$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: eAL5epA5mOM5kennrBCzuQh9febxmhe9CgQ/Z+s5XH4= Subject key identifier: A1:05:34:B4:FA:9E:BD:8C:B9:78:1C:E9:F9:51:ED:1A:A0:72:69:C7 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 06C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 06B5 Signing time: Sun 14 Sep 2025 22:25:42 +0000 Manifest this update: Sun 14 Sep 2025 22:25:41 +0000 Manifest next update: Sun 21 Sep 2025 22:25:41 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: iWNc9xykd15DAmztQQYF2EjPC35lA9bmVpK2DXDf7gI=) 2: F0C772307F7E11F087D1053FC4F9AE02.roa (hash: Lb1m3FTSOQax7zqKZpCDvXrkebnW9I3SAu32mOC96Us=) 3: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 4: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 22:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Sep 14 22:25:41 2025 GMT Not After : Sep 21 22:25:41 2025 GMT Subject: CN=68c740e6-f657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:30:78:bb:04:89:72:72:e1:89:cb:78:53:54: 11:d9:a1:e1:94:0a:9c:05:9c:4c:2f:d3:07:a7:4f: 9f:d4:d5:a6:cc:66:38:c6:09:b5:9b:96:f6:5b:8c: b6:80:04:aa:5e:e1:17:d8:9e:74:94:75:94:4a:5e: 59:62:9f:a0:1d:95:58:e7:46:79:27:3d:70:10:95: b4:aa:51:d3:15:3d:b2:65:f7:af:ad:45:9b:b4:0d: 5d:24:65:56:71:41:3c:b0:d3:09:f7:72:42:53:3f: 0c:64:86:95:e5:ff:ef:4f:2a:84:82:c7:d0:6d:96: 38:e5:f3:32:ef:9d:01:1c:26:98:9a:f1:28:28:52: ff:24:08:38:32:1b:e2:80:c4:57:1f:e6:eb:e3:a0: 99:2d:f2:88:d8:af:25:10:cb:6a:0b:88:87:b5:70: ca:8d:5f:e3:90:6d:a1:d3:f6:ee:de:69:a5:ea:d9: 70:3c:03:a3:59:2b:0e:e4:4e:1f:5f:2a:22:88:81: eb:f8:dd:0b:f8:75:4c:23:3e:95:40:83:5f:05:a4: cf:21:26:a7:48:b2:a7:79:5a:d3:f6:b0:35:c7:76: ab:0c:b3:57:64:81:4d:14:35:25:25:1b:aa:57:ad: 82:3d:b3:ce:af:b4:8e:40:2e:dc:f5:61:05:49:f8: 46:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:05:34:B4:FA:9E:BD:8C:B9:78:1C:E9:F9:51:ED:1A:A0:72:69:C7 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:25:55:74:b5:8f:ab:cf:5b:ca:4c:94:57:28:23:94:86:cf: 19:65:94:a4:16:61:be:b3:97:08:57:17:ad:20:5f:f8:96:14: eb:54:37:63:83:e6:a4:cd:ba:11:44:fa:63:c4:cf:81:83:73: 4e:5c:e1:7c:c9:e6:e8:b3:f6:46:e5:e5:cb:9e:8c:f5:00:61: 2f:a1:0a:bf:64:c9:fc:66:d9:bf:d8:8a:b4:76:f0:8b:f9:01: 73:b0:ee:cd:e5:74:d0:b9:d3:d7:7f:45:61:a2:cf:d3:35:c2: 50:0f:48:da:e1:06:40:eb:14:93:94:c6:33:f2:b1:c9:27:95: 86:7a:c0:20:83:48:71:bc:a5:67:ae:98:eb:c3:7b:53:d8:a7: e3:23:1b:13:1c:78:fb:7b:b9:3b:6a:30:5b:de:43:0b:d5:46: fd:13:4d:bf:6c:3b:b5:01:c7:f0:93:f8:76:4d:9f:c5:d4:8c: 3e:a9:4a:c8:12:c5:61:6a:88:3f:a3:38:02:e1:40:b4:18:e5: 1f:6b:c9:f5:30:f6:c2:72:16:6f:60:69:ec:6e:0b:c2:38:30: 6e:1a:71:d9:1a:a5:0a:a2:39:49:d2:75:33:de:e2:e6:aa:5d: e4:46:55:7b:e2:96:79:31:2c:e9:aa:55:3d:bd:db:b4:05:20: 0c:9d:ea:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwOTE0MjIyNTQxWhcNMjUwOTIxMjIyNTQxWjAYMRYwFAYD VQQDEw02OGM3NDBlNi1mNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDB4uwSJcnLhict4U1QR2aHhlAqcBZxML9MHp0+f1NWmzGY4xgm1m5b2W4y2 gASqXuEX2J50lHWUSl5ZYp+gHZVY50Z5Jz1wEJW0qlHTFT2yZfevrUWbtA1dJGVW cUE8sNMJ93JCUz8MZIaV5f/vTyqEgsfQbZY45fMy750BHCaYmvEoKFL/JAg4Mhvi gMRXH+br46CZLfKI2K8lEMtqC4iHtXDKjV/jkG2h0/bu3mml6tlwPAOjWSsO5E4f XyoiiIHr+N0L+HVMIz6VQINfBaTPISanSLKneVrT9rA1x3arDLNXZIFNFDUlJRuq V62CPbPOr7SOQC7c9WEFSfhGIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEFNLT6 nr2MuXgc6flR7RqgcmnHMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDJVV0tY+rz1vKTJRXKCOUhs8ZZZSkFmG+s5cIVxetIF/4lhTrVDdj g+akzboRRPpjxM+Bg3NOXOF8yebos/ZG5eXLnoz1AGEvoQq/ZMn8Ztm/2Iq0dvCL +QFzsO7N5XTQudPXf0Vhos/TNcJQD0ja4QZA6xSTlMYz8rHJJ5WGesAgg0hxvKVn rpjrw3tT2KfjIxsTHHj7e7k7ajBb3kML1Ub9E02/bDu1Acfwk/h2TZ/F1Iw+qUrI EsVhaog/ozgC4UC0GOUfa8n1MPbCchZvYGnsbgvCODBuGnHZGqUKojlJ0nUz3uLm ql3kRlV74pZ5MSzpqlU9vdu0BSAMneoH -----END CERTIFICATE-----Generated at Tue Sep 16 00:18:20 2025 by rpki-client