$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: iwDnmy54vJjg7+4ZrTaQp7ukymTCeqvVJ3eAanSo6W0= Subject key identifier: B1:1B:51:82:1C:86:32:77:E1:00:23:85:FA:B8:1A:01:20:B9:99:09 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CF2 Signing time: Fri 22 Aug 2025 16:14:25 +0000 Manifest this update: Fri 22 Aug 2025 16:14:25 +0000 Manifest next update: Fri 29 Aug 2025 16:14:25 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: V6FAj6tt/oSPq0A9Yep+zxsk2SStOUcdQ9V/XER7i08=) 2: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: 2aGejYYAILu+vq+h9Ds1ItJ4A2WEADfQRUwQnuAzQp4=) 3: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: dyKQZQJFWOlaLCos4pICmePW3GQtvzVk28wWqQnX6xA=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7431 (0x1d07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Aug 22 16:14:25 2025 GMT Not After : Aug 29 16:14:25 2025 GMT Subject: CN=68a89761-6233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:18:20:08:f4:d2:84:0b:f2:92:11:be:0b: 3d:55:a2:0d:e5:a7:1e:5a:39:ff:54:50:69:7d:b7: 87:3d:d2:2b:d6:68:95:b0:22:4f:89:63:82:17:08: d4:08:1f:1a:3e:75:4f:7b:ef:2e:93:20:63:b8:90: 94:8e:c0:a1:5b:1c:a7:91:28:6d:e2:53:56:32:5d: 98:34:a7:0f:93:6d:1e:c5:43:8b:11:49:9a:78:5c: 31:8a:50:e5:91:19:be:39:cc:6c:2b:df:33:05:97: be:43:1c:c8:95:12:82:3b:7b:c1:b1:39:cd:a5:f1: f3:ed:bb:20:0e:3b:12:72:e9:5b:5c:b0:5b:90:bf: 93:89:6d:a4:eb:b5:b8:58:59:69:c9:1c:b4:52:e8: 83:1c:91:37:b1:d1:3b:34:9a:6a:56:dd:02:07:95: 5f:9a:67:76:cf:72:0f:05:3e:ae:3c:24:77:38:d7: 12:8d:5c:75:4a:99:39:4c:2b:f4:e8:19:97:8e:1d: 43:a1:7f:c4:a2:2c:47:48:0b:84:57:36:2c:ea:5d: b0:3e:38:9f:ac:20:7b:16:11:94:de:94:a6:41:2d: 8f:69:47:8c:90:81:79:27:33:56:e3:1c:2f:8e:28: d6:18:74:c0:28:e4:9d:9b:51:f7:36:af:73:31:72: 14:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1B:51:82:1C:86:32:77:E1:00:23:85:FA:B8:1A:01:20:B9:99:09 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:fa:11:7b:5a:52:bd:e2:3d:0f:e1:10:23:e3:33:33:69:61: 95:50:dc:9e:e7:36:ca:ff:8e:2f:07:ba:dd:0a:a7:88:c8:83: b1:6d:a0:39:fc:5a:e7:22:c9:a3:de:9a:98:d2:d0:e0:4d:c0: bc:05:e4:20:86:27:a2:07:a5:74:4a:be:40:76:4c:33:7c:c1: 30:a5:8b:2e:6f:7d:4a:bb:b9:b3:81:31:97:b6:6f:9a:b0:1c: 6f:df:5f:ca:25:28:da:0d:c4:ff:1d:4e:d6:bf:9d:ae:2b:37: aa:2e:53:c9:85:bd:7b:88:ea:97:6c:73:01:29:54:3c:1e:54: 76:76:f7:45:22:30:cc:d0:8d:74:c9:18:e4:61:4a:7d:7b:6b: 99:cb:4c:c7:66:90:ff:84:5d:24:73:fb:68:8f:26:06:31:8d: 88:a5:aa:2a:87:b5:10:66:f9:66:2b:37:38:f8:16:02:00:71: 8b:12:a8:14:1b:74:55:4d:a9:24:08:92:76:5c:ae:8b:a9:ce: 27:29:68:25:df:bb:4f:33:ab:3f:0a:f7:36:a3:31:df:c3:76: 4a:ec:48:4e:81:7f:6f:f4:b4:f3:b2:b2:2f:2e:a2:cd:80:62: 16:14:d7:cc:84:a5:3e:8f:2f:ee:d7:2d:31:b5:4f:da:de:a2: b0:4d:a8:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwODIyMTYxNDI1WhcNMjUwODI5MTYxNDI1WjAYMRYwFAYD VQQDEw02OGE4OTc2MS02MjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx90YIAj00oQL8pIRvgs9VaIN5aceWjn/VFBpfbeHPdIr1miVsCJPiWOCFwjU CB8aPnVPe+8ukyBjuJCUjsChWxynkSht4lNWMl2YNKcPk20exUOLEUmaeFwxilDl kRm+OcxsK98zBZe+QxzIlRKCO3vBsTnNpfHz7bsgDjsSculbXLBbkL+TiW2k67W4 WFlpyRy0UuiDHJE3sdE7NJpqVt0CB5Vfmmd2z3IPBT6uPCR3ONcSjVx1Spk5TCv0 6BmXjh1DoX/EoixHSAuEVzYs6l2wPjifrCB7FhGU3pSmQS2PaUeMkIF5JzNW4xwv jijWGHTAKOSdm1H3Nq9zMXIUEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEbUYIc hjJ34QAjhfq4GgEguZkJMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr+hF7WlK94j0P4RAj4zMzaWGVUNye5zbK/44vB7rdCqeIyIOxbaA5 /FrnIsmj3pqY0tDgTcC8BeQghieiB6V0Sr5AdkwzfMEwpYsub31Ku7mzgTGXtm+a sBxv31/KJSjaDcT/HU7Wv52uKzeqLlPJhb17iOqXbHMBKVQ8HlR2dvdFIjDM0I10 yRjkYUp9e2uZy0zHZpD/hF0kc/tojyYGMY2Ipaoqh7UQZvlmKzc4+BYCAHGLEqgU G3RVTakkCJJ2XK6Lqc4nKWgl37tPM6s/Cvc2ozHfw3ZK7EhOgX9v9LTzsrIvLqLN gGIWFNfMhKU+jy/u1y0xtU/a3qKwTajQ -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:12 2025 by rpki-client