$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: +LPgyOLnV35J9iplAs/ggQczsSabPFUQvEhegyljLEQ= Subject key identifier: CC:B2:58:38:33:5D:C4:DD:EB:F6:A9:31:37:FB:D3:5F:FE:AD:45:B6 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: B8 Signing time: Fri 05 Sep 2025 06:24:16 +0000 Manifest this update: Fri 05 Sep 2025 06:24:15 +0000 Manifest next update: Fri 12 Sep 2025 06:24:15 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: JHSJCL8xO4tO4g7DXRtDk5TU5F5UA8NXfTlLoSqkpGw=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Sep 5 06:24:15 2025 GMT Not After : Sep 12 06:24:15 2025 GMT Subject: CN=68ba8210-0430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:b5:c7:8d:fc:fe:c7:a9:a3:7f:de:f7:be: 3c:c6:a1:50:7c:8a:83:6b:8f:57:63:3a:3f:a3:4c: b3:b9:e6:35:2c:02:e7:d1:90:23:40:66:09:50:f7: 34:79:b6:1b:b0:8e:50:0c:6d:75:39:49:3d:21:60: be:a3:25:72:da:22:de:8a:9a:d8:f1:a0:3c:3f:48: d9:ef:9e:d9:9f:72:b0:6e:af:f5:0e:e6:95:9c:62: 36:f9:e1:1d:32:f9:f7:d1:c2:3c:4c:8a:f5:3f:a4: e3:43:71:e0:b6:ea:27:c1:ed:e1:68:8a:85:ba:08: 0a:82:af:c3:e2:b4:ff:ec:19:18:a6:a6:bd:f6:c3: fd:fc:1a:00:26:b9:a3:f7:91:1b:27:84:be:9f:ef: a3:ea:47:9d:93:66:c5:f1:98:2e:ef:e3:b0:d9:fb: 14:5c:48:a4:a1:3f:0a:df:61:01:a5:e8:fa:fe:4f: f4:48:9f:2e:88:38:ee:2c:f7:4a:82:90:a5:d0:d1: 7c:67:89:4f:71:2e:ba:f6:f8:ed:cd:3e:6d:05:02: 3a:ca:95:d6:c8:a6:71:38:df:ea:12:45:07:98:1e: 45:5c:8b:12:5b:8c:37:75:99:c7:59:50:6b:4b:6f: 29:19:c1:73:10:ae:0d:af:54:b3:55:49:88:b4:bc: 5b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B2:58:38:33:5D:C4:DD:EB:F6:A9:31:37:FB:D3:5F:FE:AD:45:B6 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8c:37:40:53:5f:08:23:56:87:de:c4:30:2b:f9:2f:41:a7: 07:e5:8c:0a:66:88:36:26:c9:00:7b:0c:d9:47:85:ed:e1:6b: a8:af:73:37:27:53:8c:28:ad:99:c3:43:4d:ad:77:82:ba:38: f0:1c:e1:3b:18:d1:ee:8d:1a:3b:9c:75:b0:66:ab:b4:80:35: b4:17:77:a6:7f:1e:59:dd:50:ad:fd:08:df:be:33:9f:a4:17: 24:6c:d5:ed:1b:7f:d7:9b:00:03:95:db:09:27:d5:1a:4f:eb: f9:17:c0:9b:02:dc:16:23:59:05:f3:de:2b:28:3b:da:0f:d1: 48:5f:f4:55:9e:65:b0:3f:2b:93:33:50:03:e7:3a:c5:8d:61: c5:41:ba:d5:ec:bd:58:ef:0c:c0:6e:c3:75:a9:90:9c:ec:67: b5:c0:20:6e:10:43:2e:84:f4:77:c8:30:0c:70:0a:9b:94:44: 03:c7:b0:2c:0d:cc:76:18:4b:34:f9:2b:d2:67:cb:29:eb:61: 12:90:f5:02:2a:2a:30:4a:35:af:a3:a4:44:6e:34:19:fa:bf: 08:70:58:a0:7d:d9:5a:04:24:25:b8:85:c1:f3:30:d0:13:0c: be:b9:57:90:c0:02:0c:3e:c0:3f:33:b4:10:c4:13:4a:84:0f: 3e:26:4c:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUwOTA1MDYyNDE1WhcNMjUwOTEyMDYyNDE1WjAYMRYwFAYD VQQDEw02OGJhODIxMC0wNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/+1x438/sepo3/e9748xqFQfIqDa49XYzo/o0yzueY1LALn0ZAjQGYJUPc0 ebYbsI5QDG11OUk9IWC+oyVy2iLeiprY8aA8P0jZ757Zn3Kwbq/1DuaVnGI2+eEd Mvn30cI8TIr1P6TjQ3Hgtuonwe3haIqFuggKgq/D4rT/7BkYpqa99sP9/BoAJrmj 95EbJ4S+n++j6kedk2bF8Zgu7+Ow2fsUXEikoT8K32EBpej6/k/0SJ8uiDjuLPdK gpCl0NF8Z4lPcS669vjtzT5tBQI6ypXWyKZxON/qEkUHmB5FXIsSW4w3dZnHWVBr S28pGcFzEK4Nr1SzVUmItLxbbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyyWDgz XcTd6/apMTf701/+rUW2MB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOjDdAU18II1aH3sQwK/kvQacH5YwKZog2JskAewzZR4Xt4Wuor3M3 J1OMKK2Zw0NNrXeCujjwHOE7GNHujRo7nHWwZqu0gDW0F3emfx5Z3VCt/QjfvjOf pBckbNXtG3/XmwADldsJJ9UaT+v5F8CbAtwWI1kF894rKDvaD9FIX/RVnmWwPyuT M1AD5zrFjWHFQbrV7L1Y7wzAbsN1qZCc7Ge1wCBuEEMuhPR3yDAMcAqblEQDx7As Dcx2GEs0+SvSZ8sp62ESkPUCKiowSjWvo6REbjQZ+r8IcFigfdlaBCQluIXB8zDQ Ewy+uVeQwAIMPsA/M7QQxBNKhA8+Jkxr -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:52 2025 by rpki-client