$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft File: iQoeXMwexsfOHqcfSRKRH1mShrI.mft (raw, json) Hash identifier: 3kX5FPntYrKrRt3WygZqpCOVM9o9DpL1zM1YC5swko8= Subject key identifier: 64:CE:F3:D2:CC:7D:7F:60:58:49:69:DA:E0:6F:F0:7D:11:8F:20:05 Authority key identifier: 89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 Certificate issuer: /CN=A91E2234/serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft Manifest number: 34AA Signing time: Wed 20 Aug 2025 14:50:42 +0000 Manifest this update: Wed 20 Aug 2025 14:50:42 +0000 Manifest next update: Wed 27 Aug 2025 14:50:42 +0000 Files and hashes: 1: iQoeXMwexsfOHqcfSRKRH1mShrI.crl (hash: Pds2qpX518B+NPz9f3Xk4kbB5W2/BrzlQMtNVAeLYLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 14:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2234, serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Validity Not Before: Aug 20 14:50:42 2025 GMT Not After : Aug 27 14:50:42 2025 GMT Subject: CN=68a5e0c2-4a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:09:91:f5:a7:01:98:a9:0c:14:9a:18:44: 8d:a9:ed:fe:57:49:ea:c8:99:2f:ef:da:0a:f3:6e: 43:15:14:dc:43:11:b1:06:b5:38:56:26:1a:73:70: e3:66:91:e1:9f:d8:f8:94:b1:74:4f:7e:d3:f3:d2: 14:ee:8e:9f:6f:84:cc:42:9f:6e:a8:59:b0:3f:4f: da:67:c8:14:30:af:67:d9:25:aa:ad:c9:9d:b6:d2: ee:63:ca:b5:d6:81:6a:e9:be:0f:3f:13:5a:5b:37: 9e:91:21:50:47:97:95:ee:4a:95:d9:60:84:e2:2b: f4:91:d4:67:d7:fd:0b:71:f6:c2:c5:a7:df:b5:23: ff:5b:b8:c6:c2:43:c8:ce:e0:6d:89:d8:4f:7b:9e: d1:19:e8:3e:e2:b3:b6:47:df:f0:ad:04:5e:d3:fc: a8:f7:82:10:df:8e:74:d1:08:8a:b0:73:24:2e:57: 8a:d7:a0:89:5a:22:44:f2:6d:b8:7f:b2:4f:75:eb: b6:c0:8d:ef:09:af:53:d5:8b:e1:cf:cc:71:54:8d: de:b3:f8:53:8c:11:03:39:12:ce:c1:16:c1:81:8a: 27:fc:b0:2b:55:44:7b:08:53:67:23:43:92:af:1c: 2a:30:c0:2e:7a:38:56:ae:0f:9a:93:18:cb:9e:d3: f8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CE:F3:D2:CC:7D:7F:60:58:49:69:DA:E0:6F:F0:7D:11:8F:20:05 X509v3 Authority Key Identifier: keyid:89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:48:b7:d2:ec:0d:ca:c6:9a:18:c2:b5:02:81:38:b0:35:82: da:ff:f6:da:11:1e:ee:c9:ac:f3:73:1c:17:59:2a:fc:15:62: 15:ed:ec:45:9e:2a:52:30:bd:6c:e5:a4:89:ad:e6:8c:43:9d: 50:94:79:7a:94:fa:6e:15:7b:e8:50:a0:c7:2f:33:0f:fa:56: 3d:3b:14:67:c2:05:21:79:4f:c6:3c:44:2d:f9:7d:82:1d:cd: cd:92:0d:1b:f3:6c:d3:a0:1d:4c:ad:42:cc:7a:dd:c0:12:60: a7:04:4f:47:6c:06:56:96:f9:66:a1:2a:b1:7f:a8:5b:65:f9: 1a:9e:65:af:79:21:65:e9:fd:0a:80:6d:c0:0b:87:34:6e:eb: 2e:19:6d:1a:f1:03:50:52:f1:ff:c2:9d:77:e4:65:c5:ec:63: 0d:e6:6a:03:23:9f:0e:c6:25:84:96:9b:5c:44:17:50:49:03: 9e:6e:5e:1d:c7:ba:26:f0:23:b8:8e:90:c5:84:b4:22:e1:5b: a1:ee:eb:1a:8a:80:2f:3d:d9:75:92:04:25:b7:13:4c:98:fe: 84:73:8c:19:0c:bf:38:4c:62:d1:ea:78:3b:36:67:d8:7c:76: f1:25:3b:91:a5:9b:fe:bf:39:0c:59:be:59:fa:b1:96:11:b0: 70:47:a4:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyMzQxMTAvBgNVBAUTKDg5MEExRTVDQ0MxRUM2QzdDRTFFQTcxRjQ5MTI5MTFG NTk5Mjg2QjIwHhcNMjUwODIwMTQ1MDQyWhcNMjUwODI3MTQ1MDQyWjAYMRYwFAYD VQQDEw02OGE1ZTBjMi00YTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq0JkfWnAZipDBSaGESNqe3+V0nqyJkv79oK825DFRTcQxGxBrU4ViYac3Dj ZpHhn9j4lLF0T37T89IU7o6fb4TMQp9uqFmwP0/aZ8gUMK9n2SWqrcmdttLuY8q1 1oFq6b4PPxNaWzeekSFQR5eV7kqV2WCE4iv0kdRn1/0LcfbCxafftSP/W7jGwkPI zuBtidhPe57RGeg+4rO2R9/wrQRe0/yo94IQ34500QiKsHMkLleK16CJWiJE8m24 f7JPdeu2wI3vCa9T1Yvhz8xxVI3es/hTjBEDORLOwRbBgYon/LArVUR7CFNnI0OS rxwqMMAuejhWrg+akxjLntP4BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTO89LM fX9gWElp2uBv8H0RjyAFMB8GA1UdIwQYMBaAFIkKHlzMHsbHzh6nH0kSkR9Zkoay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjIzNC81MjI1NjkxNDFE OTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhzZk9IcWNmU1JLUkgxbVNo ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRb2VYTXdleHNmT0hxY2ZTUktSSDFtU2hySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjIzNC81MjI1NjkxNDFEOTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhz Zk9IcWNmU1JLUkgxbVNockkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSSLfS7A3KxpoYwrUCgTiwNYLa//baER7uyazzcxwXWSr8FWIV7exF nipSML1s5aSJreaMQ51QlHl6lPpuFXvoUKDHLzMP+lY9OxRnwgUheU/GPEQt+X2C Hc3Nkg0b82zToB1MrULMet3AEmCnBE9HbAZWlvlmoSqxf6hbZfkanmWveSFl6f0K gG3AC4c0busuGW0a8QNQUvH/wp135GXF7GMN5moDI58OxiWElptcRBdQSQOebl4d x7om8CO4jpDFhLQi4Vuh7usaioAvPdl1kgQltxNMmP6Ec4wZDL84TGLR6ng7NmfY fHbxJTuRpZv+vzkMWb5Z+rGWEbBwR6Tw -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:08 2025 by rpki-client