$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 4aYQ1dfPuXosq1XB6IgJ0hNPm0ai4fqNGwfgEjbd49I= Subject key identifier: 69:DD:68:86:B4:22:85:A8:AA:44:9A:8C:43:42:90:A1:78:FF:BB:17 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: B1 Signing time: Sat 23 Aug 2025 06:16:40 +0000 Manifest this update: Sat 23 Aug 2025 06:16:39 +0000 Manifest next update: Sat 30 Aug 2025 06:16:39 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: 0yogWwRA/ddTzuvcL5EWyxqqbhkFX7GpEb4JawcBmNs=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Aug 23 06:16:39 2025 GMT Not After : Aug 30 06:16:39 2025 GMT Subject: CN=68a95cc7-869a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:59:64:37:de:ff:6d:0e:d1:94:52:d7:6b: 4f:84:af:88:4d:dc:37:67:ca:7a:bf:fd:c8:37:b3: b3:22:f2:94:72:23:d1:fd:51:3c:53:b4:70:25:7c: 45:7e:72:cd:1a:fa:41:d0:4c:18:22:33:52:10:59: b6:4b:6b:a0:c8:59:82:b5:57:2a:b3:c1:38:c1:de: dc:97:b2:ad:80:be:47:24:29:78:ee:c3:b4:05:0b: a4:96:80:ab:35:43:6b:61:f0:5f:ff:b9:69:94:7c: a1:4b:c7:d8:b5:02:64:a8:fc:01:1e:ab:0e:d3:83: 8d:10:83:99:f0:67:b7:74:6b:0c:a8:c7:01:a7:72: 70:cd:95:a4:93:a6:ae:78:60:36:34:11:3e:8d:93: 6d:3d:e3:a8:16:49:b8:a2:ef:7d:50:31:59:c4:d2: c9:2f:5a:ee:23:48:ce:00:a9:76:a0:3c:62:11:e0: 88:91:86:f5:24:e8:d7:d2:8e:5d:d9:63:20:30:2b: 51:0b:34:5c:a5:04:eb:a9:d6:f0:c6:4a:3d:3d:32: e2:17:9b:b2:ad:77:aa:82:50:52:12:ea:c0:46:60: 30:a6:e4:8c:33:c4:38:7c:f9:ae:2a:02:d0:58:d3: 76:07:b8:e9:76:cc:eb:6c:69:5c:57:c4:19:d7:1f: cb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DD:68:86:B4:22:85:A8:AA:44:9A:8C:43:42:90:A1:78:FF:BB:17 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:70:7d:69:41:99:4e:6e:a6:c1:1d:9b:d0:81:b2:e8:c9:5a: 62:61:50:c2:7b:c9:79:7d:a8:bf:f0:91:15:20:aa:a6:c1:81: 08:d0:53:5c:d7:4f:ec:e8:d1:a8:59:ad:b9:92:b9:2a:e7:5d: 5b:07:11:2b:6d:80:31:4a:d4:53:0d:dc:e2:41:82:cf:f9:94: 65:6b:f1:4f:92:83:11:b1:b9:6f:3d:5c:2d:1d:81:72:02:cf: f6:1d:bb:d0:24:df:16:00:3e:61:cd:3a:11:b0:cc:00:86:36: c2:99:ec:ab:b5:4c:1e:4c:26:e4:7e:61:7d:24:8f:6e:de:2f: 31:e7:65:77:28:09:86:cf:5d:d7:b5:5f:ae:e6:12:42:de:5e: 17:1b:5c:0d:38:8c:75:27:10:ef:80:80:9e:0b:f3:9b:0f:20: 2b:36:0a:6d:ab:c3:4a:54:76:17:33:e2:4b:27:b2:48:6d:90: e4:84:25:da:56:b3:25:ce:c3:84:84:1b:d4:40:e3:7e:e9:65: d8:da:53:a7:32:0b:cb:e6:3c:c7:ec:a7:f5:6f:90:bf:e3:59: 28:39:97:0c:ac:03:b5:42:b5:23:01:fc:f6:8b:8f:0a:1d:c2: 44:b0:0e:63:3a:1a:15:4a:bf:92:8f:a5:27:04:cd:1f:d0:87: 89:a6:e8:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUwODIzMDYxNjM5WhcNMjUwODMwMDYxNjM5WjAYMRYwFAYD VQQDEw02OGE5NWNjNy04NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumpZZDfe/20O0ZRS12tPhK+ITdw3Z8p6v/3IN7OzIvKUciPR/VE8U7RwJXxF fnLNGvpB0EwYIjNSEFm2S2ugyFmCtVcqs8E4wd7cl7KtgL5HJCl47sO0BQukloCr NUNrYfBf/7lplHyhS8fYtQJkqPwBHqsO04ONEIOZ8Ge3dGsMqMcBp3JwzZWkk6au eGA2NBE+jZNtPeOoFkm4ou99UDFZxNLJL1ruI0jOAKl2oDxiEeCIkYb1JOjX0o5d 2WMgMCtRCzRcpQTrqdbwxko9PTLiF5uyrXeqglBSEurARmAwpuSMM8Q4fPmuKgLQ WNN2B7jpdszrbGlcV8QZ1x/LrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGndaIa0 IoWoqkSajENCkKF4/7sXMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvcH1pQZlObqbBHZvQgbLoyVpiYVDCe8l5fai/8JEVIKqmwYEI0FNc 10/s6NGoWa25krkq511bBxErbYAxStRTDdziQYLP+ZRla/FPkoMRsblvPVwtHYFy As/2HbvQJN8WAD5hzToRsMwAhjbCmeyrtUweTCbkfmF9JI9u3i8x52V3KAmGz13X tV+u5hJC3l4XG1wNOIx1JxDvgICeC/ObDyArNgptq8NKVHYXM+JLJ7JIbZDkhCXa VrMlzsOEhBvUQON+6WXY2lOnMgvL5jzH7Kf1b5C/41koOZcMrAO1QrUjAfz2i48K HcJEsA5jOhoVSr+Sj6UnBM0f0IeJpuhN -----END CERTIFICATE-----Generated at Sun Aug 24 07:21:07 2025 by rpki-client