$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: BGaapyJs/eOthKimzaRMcCWc6W+awqjCvvYUehEB2Y0= Subject key identifier: 50:5C:61:C3:D0:34:FD:61:5E:A8:73:7E:8D:36:C0:8C:97:59:0B:5E Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 0880 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 084B Signing time: Fri 22 Aug 2025 20:58:13 +0000 Manifest this update: Fri 22 Aug 2025 20:58:12 +0000 Manifest next update: Fri 29 Aug 2025 20:58:12 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: xbbXATZ+/KWeaEIBBGKjHlmJPqV27SakFBc3mFOaunM=) 2: EF40C4AC404611EFA2014651C4F9AE02.roa (hash: czaYuAZrmltxjeFq6mD06OZKMChDyKz2TsFDBFMIxYw=) 3: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: IR0gL9HuGQPasCSDeDXOONGQSnX5FqddD0h9jerJFTk=) 4: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: RgPF5melWGZf5AFZ9hv+NJPKC/EOsjcNRxGMLnUAhvk=) 5: 35D16082404911EFBC4C610EC4F9AE02.roa (hash: CZyYnpg8fZRv7/01XkAyfUiNYVCaEIGt11t+Ww7CLyk=) 6: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: 5tsj3TAsFxb8qTqVXGn9He+Eq077vpR4YIaSiSHaTqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Aug 22 20:58:12 2025 GMT Not After : Aug 29 20:58:12 2025 GMT Subject: CN=68a8d9e5-eac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fd:e5:19:80:62:85:58:e7:04:d8:5c:01:b1: f7:78:35:9a:77:5a:0c:79:40:e3:19:50:11:9f:07: 1c:fd:f5:97:b7:f0:79:2c:27:b9:ee:a2:cc:e7:7c: ab:a5:f8:59:dd:03:a4:a8:7b:b3:41:e5:c8:9e:20: d9:49:e1:7f:b5:2e:3c:9f:65:58:27:5a:a4:12:a5: 06:04:a3:e6:2b:f5:77:96:3a:b9:55:b3:3f:09:5a: 70:5c:b6:9c:78:45:8b:c5:28:62:de:4b:09:da:93: 66:47:70:f2:51:91:f7:d6:24:c7:f2:85:70:21:15: a4:03:14:d4:01:5f:c9:93:3f:0d:fa:cd:ea:b9:b0: 97:6a:8c:19:9c:c0:22:91:b0:a2:15:45:44:1b:66: 13:f2:c6:dc:68:2b:b4:68:e4:df:6f:eb:13:c5:41: 13:c1:27:b6:b4:5c:b6:45:c8:a3:10:bf:a9:4a:18: 7c:79:39:a9:7b:9c:82:12:e4:14:98:1f:85:29:32: 1f:9e:7b:32:a0:18:63:a3:92:74:dc:a7:c6:54:93: 7c:6a:0e:67:37:c8:72:b5:0d:8a:1c:ce:32:39:97: 93:a2:b5:53:0c:28:b7:8a:0b:b2:d3:05:b8:19:22: e7:38:e2:99:dc:69:ef:08:52:4b:0c:97:6c:3d:a6: b3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5C:61:C3:D0:34:FD:61:5E:A8:73:7E:8D:36:C0:8C:97:59:0B:5E X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:69:76:c9:65:0e:2a:87:fe:52:d3:50:f2:c5:be:ca:20:22: c8:86:60:22:36:88:53:56:ad:bb:08:40:2a:c4:c3:bf:ed:ae: f8:2d:66:ce:69:c6:22:23:8c:c9:1b:15:50:5f:2e:16:92:0e: 19:85:1a:54:dc:03:5c:64:6c:23:59:5e:1d:c9:f8:23:b8:ed: e3:58:3f:4d:c2:60:5e:36:39:eb:13:ca:c8:a1:7c:81:a3:9b: 2e:1e:e7:98:1c:69:48:08:59:84:b1:c1:99:7b:eb:fc:a3:41: 50:ed:e5:8c:b2:a7:14:b4:ae:f9:a0:6d:cf:8b:f7:49:ec:62: ce:c2:90:a3:1a:ef:4d:cf:c2:be:3a:2b:b5:e9:8f:9f:1d:75: 2a:1c:54:04:6d:39:67:4b:96:d7:c8:92:d9:bc:00:be:35:7f: 2e:e8:d7:c0:df:8e:24:cd:85:b0:f0:74:21:71:12:e1:4f:83: 96:f9:6c:60:09:e2:b2:60:2a:1c:15:4d:b1:d1:b9:9d:55:1f: 68:d3:89:90:74:02:1b:f3:72:c8:39:5c:a6:0b:92:16:eb:f7: b4:3a:0b:83:75:12:ad:c2:b8:e4:1e:24:c6:79:66:b4:7d:64: 72:b0:02:24:13:82:8c:0e:f3:37:70:b5:4d:86:46:5a:0e:af: 25:3b:cd:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUwODIyMjA1ODEyWhcNMjUwODI5MjA1ODEyWjAYMRYwFAYD VQQDEw02OGE4ZDllNS1lYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyv3lGYBihVjnBNhcAbH3eDWad1oMeUDjGVARnwcc/fWXt/B5LCe57qLM53yr pfhZ3QOkqHuzQeXIniDZSeF/tS48n2VYJ1qkEqUGBKPmK/V3ljq5VbM/CVpwXLac eEWLxShi3ksJ2pNmR3DyUZH31iTH8oVwIRWkAxTUAV/Jkz8N+s3qubCXaowZnMAi kbCiFUVEG2YT8sbcaCu0aOTfb+sTxUETwSe2tFy2RcijEL+pShh8eTmpe5yCEuQU mB+FKTIfnnsyoBhjo5J03KfGVJN8ag5nN8hytQ2KHM4yOZeTorVTDCi3iguy0wW4 GSLnOOKZ3GnvCFJLDJdsPaazQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBcYcPQ NP1hXqhzfo02wIyXWQteMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBaXbJZQ4qh/5S01Dyxb7KICLIhmAiNohTVq27CEAqxMO/7a74LWbO acYiI4zJGxVQXy4Wkg4ZhRpU3ANcZGwjWV4dyfgjuO3jWD9NwmBeNjnrE8rIoXyB o5suHueYHGlICFmEscGZe+v8o0FQ7eWMsqcUtK75oG3Pi/dJ7GLOwpCjGu9Nz8K+ Oiu16Y+fHXUqHFQEbTlnS5bXyJLZvAC+NX8u6NfA344kzYWw8HQhcRLhT4OW+Wxg CeKyYCocFU2x0bmdVR9o04mQdAIb83LIOVymC5IW6/e0OguDdRKtwrjkHiTGeWa0 fWRysAIkE4KMDvM3cLVNhkZaDq8lO82z -----END CERTIFICATE-----Generated at Sun Aug 24 08:22:43 2025 by rpki-client