$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: mAJ0otKO3e7va6zl0+22hXyJLrwA2DwknpDt9RIaZbY= Subject key identifier: 0F:C0:94:62:0C:9E:DA:43:E5:98:2B:F8:E2:39:9A:6E:E0:36:0F:C9 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C0D Signing time: Thu 24 Jul 2025 18:51:20 +0000 Manifest this update: Thu 24 Jul 2025 18:51:19 +0000 Manifest next update: Thu 31 Jul 2025 18:51:19 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: z4piNdSwo2DKSF62wT4NJMSlagA6re6SLR17S5oABSc=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 18:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Jul 24 18:51:19 2025 GMT Not After : Jul 31 18:51:19 2025 GMT Subject: CN=688280a7-54db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a6:ee:27:c8:ed:ae:a9:af:f6:03:e7:16:5f: 6e:dd:43:dd:90:51:1f:91:e5:e2:4c:ec:c3:81:c6: 25:f3:b4:b4:c1:be:ba:4b:bd:96:6c:b4:98:2d:be: 1b:3a:57:1c:2f:32:7f:26:33:5c:1a:fa:af:e4:5f: 8d:ff:06:4e:47:20:1a:62:9c:07:f7:7a:03:58:bd: 38:5d:ca:ed:b5:23:69:2b:1f:7d:c8:86:17:0c:1d: 04:7b:58:58:f4:c4:ab:3d:4c:79:08:59:9e:a7:03: 71:48:4e:29:b0:da:82:9f:f5:97:3d:43:f0:6e:50: 2f:3d:2a:9f:83:8d:aa:da:bf:33:1b:0c:03:e9:18: c3:6b:e3:56:55:e8:2e:b2:fe:89:0e:b7:a0:48:36: cc:31:6a:36:6e:4c:3a:4f:9d:bb:fd:c2:bb:1a:f7: 76:8a:9b:88:40:b5:35:99:17:6c:88:48:29:fc:ce: 6a:d3:0e:7f:2b:0f:c3:b7:8c:37:9d:e0:6e:0f:a7: 66:e5:ae:da:8c:7a:4d:3e:3a:5c:6c:e7:ca:35:6c: b3:d6:3e:54:c9:bb:e7:6d:ce:68:f1:f8:d5:e1:e7: 19:45:bd:8c:e5:d5:85:aa:81:ad:db:cd:63:da:47: d9:9e:9a:11:74:b2:9a:c6:54:5c:00:76:ad:26:3a: 10:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C0:94:62:0C:9E:DA:43:E5:98:2B:F8:E2:39:9A:6E:E0:36:0F:C9 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b3:ff:4c:45:5f:d9:b8:bb:31:12:36:19:e9:02:54:08:d9: 20:ab:95:ca:0e:4c:a7:62:f8:06:59:33:91:05:43:b5:6d:41: dc:bc:cd:90:05:42:9a:7f:36:1c:80:49:69:9e:37:dd:a3:ce: 11:8a:9c:9e:a0:b5:f9:1c:49:31:05:1c:0c:af:5a:2b:79:3f: 28:74:1d:4a:d1:2e:c2:e7:9c:89:1b:b4:31:8b:0d:0b:90:19: 11:7a:27:c2:56:7e:4c:27:e2:ab:f4:16:02:40:34:93:bd:ae: 44:5e:d9:2d:b3:b7:70:61:7e:6f:9c:ea:4e:b4:74:f2:a7:e8: 06:0d:01:58:29:9e:59:8b:a5:96:64:26:a5:d8:b0:62:a3:ce: eb:d0:f8:da:f6:6b:c7:0b:ad:e2:b4:b8:d5:fa:49:af:da:ad: 68:e4:c7:8b:db:5d:97:99:ff:63:64:96:51:bf:78:f3:14:d7: 31:60:2b:4f:f4:89:57:b3:0e:01:ac:cb:d3:c7:f1:db:49:fa: 0a:5a:df:a7:a8:ca:f7:1f:d5:99:41:6d:65:19:2f:52:10:35: 04:7f:8d:9e:e4:ee:0d:2e:df:ea:23:99:d1:49:95:4d:3b:87: ad:58:af:bb:3c:e1:81:3c:c6:08:72:e2:4c:a4:ec:6d:f6:83: 2f:f2:21:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUwNzI0MTg1MTE5WhcNMjUwNzMxMTg1MTE5WjAYMRYwFAYD VQQDEw02ODgyODBhNy01NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKbuJ8jtrqmv9gPnFl9u3UPdkFEfkeXiTOzDgcYl87S0wb66S72WbLSYLb4b OlccLzJ/JjNcGvqv5F+N/wZORyAaYpwH93oDWL04XcrttSNpKx99yIYXDB0Ee1hY 9MSrPUx5CFmepwNxSE4psNqCn/WXPUPwblAvPSqfg42q2r8zGwwD6RjDa+NWVegu sv6JDregSDbMMWo2bkw6T527/cK7Gvd2ipuIQLU1mRdsiEgp/M5q0w5/Kw/Dt4w3 neBuD6dm5a7ajHpNPjpcbOfKNWyz1j5Uybvnbc5o8fjV4ecZRb2M5dWFqoGt281j 2kfZnpoRdLKaxlRcAHatJjoQIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/AlGIM ntpD5Zgr+OI5mm7gNg/JMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSs/9MRV/ZuLsxEjYZ6QJUCNkgq5XKDkynYvgGWTORBUO1bUHcvM2Q BUKafzYcgElpnjfdo84RipyeoLX5HEkxBRwMr1oreT8odB1K0S7C55yJG7Qxiw0L kBkReifCVn5MJ+Kr9BYCQDSTva5EXtkts7dwYX5vnOpOtHTyp+gGDQFYKZ5Zi6WW ZCal2LBio87r0Pja9mvHC63itLjV+kmv2q1o5MeL212Xmf9jZJZRv3jzFNcxYCtP 9IlXsw4BrMvTx/HbSfoKWt+nqMr3H9WZQW1lGS9SEDUEf42e5O4NLt/qI5nRSZVN O4etWK+7POGBPMYIcuJMpOxt9oMv8iFR -----END CERTIFICATE-----Generated at Sat Jul 26 07:40:39 2025 by rpki-client