$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: QRsr9VNEMHUNAVndXJNWsXZSGLIKUsNreqijwTmP4vQ= Subject key identifier: 5A:6D:9B:6B:72:73:C3:D0:E6:0F:46:15:0D:69:93:DB:7E:B3:99:14 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B25 Signing time: Thu 18 Sep 2025 19:30:56 +0000 Manifest this update: Thu 18 Sep 2025 19:30:56 +0000 Manifest next update: Thu 25 Sep 2025 19:30:56 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: 9zoFzQZ/fORpyzgfEWBJGfRb3lL1rZrZCqXsybn8kbw=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Sep 18 19:30:56 2025 GMT Not After : Sep 25 19:30:56 2025 GMT Subject: CN=68cc5df0-316c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:44:78:03:fe:85:ac:4d:af:8b:f3:12:de:14: c9:81:1e:40:fd:e8:0f:18:30:86:9e:1b:8a:b0:66: f9:1a:49:fa:c4:4a:ac:6c:c7:70:82:f2:2a:9d:f2: 46:ab:40:2b:08:fa:81:b8:07:6b:44:bc:03:d4:48: 02:3e:37:85:38:cd:c8:f0:67:a1:5e:b1:07:85:11: 18:d6:92:ab:4e:2c:f1:24:53:96:0e:af:d5:48:35: 1b:d2:63:4a:ec:02:f6:b1:0a:36:98:b5:fe:5a:78: 12:a2:90:94:af:eb:90:e6:61:9d:34:45:5a:41:4b: 51:dc:0b:8c:89:cb:55:5a:90:a7:77:db:e7:ec:59: 61:bb:29:53:6b:f5:c8:be:fb:b4:d8:f6:cf:e3:15: df:59:4e:0c:67:6d:bc:79:28:fc:6e:b9:11:6c:16: d5:9d:bc:fe:eb:52:c5:d1:47:8e:a7:fb:48:12:59: 93:95:ff:e4:58:6e:78:03:e3:87:e7:4c:70:7d:da: 91:91:6e:1a:ed:1e:7f:2e:fd:e9:f0:cb:2a:6d:67: 48:5e:a6:89:e3:58:3c:e9:67:a3:c0:f8:cf:67:58: bf:9b:a1:f3:ee:49:de:3b:33:3f:f9:23:bd:74:a3: 23:47:57:68:a6:ed:dc:a9:ae:63:97:21:c3:45:7d: 99:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6D:9B:6B:72:73:C3:D0:E6:0F:46:15:0D:69:93:DB:7E:B3:99:14 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:46:d2:19:12:5f:f1:38:fa:43:ed:5f:f9:0e:94:88:45:df: 3c:ec:b8:20:88:55:99:87:eb:e9:4f:cd:e9:9b:ea:2a:7f:91: 2b:4d:2c:49:dc:27:ec:5a:f4:4e:71:da:70:53:dc:83:fb:ef: 86:8c:6f:54:fb:5a:62:56:fc:c9:d8:69:62:1a:62:62:98:3d: 55:2a:a0:ff:98:c7:2c:0e:aa:90:18:11:32:06:63:7b:0b:be: 4e:7e:9a:73:06:d7:82:6e:e7:98:d1:d8:5b:3a:24:ba:fe:e4: 5a:5b:c1:79:ba:4d:26:8b:75:c2:ad:71:39:5f:f0:cd:9d:8b: 38:0e:4f:ba:b1:ce:47:a1:8d:79:69:1a:a6:c5:e2:e2:c2:95: 45:f2:fd:64:3f:89:b7:7d:06:49:28:b7:14:ea:c0:6f:d1:c7: 76:2f:28:fc:14:c9:5a:85:af:5b:5e:a5:71:56:69:fc:2b:31: 4d:8a:82:a7:1c:43:6b:92:14:03:98:49:f3:87:44:ae:5c:83: d3:b2:e8:34:aa:b3:e7:05:4e:49:82:b6:01:3b:8a:6d:76:a5: a6:ce:c6:9a:63:27:ce:e4:19:1b:01:13:9d:bd:04:b4:f8:c9: 2a:6f:d1:67:42:d6:b5:e2:dc:ad:1b:72:d3:fd:86:6b:b9:63: 1c:54:de:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwOTE4MTkzMDU2WhcNMjUwOTI1MTkzMDU2WjAYMRYwFAYD VQQDEw02OGNjNWRmMC0zMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkR4A/6FrE2vi/MS3hTJgR5A/egPGDCGnhuKsGb5Gkn6xEqsbMdwgvIqnfJG q0ArCPqBuAdrRLwD1EgCPjeFOM3I8GehXrEHhREY1pKrTizxJFOWDq/VSDUb0mNK 7AL2sQo2mLX+WngSopCUr+uQ5mGdNEVaQUtR3AuMictVWpCnd9vn7FlhuylTa/XI vvu02PbP4xXfWU4MZ228eSj8brkRbBbVnbz+61LF0UeOp/tIElmTlf/kWG54A+OH 50xwfdqRkW4a7R5/Lv3p8MsqbWdIXqaJ41g86WejwPjPZ1i/m6Hz7kneOzM/+SO9 dKMjR1dopu3cqa5jlyHDRX2ZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFptm2ty c8PQ5g9GFQ1pk9t+s5kUMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeRtIZEl/xOPpD7V/5DpSIRd887LggiFWZh+vpT83pm+oqf5ErTSxJ 3CfsWvROcdpwU9yD+++GjG9U+1piVvzJ2GliGmJimD1VKqD/mMcsDqqQGBEyBmN7 C75OfppzBteCbueY0dhbOiS6/uRaW8F5uk0mi3XCrXE5X/DNnYs4Dk+6sc5HoY15 aRqmxeLiwpVF8v1kP4m3fQZJKLcU6sBv0cd2Lyj8FMlaha9bXqVxVmn8KzFNioKn HENrkhQDmEnzh0SuXIPTsug0qrPnBU5JgrYBO4ptdqWmzsaaYyfO5BkbAROdvQS0 +Mkqb9FnQta14tytG3LT/YZruWMcVN6z -----END CERTIFICATE-----Generated at Fri Sep 19 05:29:32 2025 by rpki-client