcxMTAvBgNVBAUTKDg4RkYyQTVGNUY4MTc2MTM0MzUzN0U0QjU0QjVFNkEx NkYyMDdFQTkwHhcNMjUwODIzMDM1NDIxWhcNMjUwODMwMDM1NDIxWjAYMRYwFAYD VQQDEw02OGE5M2I2ZC0wOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlxrQLINA45xmg1um1tmJa/smLvhaUGm8sfmv4C+699h2uNb4KsmmhBAqokMl 5TSTE4u9kdd9Dngr9QSURfYM0+MdVncYe6zxqlV72iFtPnPTSiWfAql2CluNHlsb OG7MDZLiUL4ABzVwCoQwKFu4RjMvuu/1rAZzazPq4UAEADmLlxuLylTWn8Gdvx1F C2zvxcu1niJyMiaC/SpZoMLXZdPN1w4vemXLAi6wJAtNRQU7RABtTFXfyK9DDHrX b3d+q0mvOT7g8bvZOi1XnTqemT/dK6N2mQKB5xX1aBAXJYVj+n00qdrJjPxFDlgg tsfFX8qMsZFrRcyKQZoknv5Y6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM42572B 6sPVkiSSgQG1EJyX87eNMB8GA1UdIwQYMBaAFIj/Kl9fgXYTQ1N+S1S15qFvIH6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjFFNy8xREJFMUEzMjQ3 QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRoTkRVMzVMVkxYbW9XOGdm cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lQOHFYMS1CZGhORFUzNUxWTFhtb1c4Z2Zxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjFFNy8xREJFMUEzMjQ3QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRo TkRVMzVMVkxYbW9XOGdmcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWx8eEEAHwmLWqEQrI52LaPpkEorn2xcTHhMZ+BcxYtwgfS/O89/ky Xde0Gh2Nr4+MaG8TBGW+xm0PA9G+uAWUSE2DYBbWCBUiDTKyd6epoDjacjbtHylI GE09NERxI7vlO2yOXXGfRzv4VYVCNZoFg7jPMFRsfsirm587TkLysoIgA+AJgw8b 0pyjI4x1yGJA0+I/1WTo4UFi++Ox0VXf+lQlalNsyIZmvPxJ9JJVgGB2m3WVqvbt vOkKgjxWPMv4Mr3d92swzG8SZVAF6luXxYhS0YFZByMjD94p8Ysr0YMJoIWDpJJC EOMU7eKEptn5iZf7hJX1APZSt4DjWdWs -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:53 2025 by rpki-client