$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: /AuVROhxjV4gn6AIEKNx2+S5IYMemWPoAEAvrZ2c4gg= Subject key identifier: FD:39:EC:BC:43:46:2B:19:5C:88:DD:82:0F:4A:33:1D:B0:17:B9:1F Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 010F Signing time: Sat 19 Jul 2025 05:10:48 +0000 Manifest this update: Sat 19 Jul 2025 05:10:47 +0000 Manifest next update: Sat 26 Jul 2025 05:10:47 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: hHBfruWh4sjmRoFupbTJcMZxWdJok1pZAsWJtGihEBw=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Jul 19 05:10:47 2025 GMT Not After : Jul 26 05:10:47 2025 GMT Subject: CN=687b28d8-9a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:35:ff:ca:63:88:31:1c:d3:47:73:e9:d5:a0: e4:9d:0d:f7:98:2a:c0:d8:54:45:23:3f:ad:ab:d8: 24:bb:a2:1e:10:c6:21:07:5d:18:c2:c8:98:69:e0: 4a:b1:e7:92:7a:c0:ac:84:8d:ac:a7:b5:64:c3:72: b8:1d:b5:43:0a:8b:c1:56:53:f7:21:59:3b:3c:d6: 36:9a:e4:b6:e2:98:f1:e4:14:32:d9:0e:31:02:af: 78:27:9f:9d:51:90:fe:fe:d9:5b:9e:58:a6:97:da: 49:45:75:ab:62:84:cd:0d:a4:ba:09:cf:70:b2:22: 9e:59:41:f6:9b:b6:b4:70:2f:e8:75:e6:fe:d8:fc: 3a:11:5b:59:ad:41:19:90:95:2c:8c:59:6c:61:e7: 93:43:35:6c:b9:92:72:80:e4:05:cc:cf:50:7e:50: a2:74:74:d3:75:63:e7:71:e2:05:14:4f:b8:cf:b3: dd:5b:ce:ff:bf:d5:21:63:a9:b3:ac:aa:e0:06:50: 7b:4c:cc:be:3b:c4:08:6d:82:67:b6:a0:f6:ea:5c: 7a:31:a3:81:f6:78:78:7f:88:27:a4:06:07:54:5f: 08:72:d3:b1:6c:dd:0b:08:38:b3:6c:c0:22:2b:07: c7:5f:38:fd:13:f8:f0:e3:a4:fc:08:95:e9:f1:be: 7b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:39:EC:BC:43:46:2B:19:5C:88:DD:82:0F:4A:33:1D:B0:17:B9:1F X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:74:eb:b2:be:ea:60:d4:3b:70:cb:28:ac:77:67:bc:6c:83: 37:22:08:69:2b:39:f0:d3:2a:03:bb:de:b9:b7:89:f3:ff:38: 90:56:f0:23:04:2e:b9:8f:1a:90:10:59:5a:d9:2d:3e:d7:80: ac:81:77:84:a6:ac:5c:11:4c:af:0a:7a:7c:ac:9b:a4:15:52: e1:fd:14:4d:5b:58:33:46:a7:bc:0e:e0:54:9a:9c:a0:13:c7: 45:aa:af:39:f9:39:51:23:be:a2:4c:25:8c:3a:2b:05:42:ac: 3c:43:f5:e1:14:68:a0:0e:70:46:d0:d1:46:11:8f:01:cf:92: 7b:65:fd:48:70:12:c5:66:24:ed:02:ad:f3:1c:9c:3d:39:fa: 59:25:45:a4:57:9b:4b:a1:bd:52:77:e7:6b:4b:1e:a9:19:78: d1:09:62:0e:90:ef:62:81:d2:d4:31:7b:22:b3:1c:d3:4d:09: 6a:4e:12:7c:d0:21:ae:9d:30:ef:e6:79:6f:60:72:ed:fe:91: fe:c5:46:1c:9a:59:f3:9d:11:71:78:22:ce:0d:82:67:17:52: b6:93:18:99:eb:64:59:85:46:47:06:44:9d:90:03:b1:f7:2f: 2b:41:c5:69:96:3e:5b:f8:5c:92:62:12:54:d0:ec:5c:17:21: e7:09:b0:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwNzE5MDUxMDQ3WhcNMjUwNzI2MDUxMDQ3WjAYMRYwFAYD VQQDEw02ODdiMjhkOC05YTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zX/ymOIMRzTR3Pp1aDknQ33mCrA2FRFIz+tq9gku6IeEMYhB10YwsiYaeBK seeSesCshI2sp7Vkw3K4HbVDCovBVlP3IVk7PNY2muS24pjx5BQy2Q4xAq94J5+d UZD+/tlbnliml9pJRXWrYoTNDaS6Cc9wsiKeWUH2m7a0cC/odeb+2Pw6EVtZrUEZ kJUsjFlsYeeTQzVsuZJygOQFzM9QflCidHTTdWPnceIFFE+4z7PdW87/v9UhY6mz rKrgBlB7TMy+O8QIbYJntqD26lx6MaOB9nh4f4gnpAYHVF8IctOxbN0LCDizbMAi KwfHXzj9E/jw46T8CJXp8b574QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP057LxD RisZXIjdgg9KMx2wF7kfMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9dOuyvupg1Dtwyyisd2e8bIM3IghpKznw0yoDu965t4nz/ziQVvAj BC65jxqQEFla2S0+14CsgXeEpqxcEUyvCnp8rJukFVLh/RRNW1gzRqe8DuBUmpyg E8dFqq85+TlRI76iTCWMOisFQqw8Q/XhFGigDnBG0NFGEY8Bz5J7Zf1IcBLFZiTt Aq3zHJw9OfpZJUWkV5tLob1Sd+drSx6pGXjRCWIOkO9igdLUMXsisxzTTQlqThJ8 0CGunTDv5nlvYHLt/pH+xUYcmlnznRFxeCLODYJnF1K2kxiZ62RZhUZHBkSdkAOx 9y8rQcVplj5b+FySYhJU0OxcFyHnCbAh -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:30 2025 by rpki-client