$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: rgVm56nu+3caTayYY1kmCHPcrQcXZkQyBAZfJtXZEKY= Subject key identifier: CF:40:8B:DB:99:C8:FE:E5:14:30:DA:00:ED:39:51:4B:98:5F:29:43 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 087C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 0873 Signing time: Fri 22 Aug 2025 20:46:56 +0000 Manifest this update: Fri 22 Aug 2025 20:46:56 +0000 Manifest next update: Fri 29 Aug 2025 20:46:56 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: uawx2ZdYXZ27ax99YXVb2HcMWw75mLZ74dbIK8Rx//c=) 2: 041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa (hash: WlXFSenPGCT3SLC3lZDEYFUVqjxw66ArRp+ogJXIxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2172 (0x87c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Aug 22 20:46:56 2025 GMT Not After : Aug 29 20:46:56 2025 GMT Subject: CN=68a8d740-2a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:a6:54:3a:23:5a:c2:d9:52:e7:3c:0c:11: ba:3a:82:66:f9:a8:5c:0f:2e:32:35:c6:2a:70:bf: 9b:4d:85:71:33:ee:41:47:d1:4b:6b:23:4d:9a:a9: 96:3c:4a:99:a7:33:e8:87:8f:6c:6c:8e:38:3b:a5: c5:c3:a2:c5:bd:9b:00:1e:33:03:0b:62:4f:48:2d: 4a:4a:5e:c1:0e:1d:f9:1c:ab:73:49:2a:2f:76:c9: 29:42:0e:fe:24:80:7a:35:43:1e:b9:78:cb:53:e2: 3c:c3:f0:a8:c6:2d:c4:8f:c6:2d:2e:18:03:da:56: 53:61:77:98:a8:54:c2:8d:5b:78:67:0c:00:a7:04: 5e:e2:41:0f:0f:d7:6c:c1:b1:21:08:9e:42:6c:7b: a6:b8:c3:06:08:7e:82:21:95:02:cf:d1:91:4f:7b: e7:c0:91:fe:fd:be:3f:17:45:47:97:35:11:b5:95: c8:b4:2b:3b:c8:ef:50:d1:d4:ea:93:6f:2a:50:9d: 29:f6:6f:aa:38:b0:96:7d:ae:56:4f:d9:ee:e0:ba: 83:21:f8:96:7b:a7:68:8e:0a:a1:6d:b6:2b:6d:63: f6:2f:df:dd:44:f2:83:00:39:c9:91:75:34:5a:4b: ea:76:58:60:15:43:0f:9d:02:f1:a0:84:18:19:de: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:40:8B:DB:99:C8:FE:E5:14:30:DA:00:ED:39:51:4B:98:5F:29:43 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:12:6c:3e:e3:bc:5c:c3:eb:e7:8b:17:f9:f1:53:50:cd:46: dc:cb:97:23:aa:b7:f0:70:83:00:2d:ca:56:34:4c:26:e4:2d: da:4c:ab:42:63:f6:d2:56:e5:32:ba:76:78:77:b2:52:df:23: 4e:0c:25:90:14:ae:bb:6e:8d:19:2a:a3:31:d7:9f:41:4f:53: ba:d5:96:9d:a8:88:a9:dc:e2:c0:bc:81:da:55:d2:2c:d6:98: f4:81:fa:90:6f:58:71:be:f5:18:cc:2d:79:39:69:20:9e:c1: ce:a5:0e:b2:93:fd:e0:71:61:7c:45:43:fa:22:15:62:db:4d: f2:24:96:08:83:6d:6e:0b:fc:ae:c5:bc:fb:1b:ba:26:7c:9f: cb:d2:00:0d:44:0a:84:52:0b:c3:f6:6e:f5:38:c8:46:89:57: 10:05:72:ab:11:b3:e1:93:c5:0c:82:54:04:f4:62:93:cc:33: 5a:a0:fc:87:7a:95:69:fb:a0:0e:de:12:d0:21:49:ae:02:1e: 51:5a:21:43:04:25:61:19:26:c7:4b:43:0a:8c:0e:a8:46:e5: ce:ad:9f:19:eb:8e:9f:3f:ca:e8:d3:2c:19:ba:23:ef:10:01: 1b:90:c5:96:59:89:36:84:d7:77:7d:8d:d0:8b:95:8a:47:e2: fd:20:4e:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwODIyMjA0NjU2WhcNMjUwODI5MjA0NjU2WjAYMRYwFAYD VQQDEw02OGE4ZDc0MC0yYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dSmVDojWsLZUuc8DBG6OoJm+ahcDy4yNcYqcL+bTYVxM+5BR9FLayNNmqmW PEqZpzPoh49sbI44O6XFw6LFvZsAHjMDC2JPSC1KSl7BDh35HKtzSSovdskpQg7+ JIB6NUMeuXjLU+I8w/Coxi3Ej8YtLhgD2lZTYXeYqFTCjVt4ZwwApwRe4kEPD9ds wbEhCJ5CbHumuMMGCH6CIZUCz9GRT3vnwJH+/b4/F0VHlzURtZXItCs7yO9Q0dTq k28qUJ0p9m+qOLCWfa5WT9nu4LqDIfiWe6dojgqhbbYrbWP2L9/dRPKDADnJkXU0 WkvqdlhgFUMPnQLxoIQYGd7sawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9Ai9uZ yP7lFDDaAO05UUuYXylDMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPEmw+47xcw+vnixf58VNQzUbcy5cjqrfwcIMALcpWNEwm5C3aTKtC Y/bSVuUyunZ4d7JS3yNODCWQFK67bo0ZKqMx159BT1O61ZadqIip3OLAvIHaVdIs 1pj0gfqQb1hxvvUYzC15OWkgnsHOpQ6yk/3gcWF8RUP6IhVi203yJJYIg21uC/yu xbz7G7omfJ/L0gANRAqEUgvD9m71OMhGiVcQBXKrEbPhk8UMglQE9GKTzDNaoPyH epVp+6AO3hLQIUmuAh5RWiFDBCVhGSbHS0MKjA6oRuXOrZ8Z646fP8ro0ywZuiPv EAEbkMWWWYk2hNd3fY3Qi5WKR+L9IE5U -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:29 2025 by rpki-client