$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: 157UT+WmGLEkVks8vVbJmGIw/5hwRqtGTWOLrpgVTFI= Subject key identifier: 58:52:76:CF:AA:FE:8B:01:42:4B:81:A4:62:5D:49:B8:28:A6:3D:8B Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 12F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 12E0 Signing time: Sun 24 Aug 2025 17:01:22 +0000 Manifest this update: Sun 24 Aug 2025 17:01:22 +0000 Manifest next update: Sun 31 Aug 2025 17:01:22 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: 8qqhUXX4QwoDyUPF3GI9bigKXHVSW2MsNW5CnZi2d+I=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: qsHbNpoijKrtGMWbxqEqnKfl2y6Wb4U5iSQj3PTcQI0=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: 9kzHJ+mrOXjrh7/imCy9YTTgW8CKx7edCdpIZZ1nyQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4851 (0x12f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Aug 24 17:01:22 2025 GMT Not After : Aug 31 17:01:22 2025 GMT Subject: CN=68ab4562-b3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b4:04:74:7a:55:b7:ab:bb:68:8b:e1:13:1e: 80:16:fb:a4:4f:c9:f7:87:71:b1:43:28:7a:61:78: da:82:35:83:a6:8b:dc:99:b2:91:f1:9e:6b:d0:c6: 61:25:bb:5c:f7:3a:a3:c4:17:c6:7c:dd:31:3a:a2: b5:d3:84:d4:4e:a5:6b:54:dd:4f:80:b3:d2:b4:a1: 17:01:54:43:b3:7d:96:ea:0d:50:fc:90:5c:2d:ce: af:26:ab:d8:4b:7f:5d:a6:a7:cc:e4:6c:0d:b2:34: ff:90:22:a1:7c:50:ea:48:1b:48:83:8e:3e:07:d8: 21:85:3b:f2:0c:1d:77:dd:1f:d7:5d:d0:e3:8e:4d: 9b:4b:67:a3:54:49:03:55:0c:e7:bb:55:4e:35:7c: 6d:ab:24:85:b2:c4:7d:90:c4:b9:91:ea:97:40:78: ab:41:3d:c0:5a:a4:cc:2c:77:46:82:57:cb:2f:72: 6c:59:e2:11:47:f7:79:fd:e3:0b:0d:54:59:0d:db: 78:e1:b1:b7:38:63:0e:b9:81:79:22:ed:a2:af:fb: 31:b9:5c:52:3d:f3:a9:b8:10:3d:22:d7:e3:19:d4: 99:fa:fe:d3:7e:e8:ce:fb:0f:c7:6c:9b:84:bc:3e: 00:0f:58:f3:3a:82:77:48:91:ad:64:a0:02:cb:6a: 62:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:52:76:CF:AA:FE:8B:01:42:4B:81:A4:62:5D:49:B8:28:A6:3D:8B X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0a:65:58:f0:f5:05:b3:2c:16:d6:61:a1:f0:fa:d9:86:2c: 29:32:30:df:3d:26:51:ae:2f:5e:bf:eb:2d:6b:17:41:35:b0: 39:6d:8b:ba:8c:5e:7d:3c:f4:81:dc:a6:0f:b4:18:25:d3:fc: ee:6f:63:64:2a:9f:ad:63:12:63:4d:e2:00:05:38:da:b9:ca: b4:a5:ba:e7:15:aa:28:5a:f2:57:77:f2:d6:16:6d:61:fd:02: 39:13:84:98:5b:05:01:81:da:f7:10:05:2f:ee:60:ca:44:32: 72:be:58:e3:ec:0d:50:a3:a0:0f:46:51:b7:5e:0c:8b:7f:c7: d9:ad:db:a9:da:6c:f3:68:ad:90:3e:3e:d1:bc:2f:f2:e4:bc: 25:c8:5b:55:93:9d:66:aa:de:6a:55:ef:d2:ad:4a:1b:64:aa: b3:fd:9c:de:18:c0:07:9c:dc:a4:95:b8:5d:71:7b:df:3a:9f: 73:01:7a:d5:2e:cd:b7:f3:25:48:2d:d8:ac:68:5f:93:22:c9: 56:cd:3b:d1:16:8a:2b:66:c0:27:6e:3e:c5:56:73:64:0f:c7: 33:70:53:22:da:8c:06:ef:de:98:bc:07:3d:ff:f0:4f:30:67: bb:85:c4:3f:8e:d4:21:34:14:e2:42:16:1c:64:46:f2:ba:44: 8a:88:0a:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUwODI0MTcwMTIyWhcNMjUwODMxMTcwMTIyWjAYMRYwFAYD VQQDEw02OGFiNDU2Mi1iM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17QEdHpVt6u7aIvhEx6AFvukT8n3h3GxQyh6YXjagjWDpovcmbKR8Z5r0MZh Jbtc9zqjxBfGfN0xOqK104TUTqVrVN1PgLPStKEXAVRDs32W6g1Q/JBcLc6vJqvY S39dpqfM5GwNsjT/kCKhfFDqSBtIg44+B9ghhTvyDB133R/XXdDjjk2bS2ejVEkD VQznu1VONXxtqySFssR9kMS5keqXQHirQT3AWqTMLHdGglfLL3JsWeIRR/d5/eML DVRZDdt44bG3OGMOuYF5Iu2ir/sxuVxSPfOpuBA9ItfjGdSZ+v7TfujO+w/HbJuE vD4AD1jzOoJ3SJGtZKACy2piiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhSds+q /osBQkuBpGJdSbgopj2LMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlCmVY8PUFsywW1mGh8PrZhiwpMjDfPSZRri9ev+staxdBNbA5bYu6 jF59PPSB3KYPtBgl0/zub2NkKp+tYxJjTeIABTjaucq0pbrnFaooWvJXd/LWFm1h /QI5E4SYWwUBgdr3EAUv7mDKRDJyvljj7A1Qo6APRlG3XgyLf8fZrdup2mzzaK2Q Pj7RvC/y5LwlyFtVk51mqt5qVe/SrUobZKqz/ZzeGMAHnNyklbhdcXvfOp9zAXrV Ls238yVILdisaF+TIslWzTvRFoorZsAnbj7FVnNkD8czcFMi2owG796YvAc9//BP MGe7hcQ/jtQhNBTiQhYcZEbyukSKiAqH -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:21 2025 by rpki-client