$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: uCOFrlHZWJkmLRROMo2fHSXURKg7xDhoWOGpx0Fkcn4= Subject key identifier: CF:AD:50:10:81:08:AD:FE:2C:B1:7C:6E:DA:C1:ED:19:AA:C9:7D:EB Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 0668 Signing time: Fri 22 Aug 2025 22:41:25 +0000 Manifest this update: Fri 22 Aug 2025 22:41:24 +0000 Manifest next update: Fri 29 Aug 2025 22:41:24 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: 6xTUlihbidouUegWDabbItpd+gXsrgaI66yAKXSZaoc=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Aug 22 22:41:24 2025 GMT Not After : Aug 29 22:41:24 2025 GMT Subject: CN=68a8f214-9e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:bd:de:fb:a1:a5:61:70:44:be:a4:6b:e3: 59:0e:a7:03:7e:96:9e:3e:ec:95:27:53:63:b3:fb: 78:c0:45:a5:ed:dd:37:25:2b:ca:18:29:29:a2:0b: 34:1e:2b:d8:00:f4:7c:6b:73:99:2c:1d:7a:df:13: a6:64:66:f6:09:2b:fa:08:73:5d:94:f9:d4:dd:1a: 89:ef:ce:63:cc:8e:7f:1c:24:9b:2b:f5:d2:d2:24: 33:8d:3d:92:4f:6a:8e:d5:4c:07:d3:18:0b:59:78: ed:22:1e:1b:5a:b0:e0:da:3d:7c:37:72:9b:a4:47: ee:d6:78:fd:b6:e0:57:9b:4f:2b:e8:c4:47:d8:c9: f2:94:88:cd:23:ed:9c:11:11:35:58:10:7e:e9:c0: ba:0a:a6:ba:33:1d:74:ce:54:5e:bc:fd:2a:e7:5d: d4:91:bf:36:2b:9f:09:6d:6f:ca:60:10:f8:23:73: 4d:ee:ca:11:fb:70:a4:fe:85:cb:45:ba:74:e4:01: 7b:05:b1:d6:ab:87:68:43:5e:d1:f3:f3:55:9b:b5: 4e:10:ff:b4:9a:48:5a:be:39:f4:27:3b:fe:93:91: 94:aa:fa:b8:5f:61:b8:e6:f2:c5:f4:43:a2:4b:52: 9f:63:0a:3c:d5:98:bf:40:98:e6:ba:4d:c7:f8:0b: c7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AD:50:10:81:08:AD:FE:2C:B1:7C:6E:DA:C1:ED:19:AA:C9:7D:EB X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:40:00:4b:c4:7c:24:8f:30:14:35:bd:ed:21:68:12:2e:36: b7:89:f4:f3:19:14:5f:0e:af:56:01:33:a9:41:4c:b1:68:bd: 4f:94:ba:21:8b:46:31:56:83:32:a7:80:8e:98:d0:23:f1:84: ad:78:57:3e:b1:6a:46:44:c6:24:8e:5e:f4:38:10:12:ef:0f: 6f:02:bd:92:67:53:35:b3:0d:bb:63:95:9a:80:19:a3:b4:32: 95:89:d1:9c:b3:f9:b6:2a:b5:6f:46:d4:c0:97:f8:c1:53:88: 26:a9:5e:b4:6a:39:29:0a:b3:9f:a4:17:77:91:ac:75:41:06: be:a9:5c:38:19:5f:85:78:4b:61:ae:f7:b4:63:b5:6e:1b:4a: 3d:06:00:b5:47:4c:8e:b5:55:6d:ce:b1:60:94:3c:51:d9:03: d0:d9:59:0b:63:4b:5d:9c:6d:26:fa:ee:31:45:86:ed:45:94: a8:af:ec:01:8b:9b:49:d2:5c:eb:35:f8:3a:a1:bb:69:5d:22: 49:89:bc:79:bd:b6:6a:de:94:c4:d9:6f:f4:e9:5a:28:8d:44: 89:0e:7b:1c:0d:2c:f2:63:71:4e:fe:50:67:d3:5b:51:6f:f8: 9d:e9:62:18:31:9a:f1:b8:04:2a:c8:fb:b8:09:d0:02:63:8d: fe:2e:2e:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwODIyMjI0MTI0WhcNMjUwODI5MjI0MTI0WjAYMRYwFAYD VQQDEw02OGE4ZjIxNC05ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdG93vuhpWFwRL6ka+NZDqcDfpaePuyVJ1Njs/t4wEWl7d03JSvKGCkpogs0 HivYAPR8a3OZLB163xOmZGb2CSv6CHNdlPnU3RqJ785jzI5/HCSbK/XS0iQzjT2S T2qO1UwH0xgLWXjtIh4bWrDg2j18N3KbpEfu1nj9tuBXm08r6MRH2MnylIjNI+2c ERE1WBB+6cC6Cqa6Mx10zlRevP0q513Ukb82K58JbW/KYBD4I3NN7soR+3Ck/oXL Rbp05AF7BbHWq4doQ17R8/NVm7VOEP+0mkhavjn0Jzv+k5GUqvq4X2G45vLF9EOi S1KfYwo81Zi/QJjmuk3H+AvH6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+tUBCB CK3+LLF8btrB7RmqyX3rMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXQABLxHwkjzAUNb3tIWgSLja3ifTzGRRfDq9WATOpQUyxaL1PlLoh i0YxVoMyp4COmNAj8YSteFc+sWpGRMYkjl70OBAS7w9vAr2SZ1M1sw27Y5WagBmj tDKVidGcs/m2KrVvRtTAl/jBU4gmqV60ajkpCrOfpBd3kax1QQa+qVw4GV+FeEth rve0Y7VuG0o9BgC1R0yOtVVtzrFglDxR2QPQ2VkLY0tdnG0m+u4xRYbtRZSor+wB i5tJ0lzrNfg6obtpXSJJibx5vbZq3pTE2W/06VoojUSJDnscDSzyY3FO/lBn01tR b/id6WIYMZrxuAQqyPu4CdACY43+Li4W -----END CERTIFICATE-----Generated at Sat Aug 23 12:40:36 2025 by rpki-client