$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: R75xLBSUgTaTOib61rYoiXBgDhFka50PBiE7LVq9Mrw= Subject key identifier: 97:E8:7B:42:0E:F8:33:69:04:DB:88:03:68:5B:13:CC:93:87:6E:6F Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C5D Signing time: Fri 18 Jul 2025 18:35:10 +0000 Manifest this update: Fri 18 Jul 2025 18:35:10 +0000 Manifest next update: Fri 25 Jul 2025 18:35:10 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: h2krdAJrboScuMuPRGxULMuNiA/fm/1+awhjwfY/L1c=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Jul 18 18:35:10 2025 GMT Not After : Jul 25 18:35:10 2025 GMT Subject: CN=687a93de-9ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:62:f8:07:e3:9e:0e:fd:f7:d3:94:93:19: 62:9e:97:52:7b:69:7d:c2:f2:b1:26:7b:f5:ed:b0: 65:d9:05:65:c0:4e:da:32:6f:00:aa:05:e5:28:b5: 3f:29:44:eb:1b:09:b0:01:31:c9:40:96:c5:46:e2: 7d:bd:c6:73:32:ac:26:86:d9:c7:f4:9a:85:ce:bb: fe:e1:44:6a:ac:e7:cf:2e:28:07:d4:7f:d7:76:dc: 8f:84:50:41:e9:e7:e9:5d:70:18:f6:55:0f:d0:62: 93:5d:b5:db:4b:87:8d:7f:fd:0b:1d:4d:33:52:8e: 09:2d:d0:ab:94:72:06:67:12:9d:28:95:2b:f8:15: ff:95:d5:76:85:df:dc:c1:1a:c2:4f:da:c4:af:46: 2e:92:d2:a8:df:37:c1:31:1a:06:7b:3f:39:86:95: 93:d4:27:b9:12:88:e9:18:97:e1:29:52:69:17:cf: c0:35:7a:13:0f:83:a4:32:5d:c7:f0:a1:42:4a:7d: 54:2e:12:be:f8:ad:b5:d4:b7:c3:c4:b7:b3:04:13: 44:4d:24:81:c5:54:a2:c6:75:dc:a2:33:31:c2:7c: 7e:ca:bc:0c:58:9e:be:d6:ac:aa:a2:03:f7:41:0d: a7:8f:7a:48:94:42:21:b0:e7:1c:8c:f3:71:a5:4f: 53:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E8:7B:42:0E:F8:33:69:04:DB:88:03:68:5B:13:CC:93:87:6E:6F X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:f9:33:34:c1:41:85:df:2a:48:5a:fa:10:b8:81:1e:70: 30:c6:eb:a0:02:df:8c:90:62:90:2c:60:00:09:db:25:fc:77: 4f:51:da:d0:4a:77:59:f3:6e:ad:97:0d:74:0b:e8:08:45:b4: 1b:87:91:4a:af:32:86:68:3f:0f:a4:f7:49:a6:9b:e0:5e:22: 22:06:6b:d7:f8:01:13:5f:94:19:40:0a:98:4d:f0:bd:c6:e9: 2d:a5:87:e7:10:93:c5:a8:69:fd:cf:3f:f8:9e:c2:00:80:74: d9:c2:42:bd:5d:dd:0d:47:4f:3f:57:a3:d2:96:69:ae:3d:96: 9d:7a:53:b4:5a:9f:3c:a7:69:f1:cf:8d:bd:4c:cd:35:d7:0f: 04:cf:92:3d:14:57:12:4f:7a:8b:84:8c:4d:d3:e7:22:21:e4: 8c:e4:9c:e3:12:32:0e:4b:8b:34:0d:6e:09:67:85:43:b1:c4: 5c:d9:8c:03:7f:43:1e:3f:e9:39:3b:41:4e:6e:20:74:d5:25: 70:ad:07:6e:b0:59:34:b9:2e:e2:22:5a:52:3d:de:5f:65:71: 65:0d:6e:3c:7d:35:9b:7d:44:62:53:88:8d:5c:dc:de:b6:d6: 6f:61:99:26:0a:6f:2c:d4:75:e6:8c:93:5f:62:78:8b:4e:37: 5f:82:83:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNzE4MTgzNTEwWhcNMjUwNzI1MTgzNTEwWjAYMRYwFAYD VQQDEw02ODdhOTNkZS05YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmZi+Afjng7999OUkxlinpdSe2l9wvKxJnv17bBl2QVlwE7aMm8AqgXlKLU/ KUTrGwmwATHJQJbFRuJ9vcZzMqwmhtnH9JqFzrv+4URqrOfPLigH1H/XdtyPhFBB 6efpXXAY9lUP0GKTXbXbS4eNf/0LHU0zUo4JLdCrlHIGZxKdKJUr+BX/ldV2hd/c wRrCT9rEr0YuktKo3zfBMRoGez85hpWT1Ce5EojpGJfhKVJpF8/ANXoTD4OkMl3H 8KFCSn1ULhK++K211LfDxLezBBNETSSBxVSixnXcojMxwnx+yrwMWJ6+1qyqogP3 QQ2nj3pIlEIhsOccjPNxpU9TqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfoe0IO +DNpBNuIA2hbE8yTh25vMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpRfkzNMFBhd8qSFr6ELiBHnAwxuugAt+MkGKQLGAACdsl/HdPUdrQ SndZ826tlw10C+gIRbQbh5FKrzKGaD8PpPdJppvgXiIiBmvX+AETX5QZQAqYTfC9 xuktpYfnEJPFqGn9zz/4nsIAgHTZwkK9Xd0NR08/V6PSlmmuPZadelO0Wp88p2nx z429TM011w8Ez5I9FFcST3qLhIxN0+ciIeSM5JzjEjIOS4s0DW4JZ4VDscRc2YwD f0MeP+k5O0FObiB01SVwrQdusFk0uS7iIlpSPd5fZXFlDW48fTWbfURiU4iNXNze ttZvYZkmCm8s1HXmjJNfYniLTjdfgoMq -----END CERTIFICATE-----Generated at Sun Jul 20 11:08:27 2025 by rpki-client