$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: pK9YZE476gXsktuzXJlsmXWkj2VMwWb+u3XrnFsaBeM= Subject key identifier: 99:33:39:73:83:38:F6:D7:7F:9E:F7:E8:FA:FC:C7:9C:F2:A4:6E:A6 Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: E7 Signing time: Sat 23 Aug 2025 05:36:00 +0000 Manifest this update: Sat 23 Aug 2025 05:35:59 +0000 Manifest next update: Sat 30 Aug 2025 05:35:59 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: y7/n7ERqI2Welb8SHxdTCDj729arhTyDknBFOXJY6LQ=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: Ha/cGz3EuqzsAq4mNf1LJHzYtP6EU2XABOfv8TEGk30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Aug 23 05:35:59 2025 GMT Not After : Aug 30 05:35:59 2025 GMT Subject: CN=68a95340-79b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:e0:d6:e4:4a:ba:d2:89:cb:63:4d:99:a9: ad:5c:b2:16:14:ad:86:26:64:ba:61:6c:74:8b:89: 2c:27:28:16:9e:c3:91:c1:9e:09:e2:fd:47:82:05: 4b:ae:d9:2f:ad:b0:3c:ae:22:86:3f:7b:64:4c:0e: e9:3d:6d:09:c3:4c:32:a8:e0:51:af:40:e9:16:da: 9b:2c:bb:1d:ea:bd:a3:3d:95:cc:44:1e:a3:5e:45: b6:13:f4:9f:b2:d8:4c:4e:c1:9e:aa:72:ac:27:36: 48:4e:4a:28:a5:2f:8d:f7:51:8b:06:4a:a6:de:d1: ec:3e:03:6f:14:a6:57:05:f9:99:61:e8:a3:ed:93: b5:b0:b8:4f:29:e0:4e:4c:36:05:80:dc:6b:32:10: 9c:a0:82:a4:b2:1f:bd:46:87:b2:4a:35:f4:a5:d3: 15:93:f4:f3:49:f3:03:e9:78:5e:ee:f5:02:2f:f5: f9:13:ec:b4:62:60:5b:44:9e:81:ca:96:8d:ae:4c: df:83:f8:c6:b3:50:62:88:27:de:06:b2:ab:81:76: 7f:4b:2f:3b:63:5a:b8:25:da:0d:74:ad:8a:88:b3: 11:83:6c:18:83:21:d6:bc:77:b8:4b:6e:fc:0f:a7: a3:17:e5:c7:81:fa:bf:a7:68:27:2c:c9:92:9d:f5: 47:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:33:39:73:83:38:F6:D7:7F:9E:F7:E8:FA:FC:C7:9C:F2:A4:6E:A6 X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ef:f0:e3:e2:c2:31:8c:33:7d:79:33:7e:6c:0b:3e:f8:c2: bb:e4:da:89:01:96:ac:70:52:a8:6e:55:5e:75:88:6b:9b:95: e1:47:29:7c:ae:50:1f:b2:6b:f3:85:78:2c:9b:82:ef:29:05: 99:70:32:0a:85:7e:56:a4:56:ce:ea:d7:2e:8a:26:40:d1:96: 61:fe:7a:2e:07:24:ea:22:e3:de:ff:14:b7:fe:7a:05:f3:88: 0c:eb:bc:7b:13:f2:37:e6:b3:f8:2b:e6:1b:09:be:3c:d6:94: 5d:bf:f0:60:ac:3b:27:ce:a0:92:76:22:1e:2b:00:40:72:8b: 44:7e:65:37:39:21:9f:8e:1c:73:40:bf:80:4a:8e:29:d4:ab: 81:e2:9d:d2:c7:e5:5b:69:68:d8:3f:a5:5d:1e:1f:01:e4:b7: 59:f3:65:ca:fc:62:d5:e9:2c:37:80:ee:99:4e:91:42:7c:45: 39:3b:a4:d7:7c:43:0b:83:49:d9:49:ef:9a:07:bf:c3:73:1f: e5:1f:08:04:22:8e:f0:dc:b1:e5:01:01:c1:c6:b7:a5:df:66: 17:df:b6:23:79:12:1c:72:21:75:ca:db:dd:b1:3f:05:b2:99: 59:ae:66:46:f9:02:fd:54:5e:75:26:e5:30:9c:a1:4e:41:e4: 7e:5b:1b:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUwODIzMDUzNTU5WhcNMjUwODMwMDUzNTU5WjAYMRYwFAYD VQQDEw02OGE5NTM0MC03OWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotfg1uRKutKJy2NNmamtXLIWFK2GJmS6YWx0i4ksJygWnsORwZ4J4v1HggVL rtkvrbA8riKGP3tkTA7pPW0Jw0wyqOBRr0DpFtqbLLsd6r2jPZXMRB6jXkW2E/Sf sthMTsGeqnKsJzZITkoopS+N91GLBkqm3tHsPgNvFKZXBfmZYeij7ZO1sLhPKeBO TDYFgNxrMhCcoIKksh+9RoeySjX0pdMVk/TzSfMD6Xhe7vUCL/X5E+y0YmBbRJ6B ypaNrkzfg/jGs1BiiCfeBrKrgXZ/Sy87Y1q4JdoNdK2KiLMRg2wYgyHWvHe4S278 D6ejF+XHgfq/p2gnLMmSnfVHlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkzOXOD OPbXf5736Pr8x5zypG6mMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp7/Dj4sIxjDN9eTN+bAs++MK75NqJAZascFKoblVedYhrm5XhRyl8 rlAfsmvzhXgsm4LvKQWZcDIKhX5WpFbO6tcuiiZA0ZZh/nouByTqIuPe/xS3/noF 84gM67x7E/I35rP4K+YbCb481pRdv/BgrDsnzqCSdiIeKwBAcotEfmU3OSGfjhxz QL+ASo4p1KuB4p3Sx+VbaWjYP6VdHh8B5LdZ82XK/GLV6Sw3gO6ZTpFCfEU5O6TX fEMLg0nZSe+aB7/Dcx/lHwgEIo7w3LHlAQHBxrel32YX37YjeRIcciF1ytvdsT8F splZrmZG+QL9VF51JuUwnKFOQeR+Wxvb -----END CERTIFICATE-----Generated at Sat Aug 23 12:07:25 2025 by rpki-client