$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: LuUOIBFj+XFUXuIf/iOzlWRXe2HpV4zqONyttuSMVIo= Subject key identifier: 10:3F:D3:CD:3C:F4:C1:EF:1C:05:F5:D6:95:0C:13:4F:F9:CB:89:61 Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 07C2 Signing time: Fri 22 Aug 2025 21:26:29 +0000 Manifest this update: Fri 22 Aug 2025 21:26:29 +0000 Manifest next update: Fri 29 Aug 2025 21:26:29 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: 1ZAqiTBqzmvle/fed9/+CL8uOly5bOHMNTtjTE6S/BY=) 2: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: O05NjBwYNNvXC8JoMWk3EyZg7iktCjusVDBEEW7nGKc=) 3: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: cqaNGUAp+AM9Nk5TWMcE/5SRJKY4Makpxzc5uTKkH7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Aug 22 21:26:29 2025 GMT Not After : Aug 29 21:26:29 2025 GMT Subject: CN=68a8e085-829f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:72:97:62:65:cf:ee:e8:52:a2:14:b0:4d: 92:dd:be:4e:28:d6:38:a3:49:5a:11:da:fc:be:e0: 51:d2:37:f8:e8:a6:d9:47:1c:23:6f:4f:7e:52:7f: 53:71:97:0e:3b:2e:c5:9b:02:61:34:0b:cf:3e:84: 44:48:df:47:ee:00:16:e2:17:93:22:bc:0d:8f:40: 45:f5:fa:40:09:72:05:15:00:20:f6:40:df:7a:a2: 12:04:50:85:55:4f:80:19:94:a2:ac:95:1b:6b:ea: 1a:3d:22:c3:7f:b5:a5:55:c9:13:ac:81:ad:f2:e8: db:bb:06:0d:93:53:ea:5a:54:7a:1a:fa:94:4f:d1: 16:31:9d:8e:d4:78:57:15:a0:e4:f2:53:6a:b6:77: e6:17:56:67:5d:dd:3c:68:e4:b8:b4:25:c2:83:63: 20:e4:8c:8c:21:2c:5c:31:fd:30:f7:a0:c6:d6:a3: 3c:61:73:65:b9:c9:e2:d8:d4:f3:a3:b7:4c:5d:a5: 15:76:5d:88:34:2c:f5:33:98:d7:eb:76:df:0b:33: 99:35:e6:5d:e5:0b:9a:92:ad:e5:bf:c0:c3:62:81: 55:a9:d1:c8:1a:8f:8c:21:3b:b4:73:7b:c1:ba:6b: 1f:28:2f:b8:0b:a2:74:f9:0f:4e:ea:c9:ff:cd:46: 05:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3F:D3:CD:3C:F4:C1:EF:1C:05:F5:D6:95:0C:13:4F:F9:CB:89:61 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:26:d0:17:19:a0:ef:93:c8:9c:21:1a:e9:b2:cf:f9:45:8c: 43:a0:59:10:cb:49:be:46:b2:31:30:7a:bf:38:4a:1c:3d:65: 6c:d8:a7:ee:8a:d9:80:b9:06:0a:c5:21:3e:2d:47:f0:0c:94: b3:47:85:c5:14:20:88:f2:5c:32:3a:6e:fe:93:bc:c1:57:66: 4d:1a:b0:61:0c:e6:8f:0d:10:0d:da:c0:cd:83:ea:08:da:ba: 12:c3:64:13:54:99:17:b5:18:84:82:ea:96:f8:13:e9:25:c9: 9c:b6:e4:e4:e9:e2:f5:b2:16:32:70:47:f8:ca:b6:ba:56:09: b3:7c:65:6b:0c:bc:51:a2:a1:76:cd:6b:7a:89:c5:af:3d:02: ed:8d:3e:67:74:9e:8f:c9:9a:48:05:30:ac:65:c6:c8:50:02: 54:bb:f5:39:e8:03:bb:4a:2b:0c:91:a2:0e:11:4b:3d:85:00: b8:ff:b4:ba:b3:f4:62:a0:c2:2e:59:0e:32:2f:c3:cf:48:0b: 95:01:1a:00:4d:f0:db:78:08:03:31:a8:28:12:81:31:c7:d1: f2:08:8b:b9:7a:50:da:66:e3:6b:c5:e3:1c:81:e4:2e:08:62: 25:ea:22:b7:5b:77:86:33:db:17:58:94:dd:74:6d:f7:06:78: 9e:20:e9:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNTA4MjIyMTI2MjlaFw0yNTA4MjkyMTI2MjlaMBgxFjAUBgNV BAMTDTY4YThlMDg1LTgyOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClYXKXYmXP7uhSohSwTZLdvk4o1jijSVoR2vy+4FHSN/joptlHHCNvT35Sf1Nx lw47LsWbAmE0C88+hERI30fuABbiF5MivA2PQEX1+kAJcgUVACD2QN96ohIEUIVV T4AZlKKslRtr6ho9IsN/taVVyROsga3y6Nu7Bg2TU+paVHoa+pRP0RYxnY7UeFcV oOTyU2q2d+YXVmdd3Txo5Li0JcKDYyDkjIwhLFwx/TD3oMbWozxhc2W5yeLY1POj t0xdpRV2XYg0LPUzmNfrdt8LM5k15l3lC5qSreW/wMNigVWp0cgaj4whO7Rze8G6 ax8oL7gLonT5D07qyf/NRgU9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUED/TzTz0 we8cBfXWlQwTT/nLiWEwHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 RjVBLzA4OThCMjNBMTFCQTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRm dkh6RzhXZ0l5LU9kbEZVVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACIm0BcZoO+TyJwhGumyz/lFjEOgWRDLSb5GsjEwer84Shw9ZWzYp+6K 2YC5BgrFIT4tR/AMlLNHhcUUIIjyXDI6bv6TvMFXZk0asGEM5o8NEA3awM2D6gja uhLDZBNUmRe1GISC6pb4E+klyZy25OTp4vWyFjJwR/jKtrpWCbN8ZWsMvFGioXbN a3qJxa89Au2NPmd0no/JmkgFMKxlxshQAlS79TnoA7tKKwyRog4RSz2FALj/tLqz 9GKgwi5ZDjIvw89IC5UBGgBN8Nt4CAMxqCgSgTHH0fIIi7l6UNpm42vF4xyB5C4I YiXqIrdbd4Yz2xdYlN10bfcGeJ4g6do= -----END CERTIFICATE-----Generated at Sat Aug 23 17:51:45 2025 by rpki-client