$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: oR74BSFLHKWpRabsab4qHWMLfIVucUV227cnjaNXrWQ= Subject key identifier: 41:3C:CB:36:16:BC:52:34:00:15:23:FA:C5:95:2D:1D:4B:BE:83:91 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C2A Signing time: Thu 18 Sep 2025 18:51:41 +0000 Manifest this update: Thu 18 Sep 2025 18:51:40 +0000 Manifest next update: Thu 25 Sep 2025 18:51:40 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: 0pl14bfpKrQI7SpAml7zz6WRJ4JBMGUjNS46et2QnEo=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Sep 18 18:51:40 2025 GMT Not After : Sep 25 18:51:40 2025 GMT Subject: CN=68cc54bc-f175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:26:61:30:08:3e:ed:42:ab:19:91:b7:2c: 4c:83:8f:41:8c:9d:11:43:73:8f:36:49:e6:3b:65: a6:cc:7d:85:66:b2:05:e6:49:69:86:5e:eb:1f:75: d2:ed:45:07:15:18:10:91:3e:bc:8f:2d:24:a7:64: 77:94:0d:71:cf:e2:c2:e4:b7:a6:f5:34:ef:58:9f: ed:8e:b0:c1:ca:1c:59:ac:66:d3:9c:30:51:3a:18: ce:bc:27:4e:94:58:06:67:8a:19:0a:80:88:a2:5b: bb:d6:d7:2e:54:1a:99:47:ed:9a:f0:f2:9f:4e:b4: 07:d2:05:52:ce:e3:93:80:1b:ec:48:12:a1:b7:aa: 7c:3f:0a:c3:9e:58:91:f8:a1:73:4c:da:95:eb:e6: 1b:27:5f:52:b3:21:9f:4e:bf:5f:86:6d:de:71:1b: 2b:58:7c:fa:12:f8:88:dc:d3:cf:69:70:a6:f8:5f: 55:01:06:1a:53:ba:96:54:ca:15:b6:f9:3b:29:65: 83:ca:c7:a2:2c:4d:34:87:97:c3:82:d5:36:67:7e: c0:df:20:7f:04:d2:f7:aa:aa:3e:e2:93:f2:dc:9a: 32:23:88:d9:a5:8e:17:fc:40:38:4b:26:a8:0f:1d: fd:65:4d:aa:14:16:40:d4:56:94:c3:82:6f:f4:83: 55:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3C:CB:36:16:BC:52:34:00:15:23:FA:C5:95:2D:1D:4B:BE:83:91 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2c:76:a9:9e:db:b7:27:42:48:68:e8:46:41:a3:90:8c:8c: 7e:ea:7b:96:35:f9:27:f1:ef:59:d2:a0:50:49:15:87:e6:bf: db:d7:f2:3b:60:f3:7b:30:cb:76:24:ee:59:fa:94:ea:68:86: cc:65:c8:cf:59:99:72:ad:3d:0c:dc:66:8e:67:9c:6f:db:a4: e7:e9:04:f3:cd:01:e2:a8:7d:6b:b8:82:4a:af:5d:d2:29:05: 4e:97:67:5e:4f:b8:c9:05:be:7a:f3:70:89:03:97:e4:32:9d: 08:85:00:9b:cf:d4:81:f0:43:df:9a:a5:53:75:0d:58:07:81: 08:a2:56:64:0c:dd:6e:f9:5d:48:75:af:ec:4f:a3:74:8d:f1: 52:8d:28:27:14:b2:06:21:6f:e7:e8:9e:23:85:e5:1d:05:c6: f5:1b:c9:b2:a0:2c:62:8c:ed:09:79:67:ca:c5:ba:f9:a6:dc: 91:e2:f6:29:ca:f6:14:1a:87:6b:fc:bd:cf:a9:10:d5:12:fd: 52:a4:40:cb:3a:83:64:3a:fa:36:46:66:44:18:61:87:2c:3e: 71:93:30:56:2d:65:d8:5f:6c:27:e0:40:48:96:9c:38:8e:c7: 5f:a4:fd:84:67:98:84:94:57:75:4a:58:77:a3:58:0f:2a:7c: 1a:ce:10:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUwOTE4MTg1MTQwWhcNMjUwOTI1MTg1MTQwWjAYMRYwFAYD VQQDEw02OGNjNTRiYy1mMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gkmYTAIPu1CqxmRtyxMg49BjJ0RQ3OPNknmO2WmzH2FZrIF5klphl7rH3XS 7UUHFRgQkT68jy0kp2R3lA1xz+LC5Lem9TTvWJ/tjrDByhxZrGbTnDBROhjOvCdO lFgGZ4oZCoCIolu71tcuVBqZR+2a8PKfTrQH0gVSzuOTgBvsSBKht6p8PwrDnliR +KFzTNqV6+YbJ19SsyGfTr9fhm3ecRsrWHz6EviI3NPPaXCm+F9VAQYaU7qWVMoV tvk7KWWDyseiLE00h5fDgtU2Z37A3yB/BNL3qqo+4pPy3JoyI4jZpY4X/EA4Syao Dx39ZU2qFBZA1FaUw4Jv9INV3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE8yzYW vFI0ABUj+sWVLR1LvoORMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOLHapntu3J0JIaOhGQaOQjIx+6nuWNfkn8e9Z0qBQSRWH5r/b1/I7 YPN7MMt2JO5Z+pTqaIbMZcjPWZlyrT0M3GaOZ5xv26Tn6QTzzQHiqH1ruIJKr13S KQVOl2deT7jJBb5683CJA5fkMp0IhQCbz9SB8EPfmqVTdQ1YB4EIolZkDN1u+V1I da/sT6N0jfFSjSgnFLIGIW/n6J4jheUdBcb1G8myoCxijO0JeWfKxbr5ptyR4vYp yvYUGodr/L3PqRDVEv1SpEDLOoNkOvo2RmZEGGGHLD5xkzBWLWXYX2wn4EBIlpw4 jsdfpP2EZ5iElFd1Slh3o1gPKnwazhA6 -----END CERTIFICATE-----Generated at Fri Sep 19 02:36:12 2025 by rpki-client