$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft File: Iln4cJbkCts8hBgOKLVsPogi9lE.mft (raw, json) Hash identifier: yKxXBzd7vNbPB8R8JSOuiackCmWuqP2TQLgEmF+FQDQ= Subject key identifier: CF:E1:E4:9B:81:00:95:BC:BF:EB:EB:DF:AD:8C:D7:E0:49:1D:EA:E6 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft Manifest number: B6 Signing time: Sat 23 Aug 2025 06:14:24 +0000 Manifest this update: Sat 23 Aug 2025 06:14:23 +0000 Manifest next update: Sat 30 Aug 2025 06:14:23 +0000 Files and hashes: 1: Iln4cJbkCts8hBgOKLVsPogi9lE.crl (hash: pjmhnSOjMrwbOTCy0wewJzkruA6P7Npxt0ebh3R76LE=) 2: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (hash: 3XxXrUl7XjjQy54chnpbCmHALQO6VY0UNh1QIEO4utw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Aug 23 06:14:23 2025 GMT Not After : Aug 30 06:14:23 2025 GMT Subject: CN=68a95c3f-941b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3d:5f:54:c1:00:59:48:1f:d2:f3:52:78:cc: dd:c7:89:e9:89:9b:b6:28:f8:44:63:22:d7:00:b1: b9:5c:f6:02:48:70:ce:c4:b1:00:18:34:6f:8d:7c: c1:05:a4:35:b1:49:07:12:96:8c:c8:1c:b1:30:4d: ae:87:39:6c:3c:a2:14:fe:3d:4a:a7:98:04:d8:d8: 34:72:82:98:c6:90:1b:de:e3:19:ae:f6:7b:fc:e1: 7e:87:1b:7c:37:6d:68:5d:0e:91:2d:42:36:fd:7b: 81:32:0a:a6:9e:c3:e9:12:6f:a2:17:11:f5:0b:7c: 99:d1:77:bd:5e:0f:4e:7a:d1:f5:eb:61:67:bb:9d: 4e:9a:6b:11:53:ca:8c:03:cc:de:bc:6a:2a:e1:61: eb:76:5a:bd:0e:32:85:42:b6:db:8f:40:df:3e:96: 6d:ef:1b:7d:69:ea:8e:89:c1:62:fd:d1:fb:79:42: 1a:54:85:dd:df:88:ab:c2:d0:bc:0d:6d:82:80:21: 41:e2:f6:6c:80:5c:19:4d:42:3e:b9:ef:b2:e1:a9: 74:14:54:d3:f3:3d:72:fe:b7:24:64:28:6c:c1:a1: 4b:bc:0d:04:d5:84:7a:13:b1:f9:2d:79:75:84:99: e8:a6:30:7a:84:ba:d5:18:50:ab:fb:21:59:91:73: 9e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E1:E4:9B:81:00:95:BC:BF:EB:EB:DF:AD:8C:D7:E0:49:1D:EA:E6 X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e8:1a:09:df:ab:db:0f:51:11:f8:d3:67:97:20:6c:1e:44: 42:87:f8:7f:ee:67:d6:f0:6c:5b:49:89:d5:6b:11:6e:29:a2: cb:c2:df:96:ec:94:ad:97:04:ff:33:65:3a:8d:a0:06:87:68: 52:63:66:48:01:3f:98:06:31:f0:91:28:24:2b:70:86:05:b9: 70:68:eb:b4:f3:68:46:08:af:8e:a8:c4:72:a0:c2:c5:0e:c0: 3b:14:ea:f8:c6:16:cc:0a:48:9d:75:8c:aa:dd:cc:d3:6a:16: 9a:e1:bc:6d:6f:ff:02:bf:d5:2d:19:29:5e:da:1d:11:17:17: c7:e0:11:18:16:57:92:61:f2:dc:0b:55:ca:ad:7d:9b:46:7c: 71:7a:81:7d:c2:2e:59:0b:1e:1d:83:b0:82:86:4f:c7:94:ed: b0:2b:1a:bb:a5:f9:27:52:09:a4:fa:d5:eb:28:41:da:ec:19: 68:c4:a2:8e:04:1f:57:e7:36:9d:b8:10:30:8f:be:08:87:c6: 86:e9:20:8e:61:ed:c0:04:46:1d:71:54:e7:91:78:3a:c2:9e: 28:47:bd:e4:bb:38:ce:22:45:f9:99:2f:b8:c3:63:0d:9a:7e: 85:d4:e3:87:96:91:65:01:c4:2b:c4:d9:8a:d4:bc:3d:bf:76: eb:7e:dc:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUwODIzMDYxNDIzWhcNMjUwODMwMDYxNDIzWjAYMRYwFAYD VQQDEw02OGE5NWMzZi05NDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj1fVMEAWUgf0vNSeMzdx4npiZu2KPhEYyLXALG5XPYCSHDOxLEAGDRvjXzB BaQ1sUkHEpaMyByxME2uhzlsPKIU/j1Kp5gE2Ng0coKYxpAb3uMZrvZ7/OF+hxt8 N21oXQ6RLUI2/XuBMgqmnsPpEm+iFxH1C3yZ0Xe9Xg9OetH162Fnu51OmmsRU8qM A8zevGoq4WHrdlq9DjKFQrbbj0DfPpZt7xt9aeqOicFi/dH7eUIaVIXd34irwtC8 DW2CgCFB4vZsgFwZTUI+ue+y4al0FFTT8z1y/rckZChswaFLvA0E1YR6E7H5LXl1 hJnopjB6hLrVGFCr+yFZkXOeRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/h5JuB AJW8v+vr362M1+BJHermMB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0 czhoQmdPS0xWc1BvZ2k5bEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO6BoJ36vbD1ER+NNnlyBsHkRCh/h/7mfW8GxbSYnVaxFuKaLLwt+W 7JStlwT/M2U6jaAGh2hSY2ZIAT+YBjHwkSgkK3CGBblwaOu082hGCK+OqMRyoMLF DsA7FOr4xhbMCkiddYyq3czTahaa4bxtb/8Cv9UtGSle2h0RFxfH4BEYFleSYfLc C1XKrX2bRnxxeoF9wi5ZCx4dg7CChk/HlO2wKxq7pfknUgmk+tXrKEHa7BloxKKO BB9X5zaduBAwj74Ih8aG6SCOYe3ABEYdcVTnkXg6wp4oR73kuzjOIkX5mS+4w2MN mn6F1OOHlpFlAcQrxNmK1Lw9v3brftzQ -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:17 2025 by rpki-client