$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: a9DLJlf57LTOV8SJ7so/NCqn5VlIM0aQa+6WRw9mlYs= Subject key identifier: 7B:62:76:19:EC:08:9C:72:01:83:96:6C:A4:D4:C4:21:18:1E:E8:09 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 1153 Signing time: Sun 19 Oct 2025 11:14:51 +0000 Manifest this update: Sun 19 Oct 2025 11:14:51 +0000 Manifest next update: Sun 26 Oct 2025 11:14:51 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: Vh/Mbr+jHbCEbOAnHRg+C9dtKFoq2trFkmUHC/s7QbY=) 2: D9BBFBDA4D3111F099A48033C4F9AE02.roa (hash: A1A/LnUqdsNFUNCbA9pj78Zy7mXZZnhX+0nyseCL3vE=) 3: 98A0F61840AD11F0BB332714C4F9AE02.roa (hash: tKQU1f9hJtuAYfiy2kdRz9mYUmd+c/z8iKCPuJpB5Jo=) 4: 4F2654ACACDB11F0A3F2FF3CC4F9AE02.roa (hash: OqS/n46MqXrg5tkeyWhJhZI3eE6XOuPELN4VDMy95NE=) 5: 3602E1AAA51711F0804A3D3EC4F9AE02.roa (hash: cZ+xVdpY0zejlKYgeF8M/tGat05eAxdQWKOHmwymWu8=) 6: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: PDXFymAQeHbTCItIfy8LqqoHr3PVKA+eJZNU6voGL5A=) 7: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (hash: mPVwkbrmgIGFwgmxOu/KgFG11TMB51WhYaitUgpspRc=) 8: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: GKHRKfwk3bqrqOFGPvJ+kjY0NTnB33jXoiW8bXeNOjw=) 9: D276D68CACDC11F093B6B95AC4F9AE02.roa (hash: HogXJmL/NwNRLzeVXgVFZcWMkVgOGwGFOMaQzjDPXUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4500 (0x1194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Oct 19 11:14:51 2025 GMT Not After : Oct 26 11:14:51 2025 GMT Subject: CN=68f4c82b-e0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ce:06:7d:73:bb:b4:bc:07:37:45:29:c7:c3: 72:df:8b:59:ef:a8:58:9a:44:ff:31:64:60:25:5d: 5e:60:62:f6:6a:4a:6e:02:55:d8:b7:ec:1f:25:b5: a4:10:af:c6:85:0d:c3:cf:66:93:a1:91:56:09:0c: a2:7f:e1:3c:cb:42:63:22:cd:f3:04:02:43:3b:d9: 1c:2d:35:76:27:ab:a1:99:d6:28:1d:3a:ba:09:54: 85:41:1f:9a:98:10:9a:54:47:11:83:ef:ec:9e:88: 0a:a4:0a:12:50:5e:6c:62:a3:89:bc:ce:c9:29:c9: 86:33:00:79:79:1a:8c:5e:a2:83:4c:4d:32:76:c3: a2:99:4f:5f:59:b3:e6:44:8f:90:7f:a0:f8:e3:8a: 3d:1e:03:e5:6d:95:f0:7e:b5:57:b6:f4:0e:23:56: c3:fc:18:0b:69:00:3a:f0:60:30:62:b7:f3:4a:f7: b6:34:a1:fd:61:a0:32:e5:c8:a1:b7:39:f1:0f:85: 7d:63:85:54:b6:fb:80:e3:b3:18:f1:eb:80:a7:aa: 5b:1c:eb:96:98:35:cb:71:1e:d3:bb:2d:a1:57:cc: 13:a6:c7:10:e5:3b:f2:8e:34:04:73:2f:a1:5a:03: a5:43:fb:f7:3c:c8:39:0c:f2:7f:58:98:d5:6b:db: e3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:62:76:19:EC:08:9C:72:01:83:96:6C:A4:D4:C4:21:18:1E:E8:09 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:c1:87:76:97:27:eb:97:ab:4d:47:90:90:37:b6:e6:fb: 5f:0a:01:ce:5c:3f:54:9e:c9:0e:88:c6:cf:60:ec:26:e0:d2: ab:e7:f8:e1:49:d1:4c:dc:f1:cd:a8:f7:b4:73:73:fa:32:97: 81:be:fa:6b:c9:82:d4:47:a2:5f:8c:5e:f5:8b:78:fe:62:81: d5:00:66:01:ac:ad:d2:40:3d:ca:31:41:e1:1e:2b:65:0f:7c: 68:54:01:67:07:f8:e0:93:15:42:c0:5d:79:69:fd:0b:77:65: 0a:74:ae:4e:b4:90:06:ca:ed:df:f4:d7:bc:b6:ac:56:3d:1f: cf:e0:cd:a1:8c:f8:0d:08:da:f2:e3:17:e4:08:37:a9:ce:85: 51:c6:02:6a:57:15:fb:8e:75:00:9b:ed:7c:6b:00:89:b9:0d: 75:55:8f:01:28:69:ab:01:56:0c:48:be:1c:95:5c:fe:0a:9d: 6c:8f:6d:75:38:7b:ba:0c:89:f4:81:35:e0:70:6d:7b:b7:93: 20:fd:82:b4:4f:47:69:ff:b2:20:a3:89:46:a6:26:0c:1e:9a: 5a:a4:73:6d:0d:90:26:80:16:20:da:06:27:75:2b:fd:7e:09: 26:17:b3:f7:c9:43:c2:0b:d4:68:5b:ae:de:1f:56:0b:17:d1: 80:99:21:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUxMDE5MTExNDUxWhcNMjUxMDI2MTExNDUxWjAYMRYwFAYD VQQDEw02OGY0YzgyYi1lMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA384GfXO7tLwHN0Upx8Ny34tZ76hYmkT/MWRgJV1eYGL2akpuAlXYt+wfJbWk EK/GhQ3Dz2aToZFWCQyif+E8y0JjIs3zBAJDO9kcLTV2J6uhmdYoHTq6CVSFQR+a mBCaVEcRg+/snogKpAoSUF5sYqOJvM7JKcmGMwB5eRqMXqKDTE0ydsOimU9fWbPm RI+Qf6D444o9HgPlbZXwfrVXtvQOI1bD/BgLaQA68GAwYrfzSve2NKH9YaAy5cih tznxD4V9Y4VUtvuA47MY8euAp6pbHOuWmDXLcR7Tuy2hV8wTpscQ5TvyjjQEcy+h WgOlQ/v3PMg5DPJ/WJjVa9vjjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtidhns CJxyAYOWbKTUxCEYHugJMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLicGHdpcn65erTUeQkDe25vtfCgHOXD9UnskOiMbPYOwm4NKr5/jh SdFM3PHNqPe0c3P6MpeBvvpryYLUR6JfjF71i3j+YoHVAGYBrK3SQD3KMUHhHitl D3xoVAFnB/jgkxVCwF15af0Ld2UKdK5OtJAGyu3f9Ne8tqxWPR/P4M2hjPgNCNry 4xfkCDepzoVRxgJqVxX7jnUAm+18awCJuQ11VY8BKGmrAVYMSL4clVz+Cp1sj211 OHu6DIn0gTXgcG17t5Mg/YK0T0dp/7Igo4lGpiYMHppapHNtDZAmgBYg2gYndSv9 fgkmF7P3yUPCC9RoW67eH1YLF9GAmSFE -----END CERTIFICATE-----Generated at Mon Oct 20 12:45:30 2025 by rpki-client