$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: T8rhCSgfHlXLxHT1/tHlEl7V1rOcm8BpqtiWIiRsdhg= Subject key identifier: C0:AF:49:B2:9B:61:76:33:19:0A:A8:49:EF:91:C3:3D:D1:5F:2D:13 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 50 Signing time: Sat 19 Jul 2025 07:31:01 +0000 Manifest this update: Sat 19 Jul 2025 07:31:01 +0000 Manifest next update: Sat 26 Jul 2025 07:31:01 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: cnicJ+UvOatdC43vo1BJiADphYfa1zQFpuq2/8dF/GE=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Jul 19 07:31:01 2025 GMT Not After : Jul 26 07:31:01 2025 GMT Subject: CN=687b49b5-e839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:19:99:1d:de:52:9a:9b:4b:bf:10:cf:80:c0: a1:1f:fb:fa:14:08:b3:3a:f3:ff:5a:a6:dc:ed:45: 73:03:78:6e:ba:73:92:9c:48:8e:75:c2:52:b0:3e: 11:01:b4:ac:2d:48:e4:76:c8:c0:8e:d0:9f:b4:72: ce:86:37:60:e0:fc:1f:fe:8f:af:98:c0:cb:19:2f: 54:28:82:bc:cd:29:9f:f2:a8:f7:b9:84:fc:eb:51: b8:88:65:73:71:85:9e:53:e1:bc:b5:ef:a5:5c:f7: 5e:6f:29:f0:70:aa:82:4c:1e:e7:dc:9c:e4:50:eb: f9:b3:b4:23:01:27:aa:2d:d2:b9:79:5e:14:f4:54: df:77:0f:40:d7:7e:c2:06:bf:24:d5:e6:8f:3e:ba: 67:7d:c4:61:c4:16:d2:72:f9:8a:ab:5d:16:28:38: b9:11:50:d4:29:2e:04:c7:f7:c1:74:62:33:64:7d: 64:93:39:72:69:08:1b:cd:53:de:50:3c:4e:68:cd: 3f:81:e2:d7:ab:be:0f:a4:15:2a:b9:cc:fe:51:98: 27:bc:55:fd:ca:02:4e:58:df:57:80:27:3e:63:b8: ee:f4:1c:f6:f3:2d:4f:8e:e1:01:f7:c0:dd:0b:bb: 18:0b:18:a3:2d:1b:c1:74:6f:cc:7f:7b:e1:64:c4: 09:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AF:49:B2:9B:61:76:33:19:0A:A8:49:EF:91:C3:3D:D1:5F:2D:13 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:9b:52:47:a6:72:4b:b6:7e:44:e5:35:d6:7c:da:57:3a:0e: db:c5:bb:3c:b0:36:df:bb:2d:90:37:7d:80:5b:a3:10:9b:e3: 11:33:14:3b:03:5b:2b:bf:af:9e:96:25:ee:60:68:ce:3b:60: 54:ea:48:ef:86:68:cd:45:20:da:e6:e1:a5:49:03:d6:a4:6a: d1:ac:cf:41:46:f7:4e:84:77:8a:d5:01:ef:2e:42:b2:f7:07: ea:76:60:70:cf:60:95:51:93:d6:68:f5:9c:e3:48:89:7a:8a: 84:6a:5c:99:23:5d:53:3a:d8:ea:94:6f:ae:f9:56:7f:ef:2d: 12:00:2a:7a:3d:c4:d3:be:1b:ff:eb:b7:05:11:63:5d:c1:52: dc:d7:3a:39:2d:74:89:85:4e:43:a8:73:79:92:ba:35:35:ef: 6f:28:24:ca:6c:74:67:87:4a:22:f0:e6:3a:55:72:e3:ca:93: ed:ca:8a:69:d7:ae:7d:01:03:63:87:2c:e4:3e:6e:19:14:a7: d7:e2:26:fa:97:49:5e:d5:5f:e7:81:65:1e:a3:b7:43:9c:9d: 5c:90:c1:b4:68:db:04:09:3a:ac:b6:6f:5d:8a:f0:f4:e0:ce: 3b:4a:63:77:5e:e7:47:58:c2:94:c5:78:94:3e:b7:9b:8c:ca: 2d:11:6e:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA3MTkwNzMxMDFaFw0yNTA3MjYwNzMxMDFaMBgxFjAUBgNV BAMTDTY4N2I0OWI1LWU4MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmGZkd3lKam0u/EM+AwKEf+/oUCLM68/9aptztRXMDeG66c5KcSI51wlKwPhEB tKwtSOR2yMCO0J+0cs6GN2Dg/B/+j6+YwMsZL1QogrzNKZ/yqPe5hPzrUbiIZXNx hZ5T4by176Vc915vKfBwqoJMHufcnORQ6/mztCMBJ6ot0rl5XhT0VN93D0DXfsIG vyTV5o8+umd9xGHEFtJy+YqrXRYoOLkRUNQpLgTH98F0YjNkfWSTOXJpCBvNU95Q PE5ozT+B4tervg+kFSq5zP5RmCe8Vf3KAk5Y31eAJz5juO70HPbzLU+O4QH3wN0L uxgLGKMtG8F0b8x/e+FkxAkbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwK9Jspth djMZCqhJ75HDPdFfLRMwHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADGbUkemcku2fkTlNdZ82lc6DtvFuzywNt+7LZA3fYBboxCb4xEzFDsD Wyu/r56WJe5gaM47YFTqSO+GaM1FINrm4aVJA9akatGsz0FG906Ed4rVAe8uQrL3 B+p2YHDPYJVRk9Zo9ZzjSIl6ioRqXJkjXVM62OqUb675Vn/vLRIAKno9xNO+G//r twURY13BUtzXOjktdImFTkOoc3mSujU1728oJMpsdGeHSiLw5jpVcuPKk+3KimnX rn0BA2OHLOQ+bhkUp9fiJvqXSV7VX+eBZR6jt0OcnVyQwbRo2wQJOqy2b12K8PTg zjtKY3de50dYwpTFeJQ+t5uMyi0Rbig= -----END CERTIFICATE-----Generated at Sun Jul 20 15:14:10 2025 by rpki-client