$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: wxDnnWBOQxnthMabqXAu9urJtlUcoeKR4F4ykeLr/oU= Subject key identifier: 7C:51:90:5A:7D:F7:F4:64:4B:B8:B0:8A:95:DA:35:91:73:22:CB:EA Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 0128 Signing time: Fri 05 Sep 2025 05:03:46 +0000 Manifest this update: Fri 05 Sep 2025 05:03:46 +0000 Manifest next update: Fri 12 Sep 2025 05:03:46 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: Eo7DW16zCn3romV5w4HPjKHJwc3+GiAc2MrgQlZ0gaM=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Sep 5 05:03:46 2025 GMT Not After : Sep 12 05:03:46 2025 GMT Subject: CN=68ba6f32-d6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2e:9a:1d:73:49:40:0f:b4:13:05:fc:1e:44: af:1c:e1:f7:ff:e5:39:2c:89:4f:ef:8c:ac:65:20: 57:05:92:c9:13:73:64:45:e3:96:f7:1a:2c:25:68: ed:e7:12:f1:67:7d:a3:3b:e3:1c:ae:0f:6f:f3:cb: 82:13:2c:44:c8:8f:5f:b6:79:14:06:f8:64:b4:a9: ca:52:fd:66:85:d2:60:e0:c9:e2:61:dd:90:5b:76: 08:a9:91:11:68:25:f2:65:44:5a:d8:d7:5c:61:be: 68:99:fa:a1:18:01:9e:87:c0:d2:93:05:11:f5:d0: 9b:ad:7e:0a:e7:54:bd:0a:ae:06:f7:f0:28:7d:e4: cc:e6:b0:af:29:ff:44:6b:0b:9f:50:2f:68:ad:61: e0:0d:1e:a2:77:7e:77:90:f5:13:ea:29:f0:f7:1b: 9a:63:c5:e0:d7:33:f9:f8:c7:60:df:a7:d5:28:2c: 14:46:76:57:39:a5:ed:44:8f:39:77:73:4f:df:a9: 3c:21:c7:58:cd:5a:ab:c8:07:1d:6c:38:a7:d1:60: f3:f2:3e:e6:c8:1d:cd:6e:8e:80:a9:d6:d6:a5:79: cd:ae:42:37:1c:41:45:26:0b:03:f5:91:3e:ec:2b: ec:8e:79:04:76:b0:74:c8:73:35:9a:8c:04:bd:a2: e8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:51:90:5A:7D:F7:F4:64:4B:B8:B0:8A:95:DA:35:91:73:22:CB:EA X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c0:38:26:a7:a6:73:ac:2a:92:65:72:e7:03:e3:2b:02:70: 1a:17:93:ff:91:94:f8:cd:f8:9e:46:96:8b:66:be:80:ca:2e: 3c:dd:5f:dd:99:43:ca:fd:6b:4f:29:2c:b6:d8:3b:78:91:c7: 11:c3:f0:d4:37:2b:89:3f:2e:c5:78:2e:70:a9:59:6c:e7:1e: eb:3b:1d:31:28:01:f8:c6:08:45:f1:ae:36:d0:57:d0:71:c2: 58:b4:8e:9a:82:80:1f:40:26:ab:6a:2e:2b:34:b6:fb:b3:40: e5:1e:0f:1a:bb:03:ec:2b:5b:3f:5e:dd:ec:7b:60:3a:28:65: ce:1d:a5:e8:f5:74:e2:42:3b:ee:3b:ec:bb:18:79:bf:df:14: bb:94:97:e0:46:f3:64:18:39:4b:d2:3d:07:55:14:d2:e2:3a: f4:84:10:a2:e4:15:b1:f5:e7:1c:09:05:82:c1:46:ba:22:d2: 7e:62:a5:55:76:6b:ba:e4:b2:9f:6e:cf:22:4a:18:34:65:03: a8:39:ff:21:c2:9a:e3:39:bc:be:41:4d:4a:b6:ec:fb:90:86: 47:ed:8d:2b:5b:a0:c9:cc:97:34:f8:c2:c2:27:cf:6e:bc:1c: d0:28:e6:ce:8b:ab:88:de:70:a7:21:3d:1f:25:6c:66:01:06: 2f:21:b5:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwOTA1MDUwMzQ2WhcNMjUwOTEyMDUwMzQ2WjAYMRYwFAYD VQQDEw02OGJhNmYzMi1kNmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy6aHXNJQA+0EwX8HkSvHOH3/+U5LIlP74ysZSBXBZLJE3NkReOW9xosJWjt 5xLxZ32jO+Mcrg9v88uCEyxEyI9ftnkUBvhktKnKUv1mhdJg4MniYd2QW3YIqZER aCXyZURa2NdcYb5omfqhGAGeh8DSkwUR9dCbrX4K51S9Cq4G9/AofeTM5rCvKf9E awufUC9orWHgDR6id353kPUT6inw9xuaY8Xg1zP5+Mdg36fVKCwURnZXOaXtRI85 d3NP36k8IcdYzVqryAcdbDin0WDz8j7myB3Nbo6AqdbWpXnNrkI3HEFFJgsD9ZE+ 7CvsjnkEdrB0yHM1mowEvaLoAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxRkFp9 9/RkS7iwipXaNZFzIsvqMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKwDgmp6ZzrCqSZXLnA+MrAnAaF5P/kZT4zfieRpaLZr6Ayi483V/d mUPK/WtPKSy22Dt4kccRw/DUNyuJPy7FeC5wqVls5x7rOx0xKAH4xghF8a420FfQ ccJYtI6agoAfQCarai4rNLb7s0DlHg8auwPsK1s/Xt3se2A6KGXOHaXo9XTiQjvu O+y7GHm/3xS7lJfgRvNkGDlL0j0HVRTS4jr0hBCi5BWx9eccCQWCwUa6ItJ+YqVV dmu65LKfbs8iShg0ZQOoOf8hwprjOby+QU1Ktuz7kIZH7Y0rW6DJzJc0+MLCJ89u vBzQKObOi6uI3nCnIT0fJWxmAQYvIbXT -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:47 2025 by rpki-client