$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: QQR4NPcESyJw3qh1Z7ztbFHuuwfbRaEfz0LI5yZV6HM= Subject key identifier: 76:74:D2:C9:D8:61:CB:35:13:A8:6E:1B:AD:E6:FD:A3:B6:13:A3:E6 Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: D5 Signing time: Sat 19 Jul 2025 05:51:28 +0000 Manifest this update: Sat 19 Jul 2025 05:51:28 +0000 Manifest next update: Sat 26 Jul 2025 05:51:28 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: Ua4IzxFXT4iek5GErwFV/s1W+soFGw+JmfxN7jKhUYY=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: Ha/cGz3EuqzsAq4mNf1LJHzYtP6EU2XABOfv8TEGk30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Jul 19 05:51:28 2025 GMT Not After : Jul 26 05:51:28 2025 GMT Subject: CN=687b3260-8d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:24:69:99:6f:07:ad:7b:30:a1:6d:75:b6:e5: 83:5b:8e:ab:a5:fe:31:88:73:a9:31:82:24:d4:6a: 41:6e:08:d5:44:fa:24:04:89:ae:f8:ec:9f:fe:fa: d4:17:84:5b:f3:6a:65:4f:64:2f:78:f2:3a:a1:42: a0:9f:88:b9:f0:d5:df:03:00:f5:5f:54:0a:c8:c4: 34:68:18:85:38:ac:d5:08:da:45:c5:32:8c:e4:ce: 20:54:67:3e:9a:08:c6:2c:8b:6b:9f:de:0a:8c:62: 01:08:f7:0c:a5:83:27:57:42:1f:e5:31:ee:ea:60: f7:a2:85:e4:75:f7:d0:53:4f:a1:71:c0:e0:ec:1a: 1c:ec:33:d9:2e:46:eb:44:4e:51:db:ec:6e:cd:0a: ab:7d:f7:be:7e:b7:5e:a1:ae:31:32:51:8f:9d:9f: 49:85:7f:19:23:cb:76:8f:06:b4:27:5a:66:a1:ed: 8e:a5:a9:af:42:cc:0d:7c:3f:92:36:29:39:ee:8f: de:2b:1a:8f:1f:a4:18:b5:87:21:a5:81:19:54:35: 6f:41:97:62:a9:4b:f0:a3:78:d1:fc:e6:9b:8c:74: f3:fa:69:79:7a:be:ad:27:81:3c:1f:70:ba:98:49: d4:b3:38:e6:ac:a9:c6:c1:ca:94:ab:ac:55:4a:70: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:74:D2:C9:D8:61:CB:35:13:A8:6E:1B:AD:E6:FD:A3:B6:13:A3:E6 X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:cb:11:d5:cf:f6:f3:7f:47:55:41:29:22:04:05:ee:fd:0f: ae:37:fa:48:b9:75:d0:ee:6b:88:c5:06:f9:74:01:f6:46:9e: ae:ff:c3:e1:fa:b6:03:c9:67:8f:67:7a:a2:25:2b:e0:d9:c8: f3:54:03:1c:ff:be:8e:e0:b0:0b:d6:3e:5c:23:18:6d:6b:be: 4c:a6:f2:f0:d1:f8:61:1d:ee:be:b3:22:ee:03:39:bb:78:e6: 94:f5:d7:92:2a:72:be:b9:c0:91:65:72:80:e9:17:84:ae:df: 36:27:c8:49:ed:4c:12:75:5b:e8:a6:17:b8:a1:5a:ab:15:cb: 88:be:71:aa:91:7d:07:2a:5e:0b:87:ab:f3:df:d4:0d:5c:8c: b0:05:0d:24:d6:1b:1f:f1:de:d7:57:18:fd:7c:d7:f6:4c:31: 2b:aa:a4:80:6a:2d:20:5e:8b:cb:9e:67:58:dc:e6:fd:c0:10: 48:fa:6c:be:99:9e:c8:3c:c4:72:49:53:54:5e:7b:84:36:89: 08:b4:cb:a5:e6:8c:4d:fe:13:9f:1f:f5:39:b5:16:87:ca:99: 9d:ed:d2:5d:36:6a:45:fa:d9:d7:4a:a0:a8:68:46:af:63:c3: 1c:eb:6c:1c:82:8b:6b:d5:50:b4:ed:88:fb:18:13:28:21:86: b6:6f:55:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUwNzE5MDU1MTI4WhcNMjUwNzI2MDU1MTI4WjAYMRYwFAYD VQQDEw02ODdiMzI2MC04ZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSRpmW8HrXswoW11tuWDW46rpf4xiHOpMYIk1GpBbgjVRPokBImu+Oyf/vrU F4Rb82plT2QvePI6oUKgn4i58NXfAwD1X1QKyMQ0aBiFOKzVCNpFxTKM5M4gVGc+ mgjGLItrn94KjGIBCPcMpYMnV0If5THu6mD3ooXkdffQU0+hccDg7Boc7DPZLkbr RE5R2+xuzQqrffe+frdeoa4xMlGPnZ9JhX8ZI8t2jwa0J1pmoe2OpamvQswNfD+S Nik57o/eKxqPH6QYtYchpYEZVDVvQZdiqUvwo3jR/OabjHTz+ml5er6tJ4E8H3C6 mEnUszjmrKnGwcqUq6xVSnD9KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZ00snY Ycs1E6huG63m/aO2E6PmMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWyxHVz/bzf0dVQSkiBAXu/Q+uN/pIuXXQ7muIxQb5dAH2Rp6u/8Ph +rYDyWePZ3qiJSvg2cjzVAMc/76O4LAL1j5cIxhta75MpvLw0fhhHe6+syLuAzm7 eOaU9deSKnK+ucCRZXKA6ReErt82J8hJ7UwSdVvophe4oVqrFcuIvnGqkX0HKl4L h6vz39QNXIywBQ0k1hsf8d7XVxj9fNf2TDErqqSAai0gXovLnmdY3Ob9wBBI+my+ mZ7IPMRySVNUXnuENokItMul5oxN/hOfH/U5tRaHypmd7dJdNmpF+tnXSqCoaEav Y8Mc62wcgotr1VC07Yj7GBMoIYa2b1UD -----END CERTIFICATE-----Generated at Sun Jul 20 03:14:20 2025 by rpki-client