$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: 05Wt67u8GIgXjR1wXwTjSXYknIr7T0r0hrhcVTy5ksA= Subject key identifier: B5:01:BD:47:DF:F8:91:42:A6:FC:C9:DF:A5:16:70:B8:C5:83:2F:E5 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 018F Signing time: Wed 17 Sep 2025 04:02:22 +0000 Manifest this update: Wed 17 Sep 2025 04:02:21 +0000 Manifest next update: Wed 24 Sep 2025 04:02:21 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: yiFM5J6EsIkGkCNQaZZPYwknUI8QI1i/664l5F/XPY0=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Sep 17 04:02:21 2025 GMT Not After : Sep 24 04:02:21 2025 GMT Subject: CN=68ca32ce-c0e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cc:65:d6:f9:eb:47:b7:28:10:c1:22:9b:91: c2:fe:e9:7a:d4:bf:cf:b7:94:39:08:7c:3f:2f:65: fb:fd:fc:a9:4d:81:18:78:16:97:1a:a3:87:18:f6: 6e:d8:a7:c6:a2:9f:47:b6:ee:86:42:32:cf:e8:90: b9:e4:27:75:05:6c:f4:e0:ed:cd:c3:5f:a2:7b:40: 1e:0b:16:d3:25:44:ce:40:ce:1b:53:f9:17:50:18: 63:96:f5:a9:9d:82:29:e5:bc:7b:5a:20:ca:05:4e: 3d:ce:65:cf:af:80:12:2b:36:f8:0b:c8:aa:77:34: 31:7f:06:64:68:b8:4e:79:b4:2b:6c:e0:f6:d4:45: 5b:8c:0b:90:25:9f:6a:71:1e:c1:51:39:6b:c7:1c: ab:dc:92:23:82:46:06:c0:cb:19:ad:0a:95:88:d3: a5:42:2a:5f:3e:3d:ab:09:73:6a:4e:cb:72:0a:98: 10:ab:33:d9:5a:83:93:5b:1f:94:0d:0b:72:d2:05: cd:85:7c:07:c9:0f:1b:6e:d6:40:b6:70:89:29:ca: 8f:f9:64:b0:99:50:d6:fe:b4:26:02:c3:02:71:c9: 45:72:f7:fa:1d:83:09:72:66:38:11:01:8b:c2:82: b6:94:09:6a:65:ad:90:03:9d:74:ae:10:cf:b3:e4: 5d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:01:BD:47:DF:F8:91:42:A6:FC:C9:DF:A5:16:70:B8:C5:83:2F:E5 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a8:de:85:4c:ea:84:9c:15:94:42:5f:43:7d:e6:37:81:e8: 0f:7c:a0:d9:fe:6c:f3:16:d9:50:6c:34:10:08:d2:7f:f3:f2: 75:f7:e0:09:a8:2a:4e:f2:ad:95:18:29:f2:ef:5e:42:bd:27: bb:63:d9:1d:c2:6d:d1:c9:56:33:3c:46:75:26:58:3c:9a:c0: 2c:85:10:fa:0b:3f:68:3f:15:cb:f9:ea:1e:45:54:bb:22:56: 01:e9:8e:2c:7e:5d:a3:8e:1b:f7:38:d5:c2:fa:46:13:cf:de: 7c:57:e6:70:02:d5:56:48:dc:ff:9c:58:1d:81:91:52:0f:df: 39:6e:f0:81:de:0b:6b:37:73:8a:ad:64:b5:e2:28:09:64:ae: 0c:3d:ba:01:e1:8c:af:ce:a6:36:2d:07:da:80:6e:e8:47:77: 61:22:4f:0f:dc:60:21:1a:f4:6c:be:42:97:79:e2:fd:98:50: 9e:a3:01:9f:03:00:b8:8e:3c:3f:24:d5:4c:4f:23:74:9c:22: b0:72:d2:3b:cb:9f:d4:04:8b:94:b1:bc:f3:97:54:07:e0:46: e9:72:73:a8:f7:50:77:91:93:3c:6c:dd:60:2d:f0:39:00:c8: 07:3c:55:e7:59:ca:ac:70:0e:30:5b:be:85:81:e8:f9:70:52: 05:ed:c9:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwOTE3MDQwMjIxWhcNMjUwOTI0MDQwMjIxWjAYMRYwFAYD VQQDEw02OGNhMzJjZS1jMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8xl1vnrR7coEMEim5HC/ul61L/Pt5Q5CHw/L2X7/fypTYEYeBaXGqOHGPZu 2KfGop9Htu6GQjLP6JC55Cd1BWz04O3Nw1+ie0AeCxbTJUTOQM4bU/kXUBhjlvWp nYIp5bx7WiDKBU49zmXPr4ASKzb4C8iqdzQxfwZkaLhOebQrbOD21EVbjAuQJZ9q cR7BUTlrxxyr3JIjgkYGwMsZrQqViNOlQipfPj2rCXNqTstyCpgQqzPZWoOTWx+U DQty0gXNhXwHyQ8bbtZAtnCJKcqP+WSwmVDW/rQmAsMCcclFcvf6HYMJcmY4EQGL woK2lAlqZa2QA510rhDPs+RdgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUBvUff +JFCpvzJ36UWcLjFgy/lMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRqN6FTOqEnBWUQl9DfeY3gegPfKDZ/mzzFtlQbDQQCNJ/8/J19+AJ qCpO8q2VGCny715CvSe7Y9kdwm3RyVYzPEZ1Jlg8msAshRD6Cz9oPxXL+eoeRVS7 IlYB6Y4sfl2jjhv3ONXC+kYTz958V+ZwAtVWSNz/nFgdgZFSD985bvCB3gtrN3OK rWS14igJZK4MPboB4YyvzqY2LQfagG7oR3dhIk8P3GAhGvRsvkKXeeL9mFCeowGf AwC4jjw/JNVMTyN0nCKwctI7y5/UBIuUsbzzl1QH4EbpcnOo91B3kZM8bN1gLfA5 AMgHPFXnWcqscA4wW76Fgej5cFIF7cke -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:24 2025 by rpki-client