$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: eZJPcLoc0m9qvsotRMmNqOJdp2G5fLKQf+z/dD3DSIo= Subject key identifier: 17:59:32:2B:1A:25:2B:78:98:2F:85:98:51:49:53:30:DA:DD:FC:99 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 0697 Signing time: Sun 20 Jul 2025 22:22:43 +0000 Manifest this update: Sun 20 Jul 2025 22:22:43 +0000 Manifest next update: Sun 27 Jul 2025 22:22:43 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: SW/z3ySNn5J41haAD4ZFHwdpE6VlW+od9CFDAA5N2kI=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Jul 20 22:22:43 2025 GMT Not After : Jul 27 22:22:43 2025 GMT Subject: CN=687d6c33-a2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:58:42:e7:d2:c4:91:36:3e:ba:5c:1b:8b: cf:be:8a:38:8f:f1:88:e1:31:8e:df:18:51:a3:a9: ab:0e:a9:17:40:ef:5a:8f:92:27:3a:ac:dd:e3:a0: 30:e6:c2:d8:4a:25:ea:79:c0:67:7b:5e:84:29:b6: 41:a9:ad:80:f7:17:77:4a:87:b9:94:ef:8b:fa:e1: 21:6f:1f:72:e4:b8:f6:36:2a:01:56:75:9a:c0:4f: ae:89:bb:dd:60:84:16:c5:22:c9:cf:2b:e3:d7:00: 32:18:e5:5b:82:dd:55:87:bc:0f:30:dc:67:67:68: 3e:f2:e5:1a:4d:c3:d4:68:58:87:0b:75:b2:5f:2a: 53:ba:cf:0a:8c:43:e3:88:d8:dd:d2:73:4f:55:d5: 55:1c:b1:a1:23:c3:35:5d:e6:61:94:e4:d9:79:ba: 90:fe:4b:94:21:38:5d:51:0f:19:5a:7d:79:c1:42: 02:92:e8:de:04:4f:fd:d2:58:3e:6e:b1:5b:79:54: cd:74:37:77:13:30:b5:cc:7c:6b:e6:96:e3:62:e7: be:45:48:26:f9:8c:9d:29:24:ed:64:74:d7:8e:33: 11:c7:92:be:91:01:d7:f7:09:a9:20:f0:a7:45:4f: f1:73:1e:59:d2:cf:60:e8:0b:57:a9:49:07:f9:8c: 69:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:59:32:2B:1A:25:2B:78:98:2F:85:98:51:49:53:30:DA:DD:FC:99 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5d:2f:d8:b3:84:f7:60:f7:72:ca:be:e1:b6:44:b4:b0:58: c8:00:45:77:46:01:1a:cd:fc:19:5d:2c:89:aa:79:cb:86:20: f8:ae:53:1a:cc:43:7d:17:a5:06:3c:32:c4:2c:6c:7b:e9:c4: 6e:25:7b:a9:cd:b8:93:75:b7:61:a1:5b:d4:66:40:5a:50:f2: 26:aa:31:f2:c6:e3:6c:68:21:d5:5f:55:72:86:b6:18:a4:5c: bd:4a:62:89:f8:bb:b5:14:3b:d5:42:d3:d0:21:4e:bb:89:76: e8:a4:7d:9a:4d:65:c2:49:74:00:64:ba:f3:b6:2a:4a:c9:6c: 1b:8b:c9:a2:e7:10:55:93:78:45:ec:b8:d5:7a:a4:dd:d4:70: d2:17:a2:b0:19:23:3f:8d:52:60:c4:4a:8d:27:8e:2a:0e:5e: 9e:73:25:c6:db:ca:74:80:54:4c:80:76:67:e5:21:b8:7b:a3: d6:a3:8f:b1:9e:51:d8:de:2d:82:50:f9:68:e0:d3:86:e9:9d: 92:47:09:35:7c:ff:8c:b0:9f:56:78:c9:ae:c4:ea:02:3c:2f: 75:fe:bf:d5:25:29:df:05:a4:b1:a8:02:ea:6d:94:83:76:47: 89:62:02:95:25:8e:67:e6:fa:63:32:c8:d6:96:76:2b:e2:fc: 65:8f:91:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwNzIwMjIyMjQzWhcNMjUwNzI3MjIyMjQzWjAYMRYwFAYD VQQDEw02ODdkNmMzMy1hMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxlYQufSxJE2PrpcG4vPvoo4j/GI4TGO3xhRo6mrDqkXQO9aj5InOqzd46Aw 5sLYSiXqecBne16EKbZBqa2A9xd3Soe5lO+L+uEhbx9y5Lj2NioBVnWawE+uibvd YIQWxSLJzyvj1wAyGOVbgt1Vh7wPMNxnZ2g+8uUaTcPUaFiHC3WyXypTus8KjEPj iNjd0nNPVdVVHLGhI8M1XeZhlOTZebqQ/kuUIThdUQ8ZWn15wUICkujeBE/90lg+ brFbeVTNdDd3EzC1zHxr5pbjYue+RUgm+YydKSTtZHTXjjMRx5K+kQHX9wmpIPCn RU/xcx5Z0s9g6AtXqUkH+YxpDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdZMisa JSt4mC+FmFFJUzDa3fyZMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNXS/Ys4T3YPdyyr7htkS0sFjIAEV3RgEazfwZXSyJqnnLhiD4rlMa zEN9F6UGPDLELGx76cRuJXupzbiTdbdhoVvUZkBaUPImqjHyxuNsaCHVX1VyhrYY pFy9SmKJ+Lu1FDvVQtPQIU67iXbopH2aTWXCSXQAZLrztipKyWwbi8mi5xBVk3hF 7LjVeqTd1HDSF6KwGSM/jVJgxEqNJ44qDl6ecyXG28p0gFRMgHZn5SG4e6PWo4+x nlHY3i2CUPlo4NOG6Z2SRwk1fP+MsJ9WeMmuxOoCPC91/r/VJSnfBaSxqALqbZSD dkeJYgKVJY5n5vpjMsjWlnYr4vxlj5HT -----END CERTIFICATE-----Generated at Mon Jul 21 05:48:13 2025 by rpki-client