$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft File: i1fdFr2X-1v8IdnMqeK4bVUC4og.mft (raw, json) Hash identifier: M48WIYK8mdFSn76x3zI388mr6Gs4GRtaEwL/l8nqP4o= Subject key identifier: 3D:93:24:EB:9E:F7:CB:49:EC:4A:9D:F6:F9:42:2E:96:BE:89:67:F6 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 05C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft Manifest number: 05BE Signing time: Thu 04 Sep 2025 23:21:07 +0000 Manifest this update: Thu 04 Sep 2025 23:21:06 +0000 Manifest next update: Thu 11 Sep 2025 23:21:06 +0000 Files and hashes: 1: i1fdFr2X-1v8IdnMqeK4bVUC4og.crl (hash: NWyW4ewEAc+M7we7Q3OKVwt+EqPZlxUEP4/jIadqFY8=) 2: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (hash: 6nBsIW1FtTa2lY5be/el75WgarvUxw35P+urmn+K7Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1475 (0x5c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F, serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Sep 4 23:21:06 2025 GMT Not After : Sep 11 23:21:06 2025 GMT Subject: CN=68ba1ee3-f063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d0:a7:f2:62:e1:9e:c7:52:c8:c4:bf:76:a4: 91:67:63:28:24:cf:70:25:2c:89:11:06:da:04:b4: 79:3a:9f:1b:a3:31:4a:17:51:f8:c2:f8:e6:de:ed: c8:4b:bc:6d:df:b4:51:e5:dc:ae:f6:b2:82:4e:2e: b0:40:e5:d7:74:76:8b:61:b9:56:d1:fa:af:25:eb: 38:72:eb:cf:d8:19:23:c5:02:f3:50:97:bd:a4:06: 29:3e:06:26:47:96:70:a8:f6:a8:cf:9f:44:17:75: 43:f5:9f:77:99:12:d9:e0:55:c3:a3:7d:8b:63:1c: b8:9a:a8:55:9e:82:52:24:ba:0a:e9:5d:e3:84:cb: ee:b6:6e:a9:6d:ee:60:a8:8b:44:8c:c5:94:d5:f3: 4c:50:e2:40:d0:20:4e:40:4d:9c:83:1b:35:bc:58: fb:46:6f:2b:10:51:b5:c4:a7:e0:de:f3:55:56:13: 15:15:b8:4a:7f:98:f5:c3:b8:43:9f:5b:36:fb:f2: fa:20:47:15:32:0e:1d:f9:61:d3:0a:bd:c1:36:1e: 2f:d6:0e:b1:e4:b2:79:56:cd:85:69:25:c1:fa:e8: d9:ef:4b:65:a1:4e:af:99:e7:4c:fd:a4:a4:07:1c: fb:2e:9e:f1:e9:4e:02:80:2e:18:07:c5:37:a3:3e: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:93:24:EB:9E:F7:CB:49:EC:4A:9D:F6:F9:42:2E:96:BE:89:67:F6 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:31:19:4f:5f:c7:c9:4c:35:af:db:8d:1e:d3:7b:fe:1b:2a: e6:e7:63:7f:35:84:19:13:f7:26:2f:36:bb:92:b0:8b:77:d5: c7:a2:9a:f4:46:2b:2f:41:7d:ec:da:c9:4d:e6:ee:eb:98:a8: 3e:48:5f:2d:3c:24:94:12:4a:0e:84:1f:a9:55:92:54:a5:fb: 88:07:b7:14:e8:cd:42:17:d7:f0:7d:1c:2b:a3:7f:80:db:77: 05:f5:77:7e:c7:52:88:b1:22:e2:84:a2:74:9e:7b:a1:44:b6: f8:82:f5:c1:b6:b3:88:94:d0:8a:e0:d5:d1:1d:07:48:a6:b2: 86:94:46:8a:df:1e:0c:bf:61:69:26:ec:2b:ee:49:86:04:ea: 81:17:c3:ed:6d:62:27:73:e2:c6:67:02:dc:8f:d0:a5:c6:25: 8b:3b:ad:ee:be:36:c5:9c:3c:fb:b9:57:58:c9:8c:6e:b4:2a: c4:b2:08:ed:e1:f2:b7:48:e4:50:5a:4c:36:f5:ce:36:94:fd: 4c:9a:ec:b3:a1:c1:87:51:8e:3c:d4:93:6c:88:5e:8e:42:48: 4d:cc:77:b5:43:6b:4d:10:06:89:9b:6b:da:58:5c:64:44:29: d7:a0:63:b3:60:1b:a2:b5:f3:ff:ba:0c:ef:00:ca:53:a1:97: 92:b7:63:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjUwOTA0MjMyMTA2WhcNMjUwOTExMjMyMTA2WjAYMRYwFAYD VQQDEw02OGJhMWVlMy1mMDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9Cn8mLhnsdSyMS/dqSRZ2MoJM9wJSyJEQbaBLR5Op8bozFKF1H4wvjm3u3I S7xt37RR5dyu9rKCTi6wQOXXdHaLYblW0fqvJes4cuvP2BkjxQLzUJe9pAYpPgYm R5ZwqPaoz59EF3VD9Z93mRLZ4FXDo32LYxy4mqhVnoJSJLoK6V3jhMvutm6pbe5g qItEjMWU1fNMUOJA0CBOQE2cgxs1vFj7Rm8rEFG1xKfg3vNVVhMVFbhKf5j1w7hD n1s2+/L6IEcVMg4d+WHTCr3BNh4v1g6x5LJ5Vs2FaSXB+ujZ70tloU6vmedM/aSk Bxz7Lp7x6U4CgC4YB8U3oz5VIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2TJOue 98tJ7Eqd9vlCLpa+iWf2MB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5Ri8zQkU1NDlDRUQ2NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0x djhJZG5NcWVLNGJWVUM0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7MRlPX8fJTDWv240e03v+Gyrm52N/NYQZE/cmLza7krCLd9XHopr0 RisvQX3s2slN5u7rmKg+SF8tPCSUEkoOhB+pVZJUpfuIB7cU6M1CF9fwfRwro3+A 23cF9Xd+x1KIsSLihKJ0nnuhRLb4gvXBtrOIlNCK4NXRHQdIprKGlEaK3x4Mv2Fp Juwr7kmGBOqBF8PtbWInc+LGZwLcj9ClxiWLO63uvjbFnDz7uVdYyYxutCrEsgjt 4fK3SORQWkw29c42lP1MmuyzocGHUY481JNsiF6OQkhNzHe1Q2tNEAaJm2vaWFxk RCnXoGOzYBuitfP/ugzvAMpToZeSt2MB -----END CERTIFICATE-----Generated at Sat Sep 6 06:58:39 2025 by rpki-client