$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: adzl40fUbVbcvFSHFqxHTN98Vj27PV7Ry5n/nMJLLsU= Subject key identifier: B4:95:B2:45:ED:46:3E:EE:8D:F7:DB:C0:5A:0E:06:52:3A:3D:6C:B8 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CD7 Signing time: Wed 02 Jul 2025 16:17:25 +0000 Manifest this update: Wed 02 Jul 2025 16:17:25 +0000 Manifest next update: Wed 09 Jul 2025 16:17:25 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: U7QIMglYGb3U7bLFwyf/JM846uht53XrHgCiGRqWlXo=) 2: EB7012446FDE11E9AF945067C4F9AE02.roa (hash: 7u9f+gWjW4ewcVZaqyMD9ZqpjL5Hz8NvrMbvw9f5dXY=) 3: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7402 (0x1cea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Jul 2 16:17:25 2025 GMT Not After : Jul 9 16:17:25 2025 GMT Subject: CN=68655b95-e081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8b:3a:18:cf:b4:25:78:bd:e9:ba:37:38:42: ee:af:48:c7:9a:91:33:9f:1e:ac:31:92:d7:8c:cd: da:c2:ca:8b:53:28:ac:52:d4:3a:99:b0:6b:8c:87: 48:1f:e7:f1:32:78:ac:c4:37:1f:ad:d8:ef:b6:d5: 50:d0:70:f3:00:ae:61:27:0d:3e:2c:a9:6b:82:aa: 0f:9c:2e:cd:c0:01:c1:e9:64:18:fa:44:4b:52:1c: db:aa:0c:10:83:b7:be:54:30:87:97:5e:1c:ee:6a: 10:22:71:c6:dc:d8:85:42:35:cc:8f:3a:ce:eb:7e: 94:af:47:e6:9d:6b:c1:87:0f:8e:e4:20:3d:55:be: 08:e5:af:ae:58:c1:08:74:d8:37:27:a4:b1:38:0f: 03:86:86:e3:86:c2:67:58:54:64:39:01:dd:d5:b6: bc:d5:d6:8d:1c:ca:3e:f3:87:23:68:d9:2c:f3:16: d1:80:15:dd:92:db:33:41:9d:07:e4:2a:e2:b2:39: 57:43:f0:f3:65:e1:e5:55:76:cb:d3:67:5d:e9:83: 0b:9d:d7:f3:30:bb:8b:67:db:b7:da:7d:02:61:49: 51:19:a5:3f:19:b8:36:e0:d2:eb:3c:47:fe:12:78: 37:08:e8:cd:59:0a:2d:c6:34:13:9a:e5:de:9e:97: 1b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:95:B2:45:ED:46:3E:EE:8D:F7:DB:C0:5A:0E:06:52:3A:3D:6C:B8 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:92:7d:5a:ce:65:4d:b1:00:fd:25:e3:f6:2f:da:59:7a:3b: 8a:99:33:0e:e1:f7:e3:68:56:37:17:e3:80:cf:fb:f2:cc:5f: 17:ba:60:74:47:4e:47:4b:cf:e0:33:64:3c:3a:f4:cd:8f:83: 0f:02:80:bc:18:e2:49:9d:00:85:09:81:95:de:31:2a:38:4c: a8:3c:ab:e0:e4:18:50:bc:00:b5:a2:e9:82:e8:36:2b:ab:56: df:b8:43:25:08:02:1a:8f:8b:1f:2e:27:35:1a:b6:74:c2:f7: 64:b5:d5:d3:15:97:c9:c9:3f:ef:ae:b1:bc:31:d8:e2:77:3e: d4:e9:d8:7c:2d:15:c7:0d:f3:ac:62:6a:0c:30:65:9a:45:80: 7a:38:66:b0:2b:79:a5:69:4b:46:fb:21:82:b3:df:fc:04:59: 4f:2d:a4:c5:76:a9:cf:c4:48:e0:e3:71:90:0d:22:e1:1d:ed: 39:5d:7b:ee:52:c4:ce:cf:8c:95:87:d5:3c:59:40:81:29:92: 12:cd:1c:5d:44:e0:2a:fa:c1:16:34:7f:76:34:58:10:05:b5: 5b:d2:30:e7:c3:5a:a5:8e:ce:95:77:b3:bc:18:1c:12:47:12: 8e:29:e6:58:8f:b5:e3:07:61:34:91:e2:6d:bd:74:39:75:75: 90:a3:58:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwNzAyMTYxNzI1WhcNMjUwNzA5MTYxNzI1WjAYMRYwFAYD VQQDEw02ODY1NWI5NS1lMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Is6GM+0JXi96bo3OELur0jHmpEznx6sMZLXjM3awsqLUyisUtQ6mbBrjIdI H+fxMnisxDcfrdjvttVQ0HDzAK5hJw0+LKlrgqoPnC7NwAHB6WQY+kRLUhzbqgwQ g7e+VDCHl14c7moQInHG3NiFQjXMjzrO636Ur0fmnWvBhw+O5CA9Vb4I5a+uWMEI dNg3J6SxOA8DhobjhsJnWFRkOQHd1ba81daNHMo+84cjaNks8xbRgBXdktszQZ0H 5CrisjlXQ/DzZeHlVXbL02dd6YMLndfzMLuLZ9u32n0CYUlRGaU/Gbg24NLrPEf+ Eng3COjNWQotxjQTmuXenpcbBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSVskXt Rj7ujffbwFoOBlI6PWy4MB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3kn1azmVNsQD9JeP2L9pZejuKmTMO4ffjaFY3F+OAz/vyzF8XumB0 R05HS8/gM2Q8OvTNj4MPAoC8GOJJnQCFCYGV3jEqOEyoPKvg5BhQvAC1oumC6DYr q1bfuEMlCAIaj4sfLic1GrZ0wvdktdXTFZfJyT/vrrG8Mdjidz7U6dh8LRXHDfOs YmoMMGWaRYB6OGawK3mlaUtG+yGCs9/8BFlPLaTFdqnPxEjg43GQDSLhHe05XXvu UsTOz4yVh9U8WUCBKZISzRxdROAq+sEWNH92NFgQBbVb0jDnw1qljs6Vd7O8GBwS RxKOKeZYj7XjB2E0keJtvXQ5dXWQo1h/ -----END CERTIFICATE-----Generated at Thu Jul 3 10:50:00 2025 by rpki-client