$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: XCsXFk6Trok6qF0Efs5VbKIAoJySxR5LfsZMBxYT8N0= Subject key identifier: FD:71:E8:D3:F0:5D:60:E4:87:09:F6:98:74:4F:E1:AF:72:A1:38:FC Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 033F Signing time: Tue 09 Sep 2025 01:09:24 +0000 Manifest this update: Tue 09 Sep 2025 01:09:24 +0000 Manifest next update: Tue 16 Sep 2025 01:09:24 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: 1i+Cv5qwbsNQwPhOCh09n1bQJgjF2evxq+fK+anvKMQ=) 2: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: du3inK9qkjwR/A2n6vO6SMQjDynHJ0y0PAziJifzAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54, serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: Sep 9 01:09:24 2025 GMT Not After : Sep 16 01:09:24 2025 GMT Subject: CN=68bf7e44-f389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:35:83:c4:10:ed:0e:8b:8b:c1:a8:36:c3:8c: 72:2d:97:81:6c:f1:15:4d:44:8c:69:a5:68:72:cf: 7a:53:60:ca:a5:9b:dd:4a:dc:a5:e7:1f:ce:b9:35: b7:6c:ac:98:86:ec:d7:05:cb:79:ed:a1:c7:66:43: f7:40:89:dd:0b:9a:1d:2e:a5:1f:68:dc:58:a3:1a: c7:13:73:80:03:f5:45:76:3c:af:2a:0e:a1:54:f3: 88:2a:02:02:f1:7d:88:81:15:2f:29:91:aa:ea:79: 16:fd:af:0d:d9:73:b1:77:df:a6:df:58:e4:a2:89: 72:42:31:74:10:2f:76:01:1d:02:6e:68:77:2b:b2: eb:aa:ca:05:f6:74:c5:08:d7:eb:27:e6:25:5a:21: ae:5d:bc:06:17:98:37:73:ff:7b:2b:78:f1:7d:9e: ac:b4:a6:63:17:0b:b2:1f:c3:61:9a:c3:b8:c8:f3: ff:af:47:e3:a9:37:af:e0:6b:28:22:73:d1:e5:53: d6:f2:d2:81:58:b5:0c:7f:84:c2:83:1d:f3:aa:dd: 50:87:07:e4:a1:2d:5e:01:43:c3:fc:a7:42:b9:34: a3:f8:82:56:13:a1:86:e2:82:2f:b9:18:f0:1e:09: d9:b7:14:9d:d8:71:db:28:3f:14:af:9e:3a:e5:91: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:71:E8:D3:F0:5D:60:E4:87:09:F6:98:74:4F:E1:AF:72:A1:38:FC X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:97:8c:bc:a4:c7:9b:fd:36:4d:a3:a4:b4:26:aa:c2:da:be: ff:64:33:2d:ea:f6:e6:e0:ea:10:db:e8:f6:2c:15:9a:08:e8: e1:8f:17:27:1b:89:0c:5d:aa:59:bd:61:c1:e5:c2:2a:5d:ba: 43:ee:dc:04:0f:1b:d4:93:af:55:57:c0:98:b1:3a:9d:84:3f: a5:f2:38:d3:15:a6:53:12:45:4c:a8:67:2f:75:1d:d9:3c:da: bf:cc:11:c9:55:87:56:57:83:34:e9:79:31:a5:34:0f:75:ff: 4b:87:59:9b:78:95:33:24:9c:b7:bc:e7:af:8b:a9:2a:85:63: ad:6c:8b:7f:80:5c:83:30:5e:00:a4:68:9b:a3:1c:9a:e0:a7: cc:e5:98:02:ad:38:81:bb:53:5a:f7:0b:65:8b:22:32:3a:f5: 9f:fc:4f:03:aa:02:e9:57:70:31:7a:f6:a3:dd:09:e7:ac:3d: 4a:c3:04:50:2d:13:cb:8e:4c:ca:14:ee:9c:27:68:b3:2d:00: 4d:52:8f:86:87:78:46:a4:51:0d:96:17:f5:4a:bf:1f:e4:13: 56:f4:95:c3:a4:01:5a:3f:85:8e:29:0e:19:5f:b0:91:ce:ba: d7:b6:73:b0:7e:21:ff:ca:ce:73:de:38:12:17:7a:19:7b:46: 7e:24:60:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjUwOTA5MDEwOTI0WhcNMjUwOTE2MDEwOTI0WjAYMRYwFAYD VQQDEw02OGJmN2U0NC1mMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TWDxBDtDouLwag2w4xyLZeBbPEVTUSMaaVocs96U2DKpZvdStyl5x/OuTW3 bKyYhuzXBct57aHHZkP3QIndC5odLqUfaNxYoxrHE3OAA/VFdjyvKg6hVPOIKgIC 8X2IgRUvKZGq6nkW/a8N2XOxd9+m31jkoolyQjF0EC92AR0Cbmh3K7LrqsoF9nTF CNfrJ+YlWiGuXbwGF5g3c/97K3jxfZ6stKZjFwuyH8NhmsO4yPP/r0fjqTev4Gso InPR5VPW8tKBWLUMf4TCgx3zqt1QhwfkoS1eAUPD/KdCuTSj+IJWE6GG4oIvuRjw HgnZtxSd2HHbKD8Ur5465ZFa7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1x6NPw XWDkhwn2mHRP4a9yoTj8MB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALl4y8pMeb/TZNo6S0JqrC2r7/ZDMt6vbm4OoQ2+j2LBWaCOjhjxcn G4kMXapZvWHB5cIqXbpD7twEDxvUk69VV8CYsTqdhD+l8jjTFaZTEkVMqGcvdR3Z PNq/zBHJVYdWV4M06XkxpTQPdf9Lh1mbeJUzJJy3vOevi6kqhWOtbIt/gFyDMF4A pGiboxya4KfM5ZgCrTiBu1Na9wtliyIyOvWf/E8DqgLpV3Axevaj3QnnrD1KwwRQ LRPLjkzKFO6cJ2izLQBNUo+Gh3hGpFENlhf1Sr8f5BNW9JXDpAFaP4WOKQ4ZX7CR zrrXtnOwfiH/ys5z3jgSF3oZe0Z+JGAR -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:55 2025 by rpki-client