$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: CkS2ddEqhmbRkYvx/YksZvoUeP18UtS9ZfUfsjpH03M= Subject key identifier: CF:45:5D:EA:1A:D4:4A:0F:3C:60:02:BB:40:9B:D3:71:37:2E:DE:D3 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: CD Signing time: Tue 09 Sep 2025 05:49:06 +0000 Manifest this update: Tue 09 Sep 2025 05:49:05 +0000 Manifest next update: Tue 16 Sep 2025 05:49:05 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: lvVPkoPW8FmM39Rtx9qgmu/Y214RlCjYjGDSMfnSoJU=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Sep 9 05:49:05 2025 GMT Not After : Sep 16 05:49:05 2025 GMT Subject: CN=68bfbfd1-2520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:d0:fd:22:ec:31:39:27:bf:56:3b:17:99: 3f:a7:09:d7:23:84:ef:94:4d:b2:d7:58:ec:15:bc: a5:6f:f7:2b:9e:bb:cd:47:c4:be:fd:30:b3:7b:96: 3e:9a:a8:a5:b1:03:1b:bc:d1:3a:74:00:7b:19:ac: e0:dd:67:fc:8c:70:1f:0b:9d:6e:ac:86:83:12:33: 54:09:d7:1b:c4:c5:b9:92:74:10:b6:8c:d0:d6:67: 2a:5c:6f:b5:16:3c:68:ac:63:dd:6e:1c:f7:09:f6: 78:5f:4b:88:ac:47:96:3d:c9:1a:9e:2e:36:2d:a8: 38:fc:47:a1:f7:14:62:1b:b4:c8:bf:13:dc:17:a2: 77:01:b2:34:a6:01:b5:7d:8c:8a:99:e2:52:09:44: cd:ce:bd:35:af:90:9d:df:29:49:aa:44:ac:a8:0a: c4:b2:11:0b:06:db:f9:b3:3f:ad:7a:66:47:8e:fe: c5:1e:60:22:bd:a5:69:bd:17:28:94:ec:da:a5:63: ba:e8:d0:2a:0f:7e:34:71:67:9c:ed:44:ae:c6:f1: 3f:bf:d5:f5:93:7b:fd:86:35:bf:15:48:e9:b2:6e: 19:21:75:48:8e:4f:0b:bc:ac:e9:f9:77:fd:52:e9: 1a:79:7b:ed:63:c4:dd:57:bf:e7:85:27:f0:5e:37: e7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:45:5D:EA:1A:D4:4A:0F:3C:60:02:BB:40:9B:D3:71:37:2E:DE:D3 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:76:8a:58:d5:c1:94:03:00:34:eb:13:d0:a2:1d:87:75:42: 9b:aa:e1:69:65:df:f4:60:c2:90:f4:02:47:98:c8:97:ce:a7: 5a:0b:3c:12:fc:ee:8c:82:66:9d:c4:61:63:80:cc:81:ef:4d: 49:16:1c:a6:25:4f:46:8c:f9:8d:e7:6c:17:f4:51:54:b8:41: f5:8f:c7:07:4f:6d:e5:0f:e1:ae:98:1e:e6:48:a3:47:a1:fd: 17:e2:cb:9a:69:65:96:f9:20:07:db:aa:21:c8:a7:43:8e:d6: 81:75:82:1b:85:42:91:e7:bf:30:81:6b:2d:7b:12:bd:43:30: 6a:7d:5e:8f:9b:2c:aa:52:bd:a5:01:cd:7d:66:a1:a0:6a:78: fd:4b:4f:2d:1d:c4:c3:7d:58:7c:ac:c8:25:fb:a7:6b:18:53: fa:c7:a1:a5:c6:d5:63:c9:26:c5:1c:c4:47:37:39:4a:c8:90: a2:0d:e3:85:12:24:54:c5:43:65:06:d6:de:f6:c5:8a:6e:c6: 58:28:b0:c1:02:fe:87:f8:7f:dd:b4:ca:a3:18:ab:18:6c:29: 23:79:00:35:2d:c3:3f:da:3c:0a:33:d0:43:7d:25:28:2f:4b: 92:25:03:1b:a1:6b:e4:18:89:5e:39:85:12:b5:f5:f2:e2:44: 06:0f:5a:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwOTA5MDU0OTA1WhcNMjUwOTE2MDU0OTA1WjAYMRYwFAYD VQQDEw02OGJmYmZkMS0yNTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4HQ/SLsMTknv1Y7F5k/pwnXI4TvlE2y11jsFbylb/crnrvNR8S+/TCze5Y+ mqilsQMbvNE6dAB7Gazg3Wf8jHAfC51urIaDEjNUCdcbxMW5knQQtozQ1mcqXG+1 FjxorGPdbhz3CfZ4X0uIrEeWPckani42Lag4/Eeh9xRiG7TIvxPcF6J3AbI0pgG1 fYyKmeJSCUTNzr01r5Cd3ylJqkSsqArEshELBtv5sz+temZHjv7FHmAivaVpvRco lOzapWO66NAqD340cWec7USuxvE/v9X1k3v9hjW/FUjpsm4ZIXVIjk8LvKzp+Xf9 UukaeXvtY8TdV7/nhSfwXjfnswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9FXeoa 1EoPPGACu0Cb03E3Lt7TMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7dopY1cGUAwA06xPQoh2HdUKbquFpZd/0YMKQ9AJHmMiXzqdaCzwS /O6MgmadxGFjgMyB701JFhymJU9GjPmN52wX9FFUuEH1j8cHT23lD+GumB7mSKNH of0X4suaaWWW+SAH26ohyKdDjtaBdYIbhUKR578wgWstexK9QzBqfV6PmyyqUr2l Ac19ZqGganj9S08tHcTDfVh8rMgl+6drGFP6x6GlxtVjySbFHMRHNzlKyJCiDeOF EiRUxUNlBtbe9sWKbsZYKLDBAv6H+H/dtMqjGKsYbCkjeQA1LcM/2jwKM9BDfSUo L0uSJQMboWvkGIleOYUStfXy4kQGD1oh -----END CERTIFICATE-----Generated at Tue Sep 9 14:10:07 2025 by rpki-client