$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: pW4ptc0+09Q54J8p2Iwx63vQc3+iPbELkEd1F39Tx/E= Subject key identifier: F1:DD:92:3C:2E:94:90:A0:9E:B2:57:5A:52:17:DC:44:7D:A5:A9:D8 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 0182 Signing time: Sat 23 Aug 2025 03:45:57 +0000 Manifest this update: Sat 23 Aug 2025 03:45:57 +0000 Manifest next update: Sat 30 Aug 2025 03:45:57 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: uiB/5NER8UiQhwlkwEwXJ9z5W5bxEiW0TRPJy0NPIME=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Aug 23 03:45:57 2025 GMT Not After : Aug 30 03:45:57 2025 GMT Subject: CN=68a93975-9899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:3f:0e:50:2b:a5:c0:d6:5f:6a:ff:c8:0a: 23:48:cf:9d:4b:b6:88:ed:b6:0c:16:fe:b7:14:b1: 13:90:0c:93:18:9e:bb:43:5f:5d:43:75:29:e8:d3: 46:70:31:3d:fc:21:49:31:9d:10:64:64:93:dd:f1: 84:02:f4:4d:13:7f:76:1a:11:e2:7f:75:77:07:5c: ed:70:5a:52:eb:58:ef:2d:b4:cc:52:ef:80:60:bb: d0:9c:9c:39:06:ac:6c:0a:ee:b1:40:4f:5f:d1:fe: 56:35:4f:d8:41:f8:38:11:1c:86:7d:17:88:09:42: d3:4b:ba:22:2e:a8:1a:eb:b1:27:05:9d:9f:ad:4a: 46:c6:c9:f8:43:a1:c5:b9:25:4d:af:21:9b:60:72: 0a:01:e9:ae:84:aa:ef:83:62:6b:43:4e:52:cb:e0: b6:e1:8a:9a:f3:54:c9:0a:97:70:e0:4c:28:ea:ec: d9:d0:b4:cb:f6:8c:ce:88:5f:f5:be:e1:9e:25:6f: 2c:e9:71:f0:8c:43:ab:16:f8:8f:d8:64:72:1d:61: af:fe:fd:51:70:8c:e3:fc:36:c9:b8:a4:08:f5:01: 40:e7:1c:3d:00:50:86:39:34:30:29:0d:5f:fd:8e: b2:3b:c7:c1:cf:83:11:27:51:86:ac:b0:73:44:cc: 4b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DD:92:3C:2E:94:90:A0:9E:B2:57:5A:52:17:DC:44:7D:A5:A9:D8 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:36:31:de:10:00:f7:db:c6:f9:c4:24:28:25:5d:47:70:e5: db:cd:b1:a2:fc:15:31:e3:61:0c:04:ac:22:c7:26:62:99:f6: c4:6e:84:67:43:e3:57:a9:f6:44:dc:1f:f4:c1:8c:84:ef:bf: 49:e7:ea:27:de:31:b2:ff:20:37:eb:dd:a3:19:d2:c3:92:60: 32:56:3b:b8:2d:3a:89:89:09:27:c0:1d:95:87:3f:5f:a6:7b: 9f:ff:4d:32:4b:7b:92:ea:53:01:4b:a3:d8:b5:24:93:a2:33: 95:84:62:76:fa:a4:35:17:c1:5f:2b:2e:f6:09:a4:0f:c3:8e: da:dd:91:5f:49:74:fc:9a:2c:01:eb:d9:71:0b:8f:44:07:9a: 06:33:93:09:0a:4f:4a:63:6f:06:11:38:68:37:a2:71:1e:6f: 30:a9:aa:32:1d:0d:d7:13:9a:44:24:2e:8a:b8:34:e2:2c:38: e8:ac:e0:78:ea:33:84:e2:88:83:f2:e2:30:5a:dc:1b:70:15: 45:8c:fd:1c:0b:0f:ed:80:29:8e:c4:23:ff:54:22:dc:77:75: 6c:11:67:f6:d4:98:f4:96:b4:60:f1:f1:49:cf:a5:10:2e:c4: d3:54:fa:7e:0b:b4:be:c8:e0:18:1b:f8:74:1a:d8:c8:04:70: 63:27:51:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwODIzMDM0NTU3WhcNMjUwODMwMDM0NTU3WjAYMRYwFAYD VQQDEw02OGE5Mzk3NS05ODk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8k/DlArpcDWX2r/yAojSM+dS7aI7bYMFv63FLETkAyTGJ67Q19dQ3Up6NNG cDE9/CFJMZ0QZGST3fGEAvRNE392GhHif3V3B1ztcFpS61jvLbTMUu+AYLvQnJw5 BqxsCu6xQE9f0f5WNU/YQfg4ERyGfReICULTS7oiLqga67EnBZ2frUpGxsn4Q6HF uSVNryGbYHIKAemuhKrvg2JrQ05Sy+C24Yqa81TJCpdw4Ewo6uzZ0LTL9ozOiF/1 vuGeJW8s6XHwjEOrFviP2GRyHWGv/v1RcIzj/DbJuKQI9QFA5xw9AFCGOTQwKQ1f /Y6yO8fBz4MRJ1GGrLBzRMxLQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHdkjwu lJCgnrJXWlIX3ER9panYMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdNjHeEAD328b5xCQoJV1HcOXbzbGi/BUx42EMBKwixyZimfbEboRn Q+NXqfZE3B/0wYyE779J5+on3jGy/yA3692jGdLDkmAyVju4LTqJiQknwB2Vhz9f pnuf/00yS3uS6lMBS6PYtSSTojOVhGJ2+qQ1F8FfKy72CaQPw47a3ZFfSXT8miwB 69lxC49EB5oGM5MJCk9KY28GEThoN6JxHm8wqaoyHQ3XE5pEJC6KuDTiLDjorOB4 6jOE4oiD8uIwWtwbcBVFjP0cCw/tgCmOxCP/VCLcd3VsEWf21Jj0lrRg8fFJz6UQ LsTTVPp+C7S+yOAYG/h0GtjIBHBjJ1Fd -----END CERTIFICATE-----Generated at Sat Aug 23 11:41:33 2025 by rpki-client