$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: 6vjoyjm9e6VqlHSDaMiOR9qfiv5Oeh5nuBB/kCeMURg= Subject key identifier: 18:D6:5E:C1:F0:5F:0A:F1:CD:4D:37:7A:DA:52:4C:AA:A2:F1:3D:2A Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 111A Signing time: Fri 18 Jul 2025 17:27:30 +0000 Manifest this update: Fri 18 Jul 2025 17:27:30 +0000 Manifest next update: Fri 25 Jul 2025 17:27:30 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: 3cwWRxA5Pk2wq9MHy75in6mTWm2/wK+8B5D+A99nOK0=) 2: D9BBFBDA4D3111F099A48033C4F9AE02.roa (hash: A1A/LnUqdsNFUNCbA9pj78Zy7mXZZnhX+0nyseCL3vE=) 3: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (hash: mPVwkbrmgIGFwgmxOu/KgFG11TMB51WhYaitUgpspRc=) 4: 98A0F61840AD11F0BB332714C4F9AE02.roa (hash: tKQU1f9hJtuAYfiy2kdRz9mYUmd+c/z8iKCPuJpB5Jo=) 5: 97F6216640AD11F0BB332714C4F9AE02.roa (hash: D/cwdq2qeau3nAVw8Sz3zqNDQKjgr7DJFvLl2UTQid4=) 6: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: GKHRKfwk3bqrqOFGPvJ+kjY0NTnB33jXoiW8bXeNOjw=) 7: 6521A70C395411F0AF136459C4F9AE02.roa (hash: 4Idad4dFmk8KzOmK1O+klRuBqcKZ7Fg2fSUd52ueJnE=) 8: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: PDXFymAQeHbTCItIfy8LqqoHr3PVKA+eJZNU6voGL5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4437 (0x1155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Jul 18 17:27:30 2025 GMT Not After : Jul 25 17:27:30 2025 GMT Subject: CN=687a8402-0243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:70:06:68:7c:af:c3:94:8a:a7:e0:41:c1:b9: 5b:d8:0e:0a:15:5f:80:83:9c:17:b9:5c:a0:40:78: 25:37:84:30:dc:06:b5:a3:0d:bb:83:af:9d:f7:f0: d9:80:44:da:a4:3f:83:f0:36:c4:8b:fc:93:42:40: c1:da:24:50:6a:51:15:c4:3a:9d:90:bf:6a:e3:67: c5:15:c9:43:78:07:2d:ad:9e:2b:cd:54:5f:c2:55: 07:cc:82:32:af:7c:85:13:9d:90:09:0c:56:28:6b: 86:c1:ce:9b:3d:fe:59:77:6c:21:8a:65:87:fb:c1: 07:87:1e:28:4b:e4:b6:2d:1a:c3:81:91:3c:3c:52: 5f:f6:56:28:87:92:e9:a5:73:b1:41:97:1b:e8:74: 37:04:d5:f3:6f:65:73:3d:d4:49:62:65:c8:00:b1: 20:b7:4e:59:20:2c:23:00:ed:40:b8:b0:e2:75:8f: b6:34:ad:fe:2d:f4:c6:63:63:47:a7:12:da:84:87: 69:c9:f9:4b:da:0a:d4:d5:d3:12:a2:ca:1b:26:cb: 2f:76:13:79:35:27:82:85:6e:3c:4f:57:1b:72:26: 9e:5c:24:2f:e8:f7:d6:8d:56:90:44:8f:11:56:60: 7c:22:a0:dd:31:d3:7f:b7:52:af:84:f0:e1:ce:ff: 66:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:5E:C1:F0:5F:0A:F1:CD:4D:37:7A:DA:52:4C:AA:A2:F1:3D:2A X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f2:a1:58:e3:88:8c:6d:f8:9b:c1:10:5c:6c:76:a0:5c:7c: 2f:e9:9a:16:e0:85:49:ce:ce:88:00:3c:21:92:45:d2:05:d4: 0e:94:8c:d6:09:3e:df:ae:cf:22:62:03:d4:1b:cd:c5:e1:ff: 6e:63:23:b4:84:79:11:1b:fe:bd:ed:eb:ca:e2:4c:67:ce:dc: ab:f9:5e:1b:83:d0:6c:5e:f9:ad:32:7c:4f:c5:84:a7:a2:00: 70:04:3e:f4:1d:17:e8:c6:76:15:66:f8:35:a0:64:73:05:da: 2c:b6:e2:a7:5d:0a:24:d8:d1:9f:15:1a:b5:23:2c:fd:e7:70: c3:bb:ac:bf:be:08:d7:ac:20:b2:0b:1e:b7:a7:2f:7b:d8:39: 5d:0e:9e:87:d3:6b:60:b5:6a:58:b2:63:e2:f7:35:2c:ea:ca: 44:f1:fa:12:00:e6:f2:ba:92:ca:2d:09:60:11:ee:8c:58:d2: e2:4d:fd:84:b6:34:01:3f:52:8c:d6:ed:db:7f:3b:93:c7:23: 02:f2:32:06:18:88:4e:ce:0d:8c:28:72:ca:bf:83:3e:10:6a: f1:3f:4d:e2:06:68:2e:8c:08:b8:17:f8:4b:bd:4c:e3:df:2a: 89:0e:f5:f1:29:11:07:c7:07:77:ac:40:3c:0c:5f:d9:ec:b2: f5:21:e8:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNzE4MTcyNzMwWhcNMjUwNzI1MTcyNzMwWjAYMRYwFAYD VQQDEw02ODdhODQwMi0wMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHAGaHyvw5SKp+BBwblb2A4KFV+Ag5wXuVygQHglN4Qw3Aa1ow27g6+d9/DZ gETapD+D8DbEi/yTQkDB2iRQalEVxDqdkL9q42fFFclDeActrZ4rzVRfwlUHzIIy r3yFE52QCQxWKGuGwc6bPf5Zd2whimWH+8EHhx4oS+S2LRrDgZE8PFJf9lYoh5Lp pXOxQZcb6HQ3BNXzb2VzPdRJYmXIALEgt05ZICwjAO1AuLDidY+2NK3+LfTGY2NH pxLahIdpyflL2grU1dMSosobJssvdhN5NSeChW48T1cbciaeXCQv6PfWjVaQRI8R VmB8IqDdMdN/t1KvhPDhzv9mUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjWXsHw XwrxzU03etpSTKqi8T0qMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT8qFY44iMbfibwRBcbHagXHwv6ZoW4IVJzs6IADwhkkXSBdQOlIzW CT7frs8iYgPUG83F4f9uYyO0hHkRG/697evK4kxnztyr+V4bg9BsXvmtMnxPxYSn ogBwBD70HRfoxnYVZvg1oGRzBdostuKnXQok2NGfFRq1Iyz953DDu6y/vgjXrCCy Cx63py972DldDp6H02tgtWpYsmPi9zUs6spE8foSAObyupLKLQlgEe6MWNLiTf2E tjQBP1KM1u3bfzuTxyMC8jIGGIhOzg2MKHLKv4M+EGrxP03iBmgujAi4F/hLvUzj 3yqJDvXxKREHxwd3rEA8DF/Z7LL1Iehm -----END CERTIFICATE-----Generated at Sun Jul 20 18:48:21 2025 by rpki-client