$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: C07uxlRC3UfXMTQvZJ4GZc0MOvWUkejq4lTr21CoKHE= Subject key identifier: CE:83:BE:67:63:04:1D:63:14:77:7B:C3:62:5E:E3:E2:9D:C0:F2:E5 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 057A Signing time: Sat 19 Jul 2025 01:00:33 +0000 Manifest this update: Sat 19 Jul 2025 01:00:33 +0000 Manifest next update: Sat 26 Jul 2025 01:00:33 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 0ShXHkcfkbYmK/lHhmAwonXygIk0xS0fXIkd6T1PUPc=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Jul 19 01:00:33 2025 GMT Not After : Jul 26 01:00:33 2025 GMT Subject: CN=687aee31-05e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:35:94:f8:43:a5:df:8c:71:e8:67:e2:6b:a5: 79:9f:f1:63:49:83:ae:6b:26:22:33:6b:5a:ab:0b: 58:7e:1d:aa:e6:5d:ae:b2:cd:cf:6a:04:e1:d8:70: 1f:0a:0b:18:7d:78:6a:76:94:66:d0:11:78:f2:0c: d1:b5:9b:73:45:d3:11:4a:26:92:38:55:6d:46:5d: 29:ad:98:22:ff:6d:0b:b9:e0:11:82:29:3f:0f:52: 1d:99:5d:51:18:e5:01:84:02:d7:ac:d1:fd:81:05: a0:90:12:74:41:11:bc:78:49:4f:1f:0f:d9:4f:24: d6:ed:95:37:cf:30:86:03:de:7e:b9:c1:62:f4:ee: 3c:f1:bd:b5:6f:55:88:9c:b5:de:9e:c3:be:21:2b: ce:14:bf:4f:70:57:53:df:8f:60:11:0b:a8:e7:e5: 3d:d3:e5:cb:de:cb:a4:d9:27:23:e6:8c:69:29:a9: 3d:a7:90:95:be:61:1f:a8:c1:64:ce:a6:23:af:ba: e0:6a:3e:b9:cc:55:e9:8b:95:2f:21:c1:b6:d7:c1: 25:13:0d:9d:66:b6:58:29:d8:ba:7a:ca:03:d5:b3: f9:02:56:82:30:11:bf:7c:ab:71:71:c2:86:8e:19: 53:70:ff:f9:b8:15:cc:ce:fa:5d:87:7d:5b:50:7d: 55:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:83:BE:67:63:04:1D:63:14:77:7B:C3:62:5E:E3:E2:9D:C0:F2:E5 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ce:b2:88:86:91:66:f8:ed:70:48:5e:fc:cc:b1:71:79:bd: 44:8a:73:66:f6:61:3f:4c:14:eb:fc:75:39:ff:56:69:d4:eb: 8c:cd:06:2f:47:67:bf:0d:07:27:ea:8e:20:90:7c:40:6e:21: d7:f0:0c:cb:4b:68:8b:e1:7e:2d:5d:a7:fe:a1:69:9e:d3:8e: 3a:02:b2:23:fb:4c:d3:95:7f:56:c8:90:19:5a:0b:50:82:7b: 1c:e3:51:77:46:14:2e:7d:50:0a:b2:f0:64:ff:14:9c:21:79: ed:6e:b2:f3:b9:27:7e:75:91:f9:5a:b7:19:44:7a:c4:93:26: 73:85:23:28:05:2c:ab:b9:11:11:f1:da:08:7f:9e:2c:1f:1a: 56:5f:80:40:44:34:53:ae:11:a1:38:02:70:80:a4:8c:0e:c4: 17:fc:bd:7c:c3:54:64:73:5a:f5:e2:cd:39:eb:a8:16:d7:17: 00:f5:57:64:fe:b5:6f:38:cb:86:0d:b5:13:da:30:e8:27:8f: c4:3a:1d:62:46:0e:d0:e8:e3:fe:cb:5d:4b:21:06:3a:c3:3e: 36:32:71:66:d3:85:01:ee:1a:e8:8a:92:bd:f3:62:c0:77:52: 90:ce:df:65:b2:44:a2:a6:cf:e1:8c:59:2a:95:7f:1e:ea:8a: 55:35:d6:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNzE5MDEwMDMzWhcNMjUwNzI2MDEwMDMzWjAYMRYwFAYD VQQDEw02ODdhZWUzMS0wNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzWU+EOl34xx6Gfia6V5n/FjSYOuayYiM2taqwtYfh2q5l2uss3PagTh2HAf CgsYfXhqdpRm0BF48gzRtZtzRdMRSiaSOFVtRl0prZgi/20LueARgik/D1IdmV1R GOUBhALXrNH9gQWgkBJ0QRG8eElPHw/ZTyTW7ZU3zzCGA95+ucFi9O488b21b1WI nLXensO+ISvOFL9PcFdT349gEQuo5+U90+XL3suk2Scj5oxpKak9p5CVvmEfqMFk zqYjr7rgaj65zFXpi5UvIcG218ElEw2dZrZYKdi6esoD1bP5AlaCMBG/fKtxccKG jhlTcP/5uBXMzvpdh31bUH1VcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6Dvmdj BB1jFHd7w2Je4+KdwPLlMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdzrKIhpFm+O1wSF78zLFxeb1EinNm9mE/TBTr/HU5/1Zp1OuMzQYv R2e/DQcn6o4gkHxAbiHX8AzLS2iL4X4tXaf+oWme0446ArIj+0zTlX9WyJAZWgtQ gnsc41F3RhQufVAKsvBk/xScIXntbrLzuSd+dZH5WrcZRHrEkyZzhSMoBSyruRER 8doIf54sHxpWX4BARDRTrhGhOAJwgKSMDsQX/L18w1Rkc1r14s0566gW1xcA9Vdk /rVvOMuGDbUT2jDoJ4/EOh1iRg7Q6OP+y11LIQY6wz42MnFm04UB7hroipK982LA d1KQzt9lskSips/hjFkqlX8e6opVNdat -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:08 2025 by rpki-client