$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: HcknyBULzK9gn/qyF3kdqXzCen4WQzl0ImO+5yMvUKI= Subject key identifier: 69:AC:90:B1:88:46:C1:75:86:9A:D5:30:2C:75:7A:D3:FF:41:B5:6B Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 0831 Signing time: Wed 02 Jul 2025 21:10:30 +0000 Manifest this update: Wed 02 Jul 2025 21:10:29 +0000 Manifest next update: Wed 09 Jul 2025 21:10:29 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: NyMLCiUOJUu8x71eDvRNcALby8md31fTrcq4Wd/j1yk=) 2: EF40C4AC404611EFA2014651C4F9AE02.roa (hash: czaYuAZrmltxjeFq6mD06OZKMChDyKz2TsFDBFMIxYw=) 3: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: IR0gL9HuGQPasCSDeDXOONGQSnX5FqddD0h9jerJFTk=) 4: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: RgPF5melWGZf5AFZ9hv+NJPKC/EOsjcNRxGMLnUAhvk=) 5: 35D16082404911EFBC4C610EC4F9AE02.roa (hash: CZyYnpg8fZRv7/01XkAyfUiNYVCaEIGt11t+Ww7CLyk=) 6: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: 5tsj3TAsFxb8qTqVXGn9He+Eq077vpR4YIaSiSHaTqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Jul 2 21:10:29 2025 GMT Not After : Jul 9 21:10:29 2025 GMT Subject: CN=6865a045-d46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f7:01:45:36:60:02:4f:77:03:cc:5b:36:56: b5:5a:a8:a1:bb:dc:50:90:c1:5b:8d:58:df:34:8c: cb:b8:dc:a0:cc:05:17:50:6c:ff:11:32:d1:f9:34: 76:ce:f9:c1:ec:39:e7:11:67:cc:e9:c1:f4:36:9c: 56:65:4c:02:41:c3:e7:6f:af:23:4f:93:99:3c:21: 8c:c1:86:89:96:f0:7a:d1:3c:40:b8:70:b8:1f:7f: 72:42:ed:5f:fc:80:fa:37:cc:e6:95:4d:81:0b:fb: 6b:73:b2:3c:fe:1f:d8:e3:bb:cc:bc:3b:7a:f7:04: ff:4c:19:a1:47:8e:71:42:d5:56:23:82:13:2d:27: 89:16:46:99:01:e4:6e:8f:ba:a3:57:d8:d4:10:2f: 2c:82:79:d5:2e:e0:06:3e:c6:90:8e:53:70:f6:d0: d7:93:67:f4:d4:da:ba:b3:8a:07:52:c2:4e:4f:6c: 33:d0:97:0d:91:e8:02:9c:fb:fa:76:68:df:95:82: 11:c1:1c:f8:d7:35:0b:fb:c7:7f:49:10:6c:dd:54: 75:2b:85:e8:65:5f:ca:dc:f9:ff:4c:dd:5c:13:18: e9:95:9a:0a:9b:5c:46:4a:f9:be:8b:b7:ea:ab:41: 70:90:27:43:bd:ff:8f:a5:a2:db:d2:7e:57:64:ef: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AC:90:B1:88:46:C1:75:86:9A:D5:30:2C:75:7A:D3:FF:41:B5:6B X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ae:fa:cd:31:01:5c:ae:13:bb:2e:a6:30:1a:ac:bf:8f:f7: 6c:6e:0a:f3:6b:4d:ea:7b:47:cf:41:ec:c7:a6:97:10:01:f2: 39:16:7f:b9:28:f1:ef:8b:f9:70:c1:6e:35:f0:d1:a0:a1:46: 9d:78:12:7d:9b:3f:6e:a1:3d:e1:e1:aa:45:c4:80:cd:c5:9a: f3:bf:48:6a:54:cb:f5:3b:55:42:bf:80:e2:a7:7b:a7:eb:8a: c7:f1:a3:ed:9b:56:82:aa:74:1e:08:0e:cf:a4:fb:47:44:eb: e4:9d:7c:b3:30:cd:32:9c:1a:69:fe:e7:39:29:ee:bd:ea:67: 0c:0f:56:e5:2c:31:b9:fd:95:c0:a0:18:57:35:87:db:02:2a: 18:10:f6:21:f3:c4:e1:61:2d:ab:3e:1c:a7:1b:2f:5b:5f:cb: 8f:e3:4a:44:5c:6d:a2:3c:3d:9a:8f:c2:81:0b:2e:00:65:40: 5b:82:03:86:94:f9:2a:cd:05:ef:22:00:03:f9:2c:8d:e2:2f: f9:c0:50:c1:bb:6e:01:39:9c:1a:34:6e:bb:2f:43:3a:77:e0: 69:cf:6f:9b:b3:5b:5b:6c:79:75:a4:b6:50:85:fc:6f:9a:d8: a5:9f:f2:fa:8e:7f:b8:d5:4c:ab:f8:df:34:63:17:5f:8a:ad: bb:fa:51:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUwNzAyMjExMDI5WhcNMjUwNzA5MjExMDI5WjAYMRYwFAYD VQQDEw02ODY1YTA0NS1kNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPcBRTZgAk93A8xbNla1Wqihu9xQkMFbjVjfNIzLuNygzAUXUGz/ETLR+TR2 zvnB7DnnEWfM6cH0NpxWZUwCQcPnb68jT5OZPCGMwYaJlvB60TxAuHC4H39yQu1f /ID6N8zmlU2BC/trc7I8/h/Y47vMvDt69wT/TBmhR45xQtVWI4ITLSeJFkaZAeRu j7qjV9jUEC8sgnnVLuAGPsaQjlNw9tDXk2f01Nq6s4oHUsJOT2wz0JcNkegCnPv6 dmjflYIRwRz41zUL+8d/SRBs3VR1K4XoZV/K3Pn/TN1cExjplZoKm1xGSvm+i7fq q0FwkCdDvf+PpaLb0n5XZO+AzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmskLGI RsF1hprVMCx1etP/QbVrMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdrvrNMQFcrhO7LqYwGqy/j/dsbgrza03qe0fPQezHppcQAfI5Fn+5 KPHvi/lwwW418NGgoUadeBJ9mz9uoT3h4apFxIDNxZrzv0hqVMv1O1VCv4Dip3un 64rH8aPtm1aCqnQeCA7PpPtHROvknXyzMM0ynBpp/uc5Ke696mcMD1blLDG5/ZXA oBhXNYfbAioYEPYh88ThYS2rPhynGy9bX8uP40pEXG2iPD2aj8KBCy4AZUBbggOG lPkqzQXvIgAD+SyN4i/5wFDBu24BOZwaNG67L0M6d+Bpz2+bs1tbbHl1pLZQhfxv mtiln/L6jn+41Uyr+N80Yxdfiq27+lHT -----END CERTIFICATE-----Generated at Thu Jul 3 00:49:15 2025 by rpki-client