$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: MMm9KmyE4d20kMEbuqJQXrOQ7KfdiTxeH+o4Majclrk= Subject key identifier: 51:6E:A4:54:20:A5:0E:CC:6C:40:4A:CC:B0:80:5A:C1:17:07:5C:1F Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 068D Signing time: Thu 04 Sep 2025 22:36:23 +0000 Manifest this update: Thu 04 Sep 2025 22:36:23 +0000 Manifest next update: Thu 11 Sep 2025 22:36:23 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: 0Y25EV5Jn8TIEJM9iL38ji2dfKvOOKwWW/N6TfSL7JE=) 2: 399EDDAA823F11F0895C5843C4F9AE02.roa (hash: hcq6yF1A8/hzZcpFY0/jqdnjGI3YJGg87B872b9SYdE=) 3: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 4: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 5: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 6: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Sep 4 22:36:23 2025 GMT Not After : Sep 11 22:36:23 2025 GMT Subject: CN=68ba1467-299b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:50:e7:6f:4f:82:86:c6:27:67:df:1a:5b: 96:dc:9f:90:7e:83:a0:d0:45:49:81:51:36:5f:97: d6:e1:02:ca:5a:d3:6c:07:8c:b5:72:0e:12:37:b2: c0:3e:9b:3b:5f:8c:78:8e:96:64:52:fa:30:6d:bd: 39:2f:af:64:1f:d6:e4:b4:c5:42:75:42:49:08:66: df:a6:2a:fe:5c:61:eb:d3:fd:3a:b7:a4:6b:2b:fa: 97:8d:6e:9e:6b:36:d0:50:6d:5b:71:02:1d:6a:77: 72:35:e3:47:e5:d3:c1:58:9a:ad:74:24:ce:14:94: 63:91:ce:18:99:33:6c:0f:95:08:6f:1d:47:fc:18: 29:31:9d:65:f8:2a:c2:83:db:14:00:15:c1:f5:6e: aa:56:04:bb:ba:95:fc:aa:39:a6:c7:ba:3a:1c:d4: 34:b8:0e:61:bf:e6:51:8b:c5:1d:5c:a8:80:96:c7: cd:a0:df:ab:a2:1f:b2:a2:ea:91:c9:9b:88:39:2e: 6d:18:c3:0c:b0:10:5c:cb:73:7c:bd:78:3c:52:e1: 02:fa:ef:7a:2d:8c:6e:4f:d3:bc:d6:aa:fb:f6:30: e1:f8:ea:b6:db:fd:01:7d:eb:d0:f5:84:59:5c:18: 23:14:eb:a3:ce:a7:91:2b:b7:58:fc:82:55:36:3d: 0f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6E:A4:54:20:A5:0E:CC:6C:40:4A:CC:B0:80:5A:C1:17:07:5C:1F X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:41:14:aa:44:54:a6:68:cd:16:c6:ab:bd:7b:ef:8a:c3:74: 86:b6:96:50:80:cf:af:4e:6d:0f:99:48:0e:c9:f9:f8:83:4e: 9d:24:e6:4a:09:e9:34:dd:02:ce:47:a1:e9:54:1b:97:48:ba: 9f:84:91:55:02:47:14:00:b5:bf:4b:78:7d:08:53:0c:61:cb: d8:d3:47:ab:bc:2e:fe:88:7f:5d:fe:ef:f2:db:5f:52:2f:5b: f0:c0:86:b6:2e:e0:eb:dc:a3:a6:34:33:db:09:f7:43:75:3e: 9f:09:54:61:33:29:99:04:ef:a4:cb:83:36:9e:0d:71:73:17: b0:2b:07:b1:01:bf:76:c8:74:87:46:16:0b:38:71:d0:a3:ac: b9:73:d6:a3:7c:41:0f:61:f7:00:7e:4e:5c:58:2c:40:68:31: fe:af:6a:22:f8:66:ea:51:5d:3a:a0:98:07:47:25:b0:90:c5: 68:90:63:39:aa:72:1e:a8:b1:d6:a4:68:85:2e:23:21:e5:c9: 23:91:24:de:3d:74:57:b6:9e:3b:96:52:f2:52:98:29:da:6f: 9c:27:e4:9f:7a:7a:7c:b6:58:ac:24:3f:07:69:8e:6e:f1:7f: 0a:cf:4a:92:a8:4e:e0:48:c0:79:36:30:74:fd:67:e8:4a:40: 94:95:c9:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwOTA0MjIzNjIzWhcNMjUwOTExMjIzNjIzWjAYMRYwFAYD VQQDEw02OGJhMTQ2Ny0yOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqJQ529PgobGJ2ffGluW3J+QfoOg0EVJgVE2X5fW4QLKWtNsB4y1cg4SN7LA Pps7X4x4jpZkUvowbb05L69kH9bktMVCdUJJCGbfpir+XGHr0/06t6RrK/qXjW6e azbQUG1bcQIdandyNeNH5dPBWJqtdCTOFJRjkc4YmTNsD5UIbx1H/BgpMZ1l+CrC g9sUABXB9W6qVgS7upX8qjmmx7o6HNQ0uA5hv+ZRi8UdXKiAlsfNoN+roh+youqR yZuIOS5tGMMMsBBcy3N8vXg8UuEC+u96LYxuT9O81qr79jDh+Oq22/0BfevQ9YRZ XBgjFOujzqeRK7dY/IJVNj0PAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFupFQg pQ7MbEBKzLCAWsEXB1wfMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+QRSqRFSmaM0Wxqu9e++Kw3SGtpZQgM+vTm0PmUgOyfn4g06dJOZK Cek03QLOR6HpVBuXSLqfhJFVAkcUALW/S3h9CFMMYcvY00ervC7+iH9d/u/y219S L1vwwIa2LuDr3KOmNDPbCfdDdT6fCVRhMymZBO+ky4M2ng1xcxewKwexAb92yHSH RhYLOHHQo6y5c9ajfEEPYfcAfk5cWCxAaDH+r2oi+GbqUV06oJgHRyWwkMVokGM5 qnIeqLHWpGiFLiMh5ckjkSTePXRXtp47llLyUpgp2m+cJ+Sfenp8tlisJD8HaY5u 8X8Kz0qSqE7gSMB5NjB0/WfoSkCUlcn0 -----END CERTIFICATE-----Generated at Sat Sep 6 04:20:36 2025 by rpki-client