$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: NSWxi/l8FCg8845Oex9SpG+V0uT6ljRGnr/3QfnMg4M= Subject key identifier: B8:79:A7:F3:AA:53:16:77:EB:76:F2:BC:32:3E:FB:41:01:65:34:1A Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0ABB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2B9C Signing time: Fri 22 Aug 2025 15:59:48 +0000 Manifest this update: Fri 22 Aug 2025 15:59:47 +0000 Manifest next update: Fri 29 Aug 2025 15:59:47 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: JlzlGyfBqnAo17jILhxJk8vfPG/9arYJ2JMNgzsJNo8=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: iuR0hKy1te9ReiQAcpbPM6UF6bcHMIJQ871N78hvW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Aug 22 15:59:47 2025 GMT Not After : Aug 29 15:59:47 2025 GMT Subject: CN=68a893f3-89a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:d9:e5:19:7c:25:b9:d6:45:c3:c2:4b:18:96: 3e:d3:c5:57:79:3b:6f:79:e3:9c:07:c8:f4:c7:aa: f0:13:26:9a:5f:c9:0f:a8:69:84:c6:af:aa:32:0b: 3d:6c:0d:03:02:97:ba:ee:36:3b:80:f2:2f:29:f2: 01:16:2a:96:d1:85:57:ad:bb:47:86:61:5e:de:68: f3:9c:8f:43:59:ec:e6:42:fe:73:7c:e0:68:50:1b: 5a:39:6c:71:cf:99:e4:49:82:d5:d3:80:0d:cb:83: 30:d1:f7:96:78:9f:26:a5:32:c7:a2:8c:f6:e6:be: 55:14:dd:a7:42:77:40:9a:e5:d8:11:10:64:a1:94: 72:84:21:64:a3:14:63:49:c6:87:a5:44:8e:66:86: 72:f9:6c:62:d7:5a:68:3d:8f:f9:be:a8:24:14:b2: a9:ce:47:1e:01:d3:e8:37:dd:f6:a2:01:79:5e:b9: d0:d4:13:37:0f:d8:e3:6b:90:b1:3c:b0:02:15:52: 2e:89:70:e9:53:24:9c:53:33:39:e7:57:77:78:b9: c9:e4:6f:c5:b4:e4:25:14:3a:13:19:45:16:6f:76: 86:ed:ea:c1:b0:1f:78:d8:a5:df:28:4e:88:d2:8c: f8:9a:9b:8d:70:af:af:69:f6:99:bd:07:3e:71:99: 74:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:79:A7:F3:AA:53:16:77:EB:76:F2:BC:32:3E:FB:41:01:65:34:1A X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:dc:3b:53:6e:38:e4:cc:1f:90:80:82:d0:32:f7:ec:6b:ef: 3c:5b:49:fd:91:cd:39:b2:35:94:85:89:75:65:c5:2e:4a:1b: d4:74:26:85:14:a2:01:b5:52:ac:b8:6a:8e:06:70:bf:9c:47: 4e:34:39:0d:72:a3:a9:e7:38:74:af:4a:f9:a6:27:da:b6:14: 72:93:a9:7d:b0:57:5b:6e:f8:3c:7b:3a:91:65:75:7f:46:66: e6:8f:c7:1f:90:b0:af:e1:b8:af:ad:9a:d2:de:be:04:b5:3b: fb:ae:32:af:68:41:b8:2e:c4:50:84:f6:60:71:45:10:8b:30: 22:68:84:11:83:1f:52:93:0a:33:de:31:49:02:1e:9a:d1:28: 61:0a:fd:3c:5f:62:52:22:35:b4:1e:82:96:73:f6:e8:ec:45: 3e:99:9f:89:e5:11:d7:d7:1d:32:83:b5:76:58:6b:17:78:cc: ea:0e:0c:33:cc:4a:a2:83:cc:bb:5a:98:f7:87:28:52:2f:1e: 1a:5e:24:fe:61:2d:ea:47:d6:12:10:6d:8e:1f:1c:94:36:fa: 4b:47:da:5d:a0:ad:60:a5:a3:48:1c:3e:9d:b8:20:77:28:29: e6:74:a5:0f:18:75:1e:ae:bc:b4:25:ce:8f:d4:0a:0c:e0:4c: 00:45:a4:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjUwODIyMTU1OTQ3WhcNMjUwODI5MTU1OTQ3WjAYMRYwFAYD VQQDEw02OGE4OTNmMy04OWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+dnlGXwludZFw8JLGJY+08VXeTtveeOcB8j0x6rwEyaaX8kPqGmExq+qMgs9 bA0DApe67jY7gPIvKfIBFiqW0YVXrbtHhmFe3mjznI9DWezmQv5zfOBoUBtaOWxx z5nkSYLV04ANy4Mw0feWeJ8mpTLHooz25r5VFN2nQndAmuXYERBkoZRyhCFkoxRj ScaHpUSOZoZy+Wxi11poPY/5vqgkFLKpzkceAdPoN932ogF5XrnQ1BM3D9jja5Cx PLACFVIuiXDpUyScUzM551d3eLnJ5G/FtOQlFDoTGUUWb3aG7erBsB942KXfKE6I 0oz4mpuNcK+vafaZvQc+cZl0UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLh5p/Oq UxZ363byvDI++0EBZTQaMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq3DtTbjjkzB+QgILQMvfsa+88W0n9kc05sjWUhYl1ZcUuShvUdCaF FKIBtVKsuGqOBnC/nEdONDkNcqOp5zh0r0r5pifathRyk6l9sFdbbvg8ezqRZXV/ Rmbmj8cfkLCv4bivrZrS3r4EtTv7rjKvaEG4LsRQhPZgcUUQizAiaIQRgx9Skwoz 3jFJAh6a0ShhCv08X2JSIjW0HoKWc/bo7EU+mZ+J5RHX1x0yg7V2WGsXeMzqDgwz zEqig8y7Wpj3hyhSLx4aXiT+YS3qR9YSEG2OHxyUNvpLR9pdoK1gpaNIHD6duCB3 KCnmdKUPGHUerry0Jc6P1AoM4EwARaRk -----END CERTIFICATE-----Generated at Sun Aug 24 08:49:57 2025 by rpki-client