$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft File: ixqAZb6Iqmwbo_7bVOCH59KttN4.mft (raw, json) Hash identifier: OnEoVvoCSfd9tFcrdtgfmUUvtUPi4Ep5wLIH4uj5UW0= Subject key identifier: B1:BE:9E:A7:4F:35:30:E5:BE:47:F7:4C:31:38:0D:9E:22:47:BC:7D Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft Manifest number: 011E Signing time: Fri 05 Sep 2025 05:09:34 +0000 Manifest this update: Fri 05 Sep 2025 05:09:34 +0000 Manifest next update: Fri 12 Sep 2025 05:09:34 +0000 Files and hashes: 1: ixqAZb6Iqmwbo_7bVOCH59KttN4.crl (hash: Xm3j6Yq030mnnZXhqm49lkq1PuMd1ZLeo3kNnEsQpyE=) 2: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (hash: FHRlsB48eK0jdLR0VwZXrRd3F+Rj548sH8y8zKsy5+s=) 3: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (hash: PAO2tzUE6VhuIQPWRUUuXZiVK/zRgbkDyCoIJqVq33M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Sep 5 05:09:34 2025 GMT Not After : Sep 12 05:09:34 2025 GMT Subject: CN=68ba708e-f2dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:15:87:33:07:a5:6c:c8:16:29:fa:e4:be: 50:7d:5e:77:a8:41:ce:83:7f:66:bd:d5:4a:16:dd: e7:75:94:4a:b7:b1:96:32:71:a0:05:8a:fe:94:8d: d9:e9:e5:34:d5:69:42:58:eb:92:4b:95:2c:48:b5: ff:23:4c:5d:dd:88:46:b5:8a:d8:d8:c4:ed:a8:71: 38:8f:ea:27:26:99:1c:4d:e4:f0:93:6c:22:7c:c3: f1:b4:3c:80:64:f1:2c:f8:e1:a6:24:78:fc:8f:b8: 47:32:24:fd:24:d8:cd:75:43:65:6b:93:2d:28:34: 38:b6:55:40:d2:63:6c:69:c1:d6:10:04:42:47:89: 02:4b:39:66:b6:81:33:ed:9b:1e:eb:11:96:df:44: e0:95:2d:5b:0b:ba:f8:6c:69:91:b9:3d:dd:ed:56: f3:e6:7b:26:28:87:f2:02:ce:d6:0e:a1:d3:8c:b4: 25:35:c8:38:65:4d:03:59:a8:93:89:73:9d:a7:f2: 1e:5a:11:16:62:7f:b7:46:e8:61:c7:36:12:59:55: 4c:25:68:63:61:20:c4:71:6b:f2:48:5d:f8:3c:2f: 3c:5a:87:23:12:3d:19:9a:97:d1:61:a3:3e:bf:df: 79:fd:4d:0d:60:84:d3:96:05:67:80:b8:74:09:df: 48:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BE:9E:A7:4F:35:30:E5:BE:47:F7:4C:31:38:0D:9E:22:47:BC:7D X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e5:8d:61:d4:82:b4:51:e2:b2:1b:35:0f:54:ce:37:55:1f: 4b:2b:47:c3:1a:e9:8e:e3:f3:05:06:d0:f9:41:f0:55:ff:8a: 5f:d1:e4:ab:02:59:46:2e:61:5f:58:95:d1:ac:d0:22:36:53: 15:a6:f8:9f:4e:f3:a8:7d:47:4c:02:61:56:ec:1b:4f:2e:d1: 83:6c:50:ba:fd:d9:2a:a1:e6:1e:00:a3:6b:08:79:31:de:5d: 48:30:0d:39:be:67:ab:41:2b:da:c0:6d:31:e5:8f:25:84:56: ee:4e:ca:1e:60:34:19:cc:bd:e0:bf:b0:0c:8e:65:0a:87:37: ef:d0:f9:8b:77:68:5a:c2:15:ef:c1:89:f5:fc:16:b3:75:9a: 52:ef:06:e5:27:34:87:bc:cc:bf:fd:af:18:00:a8:4c:7f:69: c4:8f:1a:57:8f:01:aa:9f:84:4b:a3:4a:9a:da:80:73:8e:84: e9:52:06:1a:74:d1:22:ed:e9:6f:ae:34:38:e4:04:19:96:3c: e1:57:cf:02:49:5c:0e:7b:6d:72:dc:3e:b5:db:1f:72:27:4d: f9:9e:f0:c4:9f:6b:51:d7:32:8d:93:1a:f3:2b:70:a5:4d:ea: a2:16:d9:aa:85:91:cf:1b:52:af:d1:7f:3b:86:a6:b2:6f:43: 21:fb:8f:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjUwOTA1MDUwOTM0WhcNMjUwOTEyMDUwOTM0WjAYMRYwFAYD VQQDEw02OGJhNzA4ZS1mMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwcVhzMHpWzIFin65L5QfV53qEHOg39mvdVKFt3ndZRKt7GWMnGgBYr+lI3Z 6eU01WlCWOuSS5UsSLX/I0xd3YhGtYrY2MTtqHE4j+onJpkcTeTwk2wifMPxtDyA ZPEs+OGmJHj8j7hHMiT9JNjNdUNla5MtKDQ4tlVA0mNsacHWEARCR4kCSzlmtoEz 7Zse6xGW30TglS1bC7r4bGmRuT3d7Vbz5nsmKIfyAs7WDqHTjLQlNcg4ZU0DWaiT iXOdp/IeWhEWYn+3RuhhxzYSWVVMJWhjYSDEcWvySF34PC88WocjEj0ZmpfRYaM+ v995/U0NYITTlgVngLh0Cd9IWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLG+nqdP NTDlvkf3TDE4DZ4iR7x9MB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC9ENzdCOUQ2NkQ1QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFt d2JvXzdiVk9DSDU5S3R0TjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh5Y1h1IK0UeKyGzUPVM43VR9LK0fDGumO4/MFBtD5QfBV/4pf0eSr AllGLmFfWJXRrNAiNlMVpvifTvOofUdMAmFW7BtPLtGDbFC6/dkqoeYeAKNrCHkx 3l1IMA05vmerQSvawG0x5Y8lhFbuTsoeYDQZzL3gv7AMjmUKhzfv0PmLd2hawhXv wYn1/BazdZpS7wblJzSHvMy//a8YAKhMf2nEjxpXjwGqn4RLo0qa2oBzjoTpUgYa dNEi7elvrjQ45AQZljzhV88CSVwOe21y3D612x9yJ035nvDEn2tR1zKNkxrzK3Cl TeqiFtmqhZHPG1Kv0X87hqayb0Mh+48V -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:05 2025 by rpki-client