$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: UzR0gHjkBquP5NMxWZWFYaXqBwc138CLLlB8czkuU3s= Subject key identifier: 07:F7:78:37:D5:90:10:EC:9C:E0:D2:78:5B:AC:37:85:B0:9D:EA:C0 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 05A1 Signing time: Sat 23 Aug 2025 00:46:46 +0000 Manifest this update: Sat 23 Aug 2025 00:46:46 +0000 Manifest next update: Sat 30 Aug 2025 00:46:46 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 0fc38JYB+3hflDdIYSLlx7BT7/syAxeyHINqgHWldyQ=) 2: 9DFE04787F8411F0AAC1963BC4F9AE02.roa (hash: CtN+xxhUO3bDEdjbEM7vq/EcPqW7lv1VXztGCW7n23A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Aug 23 00:46:46 2025 GMT Not After : Aug 30 00:46:46 2025 GMT Subject: CN=68a90f76-8b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:95:8f:b8:41:4a:04:bc:10:70:cb:c8:42:15: 50:32:68:01:fe:74:1c:ea:9c:d1:ec:48:a6:b2:ef: c6:88:e7:cb:34:cc:63:4b:82:75:ca:97:55:46:78: 4d:2e:a5:27:ee:41:a7:99:4a:3c:41:22:02:2f:d7: 9d:e5:7b:40:90:2d:96:fc:06:7e:79:13:e3:6b:6c: 32:92:ea:bb:d1:05:18:5d:33:41:bd:9d:53:9e:a6: 18:08:29:78:7e:20:e7:a3:10:db:e8:8d:cb:fb:e9: 22:06:c3:dc:e3:0d:ba:c4:23:80:fe:77:e8:1b:7b: ef:91:e5:62:72:56:01:09:ab:52:cb:6f:c1:af:34: f4:c2:96:f7:f6:2a:9e:59:f7:2a:c7:b4:d3:6b:56: f0:38:8d:4e:da:61:22:ce:b9:34:b3:e6:7a:17:24: 91:b5:81:d5:47:e8:4b:ed:68:84:89:f7:dc:78:85: 9f:13:4d:a2:9c:c9:84:e2:19:47:cc:93:3c:50:3a: 9b:8a:17:0c:9f:07:85:b7:95:ee:97:4e:74:ac:0c: 25:66:ec:5f:e7:0a:f1:b6:e0:5d:c3:f6:f3:a5:2a: 3e:e6:77:f3:48:ae:f2:39:5b:e5:ca:df:7a:3a:fd: 7d:37:bf:62:e4:07:9b:17:7b:e6:b9:6a:32:63:56: bc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F7:78:37:D5:90:10:EC:9C:E0:D2:78:5B:AC:37:85:B0:9D:EA:C0 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:2c:85:91:b3:2f:d7:98:c2:13:34:2c:51:c3:22:58:86:90: d7:98:be:01:97:6f:97:f3:62:09:59:59:40:08:7e:88:57:3f: 97:da:c6:80:08:1e:8d:58:a0:54:1b:78:96:30:68:e9:21:58: 35:5a:da:a8:15:c6:c4:b3:50:f5:19:64:ba:31:58:c5:cd:59: ca:b0:ea:bd:2c:76:11:cb:21:39:7a:95:bd:b1:83:42:9e:d4: 2c:9d:39:29:07:23:1d:85:4b:c8:60:f9:b2:87:ee:08:8b:e5: 18:c9:e4:6d:b4:04:cd:ca:00:1a:c1:1a:4b:d7:cc:c1:32:b3: 45:26:ef:3b:2c:0c:4f:8e:ab:f5:21:5f:a8:f6:da:3d:1f:7a: 01:5b:a5:d5:a1:fd:6b:5b:16:d7:0e:dd:b0:76:27:6e:24:b0: 2b:2a:f8:0f:c1:2e:38:4a:4d:22:77:9d:bc:31:26:a7:a8:d3: 16:c9:cd:f1:1f:9f:46:a6:58:61:76:1b:86:da:63:17:f2:33: 25:53:3d:ca:a9:d3:ba:14:36:7b:9f:38:dc:6d:66:7c:b4:12: 10:25:66:d5:b1:7a:94:8e:e6:36:7f:ed:07:3d:e9:5b:a3:69: cd:43:21:61:ec:e9:ed:65:e8:ed:42:35:30:00:f5:16:9b:c7: a9:81:d0:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwODIzMDA0NjQ2WhcNMjUwODMwMDA0NjQ2WjAYMRYwFAYD VQQDEw02OGE5MGY3Ni04YjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJWPuEFKBLwQcMvIQhVQMmgB/nQc6pzR7Eimsu/GiOfLNMxjS4J1ypdVRnhN LqUn7kGnmUo8QSICL9ed5XtAkC2W/AZ+eRPja2wykuq70QUYXTNBvZ1TnqYYCCl4 fiDnoxDb6I3L++kiBsPc4w26xCOA/nfoG3vvkeViclYBCatSy2/BrzT0wpb39iqe Wfcqx7TTa1bwOI1O2mEizrk0s+Z6FySRtYHVR+hL7WiEiffceIWfE02inMmE4hlH zJM8UDqbihcMnweFt5Xul050rAwlZuxf5wrxtuBdw/bzpSo+5nfzSK7yOVvlyt96 Ov19N79i5AebF3vmuWoyY1a8GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAf3eDfV kBDsnODSeFusN4WwnerAMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmLIWRsy/XmMITNCxRwyJYhpDXmL4Bl2+X82IJWVlACH6IVz+X2saA CB6NWKBUG3iWMGjpIVg1WtqoFcbEs1D1GWS6MVjFzVnKsOq9LHYRyyE5epW9sYNC ntQsnTkpByMdhUvIYPmyh+4Ii+UYyeRttATNygAawRpL18zBMrNFJu87LAxPjqv1 IV+o9to9H3oBW6XVof1rWxbXDt2wdiduJLArKvgPwS44Sk0id528MSanqNMWyc3x H59GplhhdhuG2mMX8jMlUz3KqdO6FDZ7nzjcbWZ8tBIQJWbVsXqUjuY2f+0HPelb o2nNQyFh7OntZejtQjUwAPUWm8epgdDI -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:09 2025 by rpki-client