$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: 6ok6xzRjp9xUe1YohKaEMSReQWL8SRh9ow5z9lxOdUI= Subject key identifier: 91:22:D7:C2:E1:23:1E:0F:90:E8:A0:B1:AC:F4:5B:B4:4B:D4:D3:94 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 0121 Signing time: Sat 23 Aug 2025 04:54:38 +0000 Manifest this update: Sat 23 Aug 2025 04:54:37 +0000 Manifest next update: Sat 30 Aug 2025 04:54:37 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: 6QR9rTnjLWpRTP4G388CC44JVnguJx11N0a/B0c5PQM=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Aug 23 04:54:37 2025 GMT Not After : Aug 30 04:54:37 2025 GMT Subject: CN=68a9498e-8260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:05:ce:ae:e2:29:7d:0a:1e:13:f9:25:7b:0b: 74:b4:b5:7e:98:c8:f0:89:2e:5b:52:7e:19:d3:da: a7:a4:e2:d2:73:a4:11:d7:02:30:84:dc:1e:4b:6a: 39:2c:ff:92:40:61:22:72:72:c6:d1:9c:ff:d1:ec: 90:93:93:ac:e0:ae:dd:8e:2f:64:8f:31:67:fd:60: e0:83:65:1b:44:ed:a2:c7:bb:3c:32:1a:6c:b5:7f: f7:0b:e8:06:25:86:dd:31:f7:2d:5a:52:3d:34:79: 91:34:6c:a9:1a:53:8e:a2:a3:98:c1:78:6b:3a:f5: 48:a3:68:a5:dd:ac:4d:38:08:03:11:10:64:c6:49: 1e:8c:fd:42:59:76:69:d8:f5:83:73:80:48:f8:58: 20:0b:e8:f1:01:73:e4:df:d6:7d:ef:91:59:a2:90: 35:f2:39:ae:e0:54:ea:ca:ed:c3:d2:c6:96:16:f8: 6c:4e:2a:5f:f5:16:f0:f8:ba:cf:23:fd:97:44:b0: 9d:b6:87:9c:f6:33:a8:f7:9d:19:a8:91:1a:17:be: 3f:82:5b:4d:9c:16:de:b8:8c:3c:fa:70:1e:94:aa: d1:12:c0:0c:c3:eb:71:e3:aa:0c:63:e3:6b:20:eb: 5a:9e:aa:06:88:35:f4:2b:1e:47:fb:70:a0:70:57: da:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:22:D7:C2:E1:23:1E:0F:90:E8:A0:B1:AC:F4:5B:B4:4B:D4:D3:94 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:57:96:3e:d5:54:96:f5:31:05:10:6f:24:1e:9c:f3:a9:21: af:e6:02:e2:4e:65:02:48:a3:37:50:4e:ce:d8:29:98:dd:7d: e3:1c:a2:84:8b:ee:4b:94:9a:e8:8a:32:b2:cd:54:5a:ab:50: d6:db:9a:29:08:1a:d3:65:32:c3:9a:21:a9:0c:4c:d5:4b:0c: 95:4a:e3:c6:05:ff:35:a8:6d:21:85:25:91:9a:7e:60:f0:97: 3f:77:6a:98:b7:d7:7d:1a:9f:47:81:71:b0:31:1b:23:f7:1a: a2:54:b6:70:6c:10:5e:b4:59:98:fa:67:5f:14:d7:97:92:e3: 5d:46:48:9b:88:d3:9a:45:85:c9:34:f6:83:4c:f6:61:26:ba: 0c:8d:15:75:12:1b:bc:05:5c:c4:36:fc:b0:46:a2:70:32:b0: a0:d6:98:71:00:c5:4d:b8:01:38:da:05:3e:58:c7:6f:03:3e: d1:39:ca:07:ea:d2:05:33:4a:d7:3d:57:fc:04:66:3a:2b:c5: bb:cb:c4:79:86:47:57:f7:5b:fd:dc:cb:6a:24:19:b2:2d:cc: 5a:5c:d9:2b:a1:54:25:4d:da:2f:52:da:62:82:f8:1a:13:db: ce:6b:c0:68:e5:f3:94:85:4e:b3:4b:57:a6:85:cc:1e:83:b5: 5a:80:cf:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwODIzMDQ1NDM3WhcNMjUwODMwMDQ1NDM3WjAYMRYwFAYD VQQDEw02OGE5NDk4ZS04MjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wXOruIpfQoeE/klewt0tLV+mMjwiS5bUn4Z09qnpOLSc6QR1wIwhNweS2o5 LP+SQGEicnLG0Zz/0eyQk5Os4K7dji9kjzFn/WDgg2UbRO2ix7s8MhpstX/3C+gG JYbdMfctWlI9NHmRNGypGlOOoqOYwXhrOvVIo2il3axNOAgDERBkxkkejP1CWXZp 2PWDc4BI+FggC+jxAXPk39Z975FZopA18jmu4FTqyu3D0saWFvhsTipf9Rbw+LrP I/2XRLCdtoec9jOo950ZqJEaF74/gltNnBbeuIw8+nAelKrREsAMw+tx46oMY+Nr IOtanqoGiDX0Kx5H+3CgcFfaoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEi18Lh Ix4PkOigsaz0W7RL1NOUMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcV5Y+1VSW9TEFEG8kHpzzqSGv5gLiTmUCSKM3UE7O2CmY3X3jHKKE i+5LlJroijKyzVRaq1DW25opCBrTZTLDmiGpDEzVSwyVSuPGBf81qG0hhSWRmn5g 8Jc/d2qYt9d9Gp9HgXGwMRsj9xqiVLZwbBBetFmY+mdfFNeXkuNdRkibiNOaRYXJ NPaDTPZhJroMjRV1Ehu8BVzENvywRqJwMrCg1phxAMVNuAE42gU+WMdvAz7ROcoH 6tIFM0rXPVf8BGY6K8W7y8R5hkdX91v93MtqJBmyLcxaXNkroVQlTdovUtpigvga E9vOa8Bo5fOUhU6zS1emhcweg7VagM/J -----END CERTIFICATE-----Generated at Sat Aug 23 12:34:06 2025 by rpki-client