$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: AdinK/bEsF5OUEj/TkS0uwMCDFPzQVILM1gFQe3JFzc= Subject key identifier: 89:D9:63:45:FD:8A:26:88:F0:1F:9C:7C:75:FB:3F:07:93:D1:4B:98 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 015A Signing time: Tue 19 Aug 2025 04:25:08 +0000 Manifest this update: Tue 19 Aug 2025 04:25:08 +0000 Manifest next update: Tue 26 Aug 2025 04:25:08 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: Oy5TQjDukIt4KPsflSFO54fDdp0rynlY8JLjlY/BbIw=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: YEagGQfd4UV4nz53l/WybeYAt4w6+zm6QyFgV48pGBc=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: zzpFcIYATvvz+ehYyoXcGsAYVOBFYBXyZDv/oX18Mx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 04:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Aug 19 04:25:08 2025 GMT Not After : Aug 26 04:25:08 2025 GMT Subject: CN=68a3fca4-50b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:aa:77:cf:f1:2a:1d:47:98:cf:aa:e4:a0:8c: 4b:47:c9:60:f0:69:08:9c:9d:e0:23:fd:1b:ce:b8: 58:04:31:6d:e4:97:71:e4:7e:5b:08:a2:0e:47:bd: 31:c2:18:cc:43:91:f1:79:c0:54:4c:0a:98:2c:44: 4b:bd:c7:09:f6:ef:86:79:0b:45:89:c5:c6:13:dc: c1:7c:72:36:2d:bf:55:fc:ed:6f:74:da:0f:cd:ec: 6b:4e:9e:61:f4:45:50:7f:be:cf:99:aa:94:68:d3: 52:5b:51:d3:03:c0:b8:1f:c3:f1:e5:da:44:3c:b8: 30:64:e8:c1:6c:0a:f5:ac:82:38:1c:e3:71:2d:9f: 17:04:5f:be:36:c6:63:16:78:c6:2a:8e:88:84:54: 37:25:b5:da:8c:79:46:7b:af:19:04:a9:cd:7d:70: 9e:e4:61:4e:1a:a1:07:95:63:cc:9a:bd:aa:72:1a: 16:d7:d9:bd:99:f0:bf:de:f4:e3:6f:1e:11:7f:f9: f5:be:99:66:ba:5d:b2:92:b9:f1:6a:0a:10:34:f1: 35:69:99:9b:36:6a:c8:84:29:f5:db:a7:15:67:67: 61:7f:a6:37:9e:42:bf:3a:5e:21:17:59:9a:29:a2: e9:cf:b0:f0:1e:00:47:b6:45:37:40:20:b9:29:e1: f5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:63:45:FD:8A:26:88:F0:1F:9C:7C:75:FB:3F:07:93:D1:4B:98 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d3:e9:fa:1e:0e:7a:84:8b:45:36:79:18:f2:51:e6:d2:97: 9a:e7:69:f0:6c:5f:cf:26:79:75:98:c9:64:58:4b:dd:00:cf: b2:55:5e:2f:13:d8:3b:b6:d0:31:e1:74:67:e5:c8:3d:e4:2d: eb:f4:d9:60:d4:3d:9a:07:34:97:dd:95:8b:5c:92:ee:3c:0c: 04:db:39:c3:0d:50:e0:d8:04:9e:9f:06:05:16:f9:d4:f2:30: ea:38:59:99:b3:df:a1:df:4f:95:eb:50:27:f3:06:52:1d:4d: 62:e5:80:74:07:7d:b6:a0:18:f4:b7:7b:17:cc:00:4a:e6:df: 7c:8a:71:3e:77:41:f7:16:ba:6b:0c:58:ae:36:6b:f9:90:57: 43:ca:60:b2:03:f5:6c:e2:96:49:dd:48:10:02:e9:a3:f7:40: dd:1c:c8:07:41:a8:96:bf:20:e3:a9:56:ba:ba:ed:d8:58:b5: ee:18:c4:0b:15:30:9a:67:4f:5b:c8:c6:88:44:df:6b:ac:4d: 03:46:5b:6e:a5:6d:51:98:21:a7:87:84:e3:71:11:43:72:ae: 92:73:45:05:6d:c2:0e:d3:b9:9b:9a:30:60:3d:8b:50:50:a7: 34:9c:f1:c9:ac:57:cc:c3:a3:c6:44:72:e9:41:64:c5:35:ed: c3:dc:7d:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUwODE5MDQyNTA4WhcNMjUwODI2MDQyNTA4WjAYMRYwFAYD VQQDEw02OGEzZmNhNC01MGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqp3z/EqHUeYz6rkoIxLR8lg8GkInJ3gI/0bzrhYBDFt5Jdx5H5bCKIOR70x whjMQ5HxecBUTAqYLERLvccJ9u+GeQtFicXGE9zBfHI2Lb9V/O1vdNoPzexrTp5h 9EVQf77PmaqUaNNSW1HTA8C4H8Px5dpEPLgwZOjBbAr1rII4HONxLZ8XBF++NsZj FnjGKo6IhFQ3JbXajHlGe68ZBKnNfXCe5GFOGqEHlWPMmr2qchoW19m9mfC/3vTj bx4Rf/n1vplmul2ykrnxagoQNPE1aZmbNmrIhCn126cVZ2dhf6Y3nkK/Ol4hF1ma KaLpz7DwHgBHtkU3QCC5KeH14QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInZY0X9 iiaI8B+cfHX7PweT0UuYMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG0+n6Hg56hItFNnkY8lHm0pea52nwbF/PJnl1mMlkWEvdAM+yVV4v E9g7ttAx4XRn5cg95C3r9Nlg1D2aBzSX3ZWLXJLuPAwE2znDDVDg2ASenwYFFvnU 8jDqOFmZs9+h30+V61An8wZSHU1i5YB0B322oBj0t3sXzABK5t98inE+d0H3Frpr DFiuNmv5kFdDymCyA/Vs4pZJ3UgQAumj90DdHMgHQaiWvyDjqVa6uu3YWLXuGMQL FTCaZ09byMaIRN9rrE0DRltupW1RmCGnh4TjcRFDcq6Sc0UFbcIO07mbmjBgPYtQ UKc0nPHJrFfMw6PGRHLpQWTFNe3D3H1h -----END CERTIFICATE-----Generated at Wed Aug 20 17:24:41 2025 by rpki-client