$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: 0F4abFVCd1c0bfMabLfzaw3DoVZ6V7EHhv+C0VXbG1g= Subject key identifier: 87:D0:DF:BB:EC:C2:3B:B7:74:13:E8:D2:28:3F:D6:C5:D3:0B:D6:8F Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 1535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2C06 Signing time: Wed 20 Aug 2025 16:52:59 +0000 Manifest this update: Wed 20 Aug 2025 16:52:58 +0000 Manifest next update: Wed 27 Aug 2025 16:52:58 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: Kvyut2qqgp9QriJRKGnZUY5ySepyPqmDfHB8UyRdJ+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5429 (0x1535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Aug 20 16:52:58 2025 GMT Not After : Aug 27 16:52:58 2025 GMT Subject: CN=68a5fd6b-f334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:62:5f:ac:c3:3e:60:a8:ab:fc:40:3c:42: ef:99:7b:27:e1:7b:47:4f:8d:55:76:de:c4:a7:d6: 87:29:07:f9:9e:8c:1a:e8:7e:e4:5f:1a:25:b0:c6: f2:12:a3:c9:1d:11:78:67:1f:c1:8a:b9:af:71:00: 5d:99:94:55:bf:43:7c:7b:b7:33:64:a6:f5:a1:6e: 94:e3:aa:a2:89:90:36:5d:73:75:d9:5a:be:5d:a5: 6f:b8:fc:9f:71:31:95:b2:02:82:32:c0:a2:96:9a: b5:c7:3b:54:6b:e8:93:72:43:58:d4:f4:31:40:f2: 68:52:36:a7:3b:24:ba:6a:29:ed:aa:1d:0a:08:b2: fe:15:8e:58:62:be:52:8e:f1:e4:02:47:77:b1:22: 54:67:28:14:96:b8:9e:0c:a3:0c:5d:2f:10:29:f3: 81:29:0b:4a:f6:89:aa:61:67:e0:4e:1a:ac:9f:37: 44:31:e4:30:dd:60:20:e2:17:72:e7:13:9a:33:d4: 0e:54:97:e7:81:34:0f:c9:44:81:ca:f4:0f:fe:f2: ca:3e:a1:04:f3:b0:a4:5e:c5:2f:28:27:07:74:79: 9c:6b:1e:7c:62:ce:72:c1:d2:dc:ec:80:b1:6c:ec: 75:22:d0:71:9b:3c:a8:ee:4d:74:6a:22:46:f2:82: 7f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D0:DF:BB:EC:C2:3B:B7:74:13:E8:D2:28:3F:D6:C5:D3:0B:D6:8F X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:97:4a:10:4f:3b:70:ba:03:da:5d:5a:ea:99:ed:83:85:cc: 81:91:8a:1c:1e:7b:89:e6:9e:1c:b8:c9:c9:c6:81:a3:de:dc: 6a:17:f3:fe:a7:52:45:8a:b8:f6:37:a8:6d:05:72:ad:fa:df: b6:fa:55:32:4c:03:9e:a7:22:bc:d4:df:21:b0:34:fd:3b:44: 68:e2:f8:60:bb:5a:7e:1c:ae:f1:99:64:34:f9:c4:db:61:cd: 6b:98:fc:16:7a:af:4e:35:d7:38:79:bd:6f:42:e9:c2:0d:7d: bc:28:65:90:91:70:34:df:5e:8b:37:d8:07:25:9f:75:cf:14: 9c:15:ac:63:b3:64:96:f4:9a:02:df:ce:4d:6b:01:88:52:3d: 8e:24:3c:c0:52:44:e3:11:1b:a4:5b:0e:6e:71:65:4e:d6:0e: 1f:89:0c:18:4a:b7:f7:d2:e0:bd:4f:46:14:9b:17:3c:19:df: 19:ab:33:db:5f:96:aa:f4:4b:97:e3:3c:6e:50:18:19:3a:e6: 1b:67:c9:29:26:82:73:96:ca:91:37:0c:60:74:2a:7c:73:e0: c3:e3:0e:f9:79:eb:dd:03:76:dc:8a:5e:0c:90:4d:a8:ab:7c: 7b:f6:2f:9f:af:60:21:18:e6:16:64:98:8c:dc:ce:2a:06:32: 0c:6b:22:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUwODIwMTY1MjU4WhcNMjUwODI3MTY1MjU4WjAYMRYwFAYD VQQDEw02OGE1ZmQ2Yi1mMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb9iX6zDPmCoq/xAPELvmXsn4XtHT41Vdt7Ep9aHKQf5nowa6H7kXxolsMby EqPJHRF4Zx/BirmvcQBdmZRVv0N8e7czZKb1oW6U46qiiZA2XXN12Vq+XaVvuPyf cTGVsgKCMsCilpq1xztUa+iTckNY1PQxQPJoUjanOyS6aintqh0KCLL+FY5YYr5S jvHkAkd3sSJUZygUlrieDKMMXS8QKfOBKQtK9omqYWfgThqsnzdEMeQw3WAg4hdy 5xOaM9QOVJfngTQPyUSByvQP/vLKPqEE87CkXsUvKCcHdHmcax58Ys5ywdLc7ICx bOx1ItBxmzyo7k10aiJG8oJ/RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfQ37vs wju3dBPo0ig/1sXTC9aPMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHl0oQTztwugPaXVrqme2DhcyBkYocHnuJ5p4cuMnJxoGj3txqF/P+ p1JFirj2N6htBXKt+t+2+lUyTAOepyK81N8hsDT9O0Ro4vhgu1p+HK7xmWQ0+cTb Yc1rmPwWeq9ONdc4eb1vQunCDX28KGWQkXA0316LN9gHJZ91zxScFaxjs2SW9JoC 385NawGIUj2OJDzAUkTjERukWw5ucWVO1g4fiQwYSrf30uC9T0YUmxc8Gd8ZqzPb X5aq9EuX4zxuUBgZOuYbZ8kpJoJzlsqRNwxgdCp8c+DD4w75eevdA3bcil4MkE2o q3x79i+fr2AhGOYWZJiM3M4qBjIMayKt -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:29 2025 by rpki-client