$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: yJRfh9P/NGifPjpJOkjb4WpJIIhNWF6cbcK1NWhgvJs= Subject key identifier: 15:D3:6B:D2:EB:5F:7B:35:18:F4:B5:D0:A1:0A:12:E1:E5:E2:8F:57 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 0887 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 087D Signing time: Sat 06 Sep 2025 20:50:54 +0000 Manifest this update: Sat 06 Sep 2025 20:50:53 +0000 Manifest next update: Sat 13 Sep 2025 20:50:53 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: A3tNQQueNHsuZVlxrLIxk6p9ZBCOwoDDS/mw3qMbfXg=) 2: 041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa (hash: d06+mSNp0KvkytcMNow0ahEeejEwPmx7QslBksVYoOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2183 (0x887) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Sep 6 20:50:53 2025 GMT Not After : Sep 13 20:50:53 2025 GMT Subject: CN=68bc9ead-fa7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:09:f1:1d:9f:85:f5:84:2d:56:38:1a:59:e7: 85:81:de:9c:1a:59:c4:08:ea:9f:29:16:39:b5:75: 93:65:a1:48:ee:62:e0:bf:f8:43:74:46:1a:5b:23: b4:e9:39:88:1f:a8:fb:50:b7:83:87:37:87:8f:2b: 7f:c6:8b:19:3b:c4:a4:52:2b:81:14:03:b0:81:b1: 5b:0d:ea:e6:ff:c1:1b:0b:59:23:30:2a:79:b6:78: cc:19:18:99:cb:76:4c:1f:6a:65:db:c1:d3:13:f6: 02:3e:02:47:a7:c9:56:68:fc:1e:a6:9e:da:a1:13: e7:ce:c0:98:74:0b:b7:f6:20:27:0b:f3:78:45:28: 86:3e:07:b1:11:82:84:5b:bc:3a:35:35:16:c6:c5: 5c:16:90:74:e8:ec:33:aa:83:fb:26:bb:c5:1c:89: de:54:0b:bf:ab:af:ee:cb:a4:50:8e:73:e8:3b:d4: f4:13:0f:e7:b0:09:d3:4b:79:5d:1d:28:de:59:79: 8a:14:19:98:af:69:90:f1:01:97:a5:22:65:dc:c8: c1:36:40:0f:de:67:9e:98:df:07:ad:e1:49:e2:0b: 43:bf:b2:4e:67:c6:fc:37:01:e0:6a:ba:86:63:4f: 9e:5d:b7:a6:5a:aa:ad:c4:29:dc:94:a4:77:88:58: 7f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:6B:D2:EB:5F:7B:35:18:F4:B5:D0:A1:0A:12:E1:E5:E2:8F:57 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e4:0e:56:87:7e:9d:01:d7:74:f0:23:46:f5:f7:ae:7b:23: 91:30:3d:63:60:f9:9d:8c:e3:7a:44:17:36:67:26:0b:67:9f: 1a:81:58:e4:e7:e9:f6:c8:58:70:de:24:27:1d:56:c3:ff:f5: aa:a1:e6:04:95:3e:77:4a:a3:44:60:33:61:e1:9e:ec:34:57: 16:1a:a4:d6:17:27:03:fa:73:2b:3f:4a:84:1b:f3:9e:ad:48: 36:94:0e:b2:f6:fd:af:bb:10:e6:08:d8:ce:d5:90:61:63:18: 87:2a:7c:fa:bf:2f:24:14:4b:22:d4:a3:4a:43:9b:1f:da:37: f7:52:f8:12:7b:04:cd:ab:5e:b2:de:bc:93:fc:3e:f7:8f:2c: 2a:24:a7:72:59:c7:1d:6d:cf:d1:ce:6a:b6:47:65:a5:25:16: 11:1d:1c:40:a9:00:ed:f5:ff:15:32:4b:c2:66:1c:ea:6f:0d: 6d:a3:5e:12:62:01:13:d6:ff:06:60:71:97:cb:a1:3d:bb:9d: 20:ce:7e:e7:3e:c7:fa:18:6d:f6:c7:8b:18:40:ac:ec:f6:90: 3d:d2:be:c8:5c:24:4c:14:6d:14:4f:36:5f:16:4f:f2:b9:ea: 95:7b:34:8c:a0:15:28:92:ee:f9:d6:bd:ae:9d:eb:d2:89:22: 8c:cf:83:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwOTA2MjA1MDUzWhcNMjUwOTEzMjA1MDUzWjAYMRYwFAYD VQQDEw02OGJjOWVhZC1mYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wnxHZ+F9YQtVjgaWeeFgd6cGlnECOqfKRY5tXWTZaFI7mLgv/hDdEYaWyO0 6TmIH6j7ULeDhzeHjyt/xosZO8SkUiuBFAOwgbFbDerm/8EbC1kjMCp5tnjMGRiZ y3ZMH2pl28HTE/YCPgJHp8lWaPwepp7aoRPnzsCYdAu39iAnC/N4RSiGPgexEYKE W7w6NTUWxsVcFpB06OwzqoP7JrvFHIneVAu/q6/uy6RQjnPoO9T0Ew/nsAnTS3ld HSjeWXmKFBmYr2mQ8QGXpSJl3MjBNkAP3meemN8HreFJ4gtDv7JOZ8b8NwHgarqG Y0+eXbemWqqtxCnclKR3iFh/LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXTa9Lr X3s1GPS10KEKEuHl4o9XMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj5A5Wh36dAdd08CNG9feueyORMD1jYPmdjON6RBc2ZyYLZ58agVjk 5+n2yFhw3iQnHVbD//WqoeYElT53SqNEYDNh4Z7sNFcWGqTWFycD+nMrP0qEG/Oe rUg2lA6y9v2vuxDmCNjO1ZBhYxiHKnz6vy8kFEsi1KNKQ5sf2jf3UvgSewTNq16y 3ryT/D73jywqJKdyWccdbc/Rzmq2R2WlJRYRHRxAqQDt9f8VMkvCZhzqbw1to14S YgET1v8GYHGXy6E9u50gzn7nPsf6GG32x4sYQKzs9pA90r7IXCRMFG0UTzZfFk/y ueqVezSMoBUoku751r2unevSiSKMz4N+ -----END CERTIFICATE-----Generated at Sun Sep 7 15:21:13 2025 by rpki-client