$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: zksmGL0fRbdWSHoIG1rXP3hdz+8kmE5QS7JNDo+lmgI= Subject key identifier: F1:C2:A9:D5:84:A3:7A:BD:32:6C:8E:04:D5:16:75:13:AE:47:1B:ED Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B06 Signing time: Sun 20 Jul 2025 19:27:22 +0000 Manifest this update: Sun 20 Jul 2025 19:27:21 +0000 Manifest next update: Sun 27 Jul 2025 19:27:21 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: uo4qjSHk1WHVhXpfPi47aH4sjbaQSYZwsY8NeKfogNk=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Jul 20 19:27:21 2025 GMT Not After : Jul 27 19:27:21 2025 GMT Subject: CN=687d431a-c972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:88:db:6a:47:37:6f:e0:92:ab:71:26:62:12: cd:e6:56:57:64:22:0f:bc:d8:dc:d1:54:b7:3c:38: d5:02:41:a6:b4:c7:23:f3:e2:a5:0a:b6:3c:a4:15: 33:d9:21:e9:b2:d5:c3:b7:c6:13:7b:b5:38:69:3b: aa:7e:b0:df:a6:48:3d:9a:21:aa:bf:38:f9:98:35: bc:67:15:c7:81:00:0e:ea:bf:5c:2b:0c:0d:40:bd: 78:01:66:c0:c1:a4:3c:11:65:06:f9:0a:e2:12:77: 22:81:ea:79:85:92:0a:b9:fe:3f:6e:dc:48:40:53: 9a:86:45:56:05:2b:1c:69:4f:fa:e7:03:87:7f:d8: 9b:e8:3a:2f:26:2c:da:cb:ab:a3:1a:ed:ac:3d:72: d9:5e:e8:6d:ee:f6:46:ce:a6:55:e7:ba:b5:2e:e4: 4c:2f:66:de:e1:4b:82:1e:c7:de:d6:27:1e:4a:e6: c2:77:37:be:c2:43:6f:59:9d:a0:27:92:85:11:0a: d9:c5:cb:1f:f0:1e:8b:d1:81:bf:cb:9f:8f:1a:8c: 34:60:0c:d2:8a:2c:b9:b9:6e:ee:c0:9d:18:cb:f7: a3:4f:60:7d:64:59:11:ab:95:13:7d:02:3c:70:39: 9e:1a:83:8e:4e:47:94:c4:f5:a6:67:42:36:f3:f9: 1c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C2:A9:D5:84:A3:7A:BD:32:6C:8E:04:D5:16:75:13:AE:47:1B:ED X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:73:58:0b:54:06:d9:9c:df:6e:ed:2e:5e:48:df:b0:b8:52: e6:bd:8d:94:36:7f:7a:3b:83:05:b9:64:12:0d:fc:c5:0a:07: 2c:c5:1c:2e:c5:ef:13:a1:aa:af:30:8a:4f:de:ba:db:82:c8: 09:f6:00:a1:d3:9b:46:41:b9:a2:8d:03:48:ed:a4:a6:08:24: b1:97:2a:08:7b:e9:58:1f:65:62:46:f1:03:6c:14:9c:f1:02: ca:ab:c3:3d:3b:be:85:fa:0e:2d:b5:c8:23:3e:93:bc:64:ca: ff:aa:e0:7d:b4:8e:a0:5f:53:7e:7b:94:6d:4d:af:27:bc:c1: a8:f2:e4:4f:4e:63:99:89:e9:37:81:55:7f:cc:f7:e9:19:97: 20:5b:73:06:23:7a:e5:67:12:2b:92:4e:6e:69:ac:b6:45:6e: cf:41:07:7e:23:f2:bd:c5:4a:c7:73:24:08:4b:94:f1:6b:ab: ca:86:74:90:ec:30:b3:88:bc:ae:6f:14:df:7d:59:43:fd:4f: 30:6f:47:45:6b:8a:b7:57:ec:60:55:96:3f:e3:b8:75:a5:19: b3:34:f1:83:4d:21:4f:ac:a4:2e:26:9f:b8:e1:dc:90:84:50: d9:86:c6:47:d3:d8:4f:7d:e2:52:6d:aa:9a:3d:74:1c:0e:d3: 75:cc:34:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwNzIwMTkyNzIxWhcNMjUwNzI3MTkyNzIxWjAYMRYwFAYD VQQDEw02ODdkNDMxYS1jOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYjbakc3b+CSq3EmYhLN5lZXZCIPvNjc0VS3PDjVAkGmtMcj8+KlCrY8pBUz 2SHpstXDt8YTe7U4aTuqfrDfpkg9miGqvzj5mDW8ZxXHgQAO6r9cKwwNQL14AWbA waQ8EWUG+QriEncigep5hZIKuf4/btxIQFOahkVWBSscaU/65wOHf9ib6DovJiza y6ujGu2sPXLZXuht7vZGzqZV57q1LuRML2be4UuCHsfe1iceSubCdze+wkNvWZ2g J5KFEQrZxcsf8B6L0YG/y5+PGow0YAzSiiy5uW7uwJ0Yy/ejT2B9ZFkRq5UTfQI8 cDmeGoOOTkeUxPWmZ0I28/kcuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHCqdWE o3q9MmyOBNUWdROuRxvtMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpc1gLVAbZnN9u7S5eSN+wuFLmvY2UNn96O4MFuWQSDfzFCgcsxRwu xe8ToaqvMIpP3rrbgsgJ9gCh05tGQbmijQNI7aSmCCSxlyoIe+lYH2ViRvEDbBSc 8QLKq8M9O76F+g4ttcgjPpO8ZMr/quB9tI6gX1N+e5RtTa8nvMGo8uRPTmOZiek3 gVV/zPfpGZcgW3MGI3rlZxIrkk5uaay2RW7PQQd+I/K9xUrHcyQIS5Txa6vKhnSQ 7DCziLyubxTffVlD/U8wb0dFa4q3V+xgVZY/47h1pRmzNPGDTSFPrKQuJp+44dyQ hFDZhsZH09hPfeJSbaqaPXQcDtN1zDRy -----END CERTIFICATE-----Generated at Mon Jul 21 07:49:42 2025 by rpki-client