$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft File: iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json) Hash identifier: uozfKFnBR9oaxkC0pN1Q8dCJbo7urOkMQtNQVTTa4+w= Subject key identifier: 04:EA:40:F0:64:8E:8A:8A:7A:6E:4D:DC:74:28:C5:32:35:D0:B9:7B Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft Manifest number: 05 Signing time: Sat 23 Aug 2025 08:23:57 +0000 Manifest this update: Sat 23 Aug 2025 08:23:56 +0000 Manifest next update: Sat 30 Aug 2025 08:23:56 +0000 Files and hashes: 1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: ik5H8uAGWRahUzvTJ4RcJePG92PmIwa0pzQAXP7VHKE=) 2: EC9842367B5311F0837B8087C4F9AE02.roa (hash: bZzEkzZszvb4JsWyoagiYFa9QiH8SNgd2C7pkAWgZCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Aug 23 08:23:56 2025 GMT Not After : Aug 30 08:23:56 2025 GMT Subject: CN=68a97a9c-97ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:88:fa:b3:b8:c5:68:f8:08:2c:51:7f:36:b4: 2f:b7:15:f1:b3:32:7b:6c:36:b0:87:83:4b:6b:63: 16:a6:e5:c6:96:f7:50:d4:04:02:0b:39:bf:f7:34: a6:e0:b4:94:a1:dc:5e:5a:83:08:75:86:07:52:02: 10:c4:ff:e4:b0:75:95:e4:30:e3:e4:98:08:60:9a: 32:58:e2:f2:1b:66:c3:47:6b:b0:e8:04:ca:a4:14: f2:bd:1f:7f:07:a0:8b:16:ab:6d:e5:c8:b8:9c:bd: ba:8d:73:fa:ce:da:43:47:65:dd:80:4f:42:95:75: a0:87:db:be:d7:06:d9:c9:78:67:48:54:58:c8:48: ea:b8:ca:f4:8f:79:03:42:52:09:ae:52:7d:35:3e: 58:96:98:50:12:64:f0:ec:ad:ac:e2:f2:44:78:4e: e2:1a:35:dc:6f:16:44:95:19:ae:fa:82:11:46:4a: 55:37:e6:c5:d7:69:a0:59:66:96:8b:1b:d5:b2:2c: d0:b8:a6:7e:b1:89:20:c7:52:85:fb:0a:2f:43:4b: de:03:e8:ff:71:73:09:57:29:ef:2b:8d:f5:e2:43: 34:ec:f9:4a:a6:aa:c3:08:09:bf:3b:d1:37:c8:5f: d4:ec:ea:96:65:2e:3c:cb:d7:c1:e3:b5:30:11:e9: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:EA:40:F0:64:8E:8A:8A:7A:6E:4D:DC:74:28:C5:32:35:D0:B9:7B X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6e:95:44:8d:cf:3e:7d:41:d3:e8:74:1a:1b:3f:34:53:06: eb:f0:68:4d:4d:72:61:c7:86:be:a9:42:49:1f:96:b3:eb:05: dd:93:dc:0f:e4:40:69:75:61:7d:20:43:f8:4a:05:bb:52:60: 95:4f:46:03:ab:a7:02:3b:31:76:12:15:56:df:15:cd:4d:84: 0e:38:48:6b:21:5d:06:e7:20:0e:39:3a:91:02:19:ab:3c:23: ee:bd:9c:e9:6a:e1:13:84:45:ed:70:31:48:ae:fb:d9:24:4c: 3c:27:44:e6:df:4d:fb:fe:06:4a:26:90:7b:b3:78:2d:98:89: f1:04:5c:60:67:13:a5:22:c2:05:45:ca:51:73:0d:83:36:ac: 9a:fe:92:29:59:95:07:81:bf:d6:0b:fe:a5:56:35:a9:8a:8f: 01:9c:b3:0e:6f:9a:be:f4:53:84:10:20:15:c3:36:ef:c6:16: 10:17:ea:69:4b:18:8a:81:e5:61:88:f5:9d:49:4c:08:f1:4f: 68:1f:c3:5e:53:18:e5:93:16:cb:05:84:35:59:ca:b4:98:b3: 96:d2:ed:a6:9d:19:e3:e2:cd:c9:ff:6f:08:1c:38:80:23:13: c9:e0:b1:38:29:dd:b4:00:16:c7:91:67:72:19:e3:47:3d:12: 4a:2d:cb:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTA4MjMwODIzNTZaFw0yNTA4MzAwODIzNTZaMBgxFjAUBgNV BAMTDTY4YTk3YTljLTk3YWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCriPqzuMVo+AgsUX82tC+3FfGzMntsNrCHg0trYxam5caW91DUBAILOb/3NKbg tJSh3F5agwh1hgdSAhDE/+SwdZXkMOPkmAhgmjJY4vIbZsNHa7DoBMqkFPK9H38H oIsWq23lyLicvbqNc/rO2kNHZd2AT0KVdaCH277XBtnJeGdIVFjISOq4yvSPeQNC UgmuUn01PliWmFASZPDsrazi8kR4TuIaNdxvFkSVGa76ghFGSlU35sXXaaBZZpaL G9WyLNC4pn6xiSDHUoX7Ci9DS94D6P9xcwlXKe8rjfXiQzTs+UqmqsMICb870TfI X9Ts6pZlLjzL18HjtTAR6S5zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBOpA8GSO iop6bk3cdCjFMjXQuXswHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 MEUwLzNGQkI1RTA0N0I1MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3Uz ZWJCM1VsVWZjeVpVczJyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9ulUSNzz59QdPodBobPzRTBuvwaE1NcmHHhr6pQkkflrPrBd2T3A/k QGl1YX0gQ/hKBbtSYJVPRgOrpwI7MXYSFVbfFc1NhA44SGshXQbnIA45OpECGas8 I+69nOlq4ROERe1wMUiu+9kkTDwnRObfTfv+BkomkHuzeC2YifEEXGBnE6UiwgVF ylFzDYM2rJr+kilZlQeBv9YL/qVWNamKjwGcsw5vmr70U4QQIBXDNu/GFhAX6mlL GIqB5WGI9Z1JTAjxT2gfw15TGOWTFssFhDVZyrSYs5bS7aadGePizcn/bwgcOIAj E8ngsTgp3bQAFseRZ3IZ40c9Ekoty24= -----END CERTIFICATE-----Generated at Sat Aug 23 18:34:51 2025 by rpki-client