$ rpki-client -vvf rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft File: imIbx3o91BcMuRA_-HiLyQkAgtE.mft (raw, json) Hash identifier: uXGok7dtryD4Hs2+f+4mHhBTwE7yMEzPprrY6QLtr/E= Subject key identifier: CB:7C:28:14:4D:E5:DC:EA:A1:F9:DA:F0:2C:83:C6:79:F2:03:23:C7 Authority key identifier: 8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 Certificate issuer: /CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft Manifest number: 0159 Signing time: Wed 17 Sep 2025 04:38:54 +0000 Manifest this update: Wed 17 Sep 2025 04:38:53 +0000 Manifest next update: Wed 24 Sep 2025 04:38:53 +0000 Files and hashes: 1: imIbx3o91BcMuRA_-HiLyQkAgtE.crl (hash: PN0uiqdNYW3tHqgsOSB8Jz9yN36P3WMaVoxEeh5nhLU=) 2: 872F5E22835A11EE9FFEC146C4F9AE02.roa (hash: MIl/OMgyucN0EutmGHMH29cPoxdMejUcwQsKGNX20nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C24C5, serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Validity Not Before: Sep 17 04:38:53 2025 GMT Not After : Sep 24 04:38:53 2025 GMT Subject: CN=68ca3b5e-adcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d1:5e:a3:05:59:f6:69:6c:8c:5f:63:a8:ff: 57:b7:db:bb:9d:fc:5c:34:37:e5:77:aa:1f:42:cf: 07:0d:5c:55:72:d3:28:34:2b:03:60:ae:13:35:86: 0f:5e:4d:b9:bc:27:36:67:96:49:7f:5a:2d:cc:b8: 00:5a:89:63:9a:1a:32:7d:53:13:e7:cb:9a:2d:d2: 50:0e:98:e9:ab:38:59:c1:7d:cc:2b:75:2f:23:92: b7:ca:57:b5:5f:c6:c3:2f:b7:e6:f5:6d:74:ac:b8: 23:ad:d5:26:8b:1b:4f:73:53:2b:06:61:df:2c:ba: 68:cd:ef:cc:cc:13:9e:8f:26:13:dc:fc:a6:a5:cb: 54:58:a1:ee:e9:85:60:30:fc:2e:80:71:c6:41:e8: 5e:ee:82:62:43:35:7c:0c:ee:b1:de:1b:b6:dd:2b: 0d:d4:fc:ea:c1:33:ae:88:fe:7d:2c:73:e8:18:4a: d8:bf:44:df:70:fd:2d:ac:0e:7c:6b:8b:70:5e:a5: 0f:cd:6e:0e:79:fd:63:9e:6e:71:7e:91:9d:9b:c3: 9f:27:9d:4c:19:57:7f:c4:33:fc:b3:82:9f:9f:42: be:0d:73:0d:79:bf:46:6d:cd:40:d4:52:c3:0a:55: c9:b5:ae:6e:b2:d8:60:66:fa:d4:97:65:1b:06:fe: 2b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7C:28:14:4D:E5:DC:EA:A1:F9:DA:F0:2C:83:C6:79:F2:03:23:C7 X509v3 Authority Key Identifier: keyid:8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:56:f6:3b:b2:8b:99:95:89:9d:1d:2d:78:79:5e:b9:4a:ef: ce:82:7f:82:75:f3:a0:ad:c8:e1:b9:4d:c4:31:49:ba:bb:fb: 5d:50:20:fd:7c:02:a4:0a:87:be:3c:3d:71:1a:7a:48:10:0a: 80:32:bc:0f:ce:ad:e8:61:e7:d8:03:47:4d:c1:1c:f5:5d:01: 68:b4:19:0b:eb:93:9e:56:84:94:5a:5d:cf:db:02:e7:2f:13: 26:6d:07:9e:81:b1:b0:43:e4:6a:32:e6:02:17:08:5e:9f:b7: f8:c3:b3:c2:e7:c6:25:1c:ac:18:e8:b0:24:d5:51:77:7b:4e: e5:f7:c2:02:57:b3:e9:87:7e:4c:c7:c2:42:81:0a:6c:43:ca: 45:81:fa:8d:3a:cd:4a:ac:c5:8b:fa:19:76:09:c5:94:85:82: 5c:dd:6e:90:cf:a6:d3:ba:59:1a:42:eb:db:52:77:d5:12:6c: 96:85:4c:0c:f3:f6:f1:40:4e:bd:85:11:fc:48:5b:fd:45:49: d8:81:77:74:d0:30:9d:84:2d:69:df:39:2a:05:05:db:7d:16: a6:c9:cd:c8:49:fe:a2:50:80:22:e0:13:38:02:09:e0:69:eb: 40:4c:e3:d0:9a:b9:9d:76:f3:a8:32:41:41:bd:62:b5:39:35: 5e:09:67:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI0QzUxMTAvBgNVBAUTKDhBNjIxQkM3N0EzREQ0MTcwQ0I5MTAzRkY4Nzg4QkM5 MDkwMDgyRDEwHhcNMjUwOTE3MDQzODUzWhcNMjUwOTI0MDQzODUzWjAYMRYwFAYD VQQDEw02OGNhM2I1ZS1hZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNFeowVZ9mlsjF9jqP9Xt9u7nfxcNDfld6ofQs8HDVxVctMoNCsDYK4TNYYP Xk25vCc2Z5ZJf1otzLgAWoljmhoyfVMT58uaLdJQDpjpqzhZwX3MK3UvI5K3yle1 X8bDL7fm9W10rLgjrdUmixtPc1MrBmHfLLpoze/MzBOejyYT3PympctUWKHu6YVg MPwugHHGQehe7oJiQzV8DO6x3hu23SsN1PzqwTOuiP59LHPoGErYv0TfcP0trA58 a4twXqUPzW4Oef1jnm5xfpGdm8OfJ51MGVd/xDP8s4Kfn0K+DXMNeb9Gbc1A1FLD ClXJta5usthgZvrUl2UbBv4r6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt8KBRN 5dzqofna8CyDxnnyAyPHMB8GA1UdIwQYMBaAFIpiG8d6PdQXDLkQP/h4i8kJAILR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjRDNS9EMUUyRDk2ODgz NTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFCY011UkFfLUhpTHlRa0Fn dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltSWJ4M285MUJjTXVSQV8tSGlMeVFrQWd0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjRDNS9EMUUyRDk2ODgzNTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFC Y011UkFfLUhpTHlRa0FndEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlVvY7souZlYmdHS14eV65Su/Ogn+CdfOgrcjhuU3EMUm6u/tdUCD9 fAKkCoe+PD1xGnpIEAqAMrwPzq3oYefYA0dNwRz1XQFotBkL65OeVoSUWl3P2wLn LxMmbQeegbGwQ+RqMuYCFwhen7f4w7PC58YlHKwY6LAk1VF3e07l98ICV7Pph35M x8JCgQpsQ8pFgfqNOs1KrMWL+hl2CcWUhYJc3W6Qz6bTulkaQuvbUnfVEmyWhUwM 8/bxQE69hRH8SFv9RUnYgXd00DCdhC1p3zkqBQXbfRamyc3ISf6iUIAi4BM4Agng aetATOPQmrmddvOoMkFBvWK1OTVeCWe0 -----END CERTIFICATE-----Generated at Thu Sep 18 23:09:07 2025 by rpki-client