$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: xtTUy7FLTmzclR95GZ2p9AtrLS7IkO/1gSMBBYsog6Q= Subject key identifier: 28:20:D4:67:7B:E0:0C:29:21:BB:AD:E5:CA:19:18:AE:F6:8B:47:A6 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0130 Signing time: Wed 17 Sep 2025 05:09:19 +0000 Manifest this update: Wed 17 Sep 2025 05:09:18 +0000 Manifest next update: Wed 24 Sep 2025 05:09:18 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: daTfGkHeqiyXxaPChJo0c7Pena30IL1IbAFErACbKBE=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Sep 17 05:09:18 2025 GMT Not After : Sep 24 05:09:18 2025 GMT Subject: CN=68ca427e-8ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7c:88:63:c9:bb:23:67:ce:af:bc:f9:f7:07: 09:67:31:45:ab:da:c8:45:89:bf:91:f4:a1:33:66: 0f:00:2b:5d:73:e2:18:cf:79:27:2a:79:43:66:75: e6:61:5e:e0:30:bb:90:ce:8d:ec:c6:e4:28:14:9c: f0:a4:34:a7:23:c4:17:9e:52:0d:d5:20:8f:fd:d9: 21:02:49:0d:ee:86:b6:47:cd:da:b6:25:46:63:b4: 91:11:04:b3:96:8f:38:2e:83:66:27:f0:02:77:c9: 79:86:06:5c:15:c9:12:23:73:23:3f:ba:a3:8e:fa: d3:5a:19:c7:6e:8b:16:3f:e8:85:0d:ca:87:94:44: 82:e3:83:d7:4d:f2:6a:9d:61:ea:8a:70:eb:e4:a6: cc:d6:f4:3f:9e:8d:6c:c8:5c:7f:15:ec:35:f4:87: 1c:09:81:87:81:5a:8d:fd:a1:51:b5:25:ce:67:ee: 86:b4:bc:82:fe:77:34:5c:8b:ab:b0:41:07:43:a9: 9d:ad:54:1b:72:00:ad:c9:c8:fb:3f:0c:31:ab:6a: e8:88:47:bc:36:d6:dc:ef:24:7f:7d:c6:66:01:b1: 38:aa:44:c1:9a:93:40:8e:e0:bf:a2:1e:b2:69:1d: d1:db:f8:59:29:6b:3b:7b:3c:0f:21:42:d2:c4:c8: b3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:20:D4:67:7B:E0:0C:29:21:BB:AD:E5:CA:19:18:AE:F6:8B:47:A6 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:b8:67:4e:86:66:ca:ab:44:d3:5b:b9:e1:b2:99:48:9e:b5: 82:c3:91:60:1e:51:c7:6d:62:0f:b3:a0:68:09:9f:82:49:1a: e0:94:41:a3:0f:3f:aa:21:4d:97:b7:a0:75:4c:6f:f0:6e:98: 8d:2b:88:aa:56:4a:c3:77:e5:87:b0:ce:9b:b8:12:a1:5c:7b: 2f:a1:49:0d:97:9f:64:be:a8:b4:54:a1:7c:5b:86:7a:c8:e0: 66:2c:c4:85:db:a9:57:95:9b:66:31:cb:6b:a1:f2:4e:61:02: 55:0c:1b:46:33:40:81:83:22:07:19:b2:e2:90:33:6e:11:39: 5a:27:ab:98:a1:3c:76:7e:29:e5:77:f6:73:39:b4:dd:80:30: eb:be:13:28:ea:83:db:2d:c4:07:dc:a7:3f:18:14:23:7c:05: cb:79:cd:0f:96:17:fc:49:fe:2d:4f:a5:67:3b:7a:d3:40:1e: 7a:ec:c6:ec:e1:16:79:5e:af:e0:12:84:b5:fc:ac:d6:0c:64: b8:89:e0:af:1a:31:1d:ce:74:55:21:4d:97:4a:bd:92:49:81: 53:5c:de:e2:af:3b:16:3d:77:3c:a6:20:86:0e:87:8a:df:cf: f9:8a:f0:c6:48:c9:ec:0b:97:b9:20:bb:77:13:38:17:a0:c8: bd:d8:c7:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUwOTE3MDUwOTE4WhcNMjUwOTI0MDUwOTE4WjAYMRYwFAYD VQQDEw02OGNhNDI3ZS04YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HyIY8m7I2fOr7z59wcJZzFFq9rIRYm/kfShM2YPACtdc+IYz3knKnlDZnXm YV7gMLuQzo3sxuQoFJzwpDSnI8QXnlIN1SCP/dkhAkkN7oa2R83atiVGY7SREQSz lo84LoNmJ/ACd8l5hgZcFckSI3MjP7qjjvrTWhnHbosWP+iFDcqHlESC44PXTfJq nWHqinDr5KbM1vQ/no1syFx/Few19IccCYGHgVqN/aFRtSXOZ+6GtLyC/nc0XIur sEEHQ6mdrVQbcgCtycj7Pwwxq2roiEe8Ntbc7yR/fcZmAbE4qkTBmpNAjuC/oh6y aR3R2/hZKWs7ezwPIULSxMizXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgg1Gd7 4AwpIbut5coZGK72i0emMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVuGdOhmbKq0TTW7nhsplInrWCw5FgHlHHbWIPs6BoCZ+CSRrglEGj Dz+qIU2Xt6B1TG/wbpiNK4iqVkrDd+WHsM6buBKhXHsvoUkNl59kvqi0VKF8W4Z6 yOBmLMSF26lXlZtmMctrofJOYQJVDBtGM0CBgyIHGbLikDNuETlaJ6uYoTx2finl d/ZzObTdgDDrvhMo6oPbLcQH3Kc/GBQjfAXLec0Plhf8Sf4tT6VnO3rTQB567Mbs 4RZ5Xq/gEoS1/KzWDGS4ieCvGjEdznRVIU2XSr2SSYFTXN7irzsWPXc8piCGDoeK 38/5ivDGSMnsC5e5ILt3EzgXoMi92Mfy -----END CERTIFICATE-----Generated at Fri Sep 19 00:34:25 2025 by rpki-client