$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: Zbzo1/QmkhjDT7RV7bxY047SzqCKkQOjplXrZ+GMYyg= Subject key identifier: 60:BD:5B:20:E0:C2:EE:17:8A:BA:E3:34:99:C2:22:02:B8:D3:74:48 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0162 Signing time: Sat 23 Aug 2025 04:07:01 +0000 Manifest this update: Sat 23 Aug 2025 04:07:01 +0000 Manifest next update: Sat 30 Aug 2025 04:07:01 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: rNyUOfHHlQhCd5g1lC47/dft6/YTsboHciKmQn1mVe4=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Aug 23 04:07:01 2025 GMT Not After : Aug 30 04:07:01 2025 GMT Subject: CN=68a93e65-cbb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:01:b7:59:4e:86:44:c9:e5:0a:ee:38:7a: 48:ae:37:fc:ca:fe:c8:94:ef:c9:eb:c9:bc:68:91: 84:f4:67:55:46:52:8b:f7:1b:4b:69:f7:6e:4f:c7: bf:15:99:52:81:ca:e6:c5:97:44:fa:c6:4d:0a:f5: a2:36:69:54:47:50:a5:e1:1d:f8:5e:89:87:8c:b4: a6:1d:bb:f8:0b:ee:46:6c:e2:66:af:ec:99:41:98: ea:65:b4:74:de:79:50:b9:43:0d:71:b5:31:1e:ee: 82:31:ea:a0:8a:55:ea:f2:8a:fc:46:cd:d3:9d:37: 68:ee:3b:8e:10:38:ea:d5:8b:21:c8:c5:01:49:df: e4:4a:42:0b:b2:d3:f7:da:a9:78:da:b1:42:60:27: b8:3a:d1:96:6e:a1:f3:c4:9f:8b:a6:47:5e:0d:f5: 1d:24:05:58:a2:4d:70:4c:9e:ec:b1:f5:0a:32:96: 03:0a:9c:ef:98:c1:d2:16:c8:0b:ab:55:7e:c7:cf: c7:33:63:0d:98:7a:69:99:08:bb:4f:51:9e:11:69: 32:6b:ca:88:8c:1f:23:94:09:27:02:2a:0b:a2:a0: b2:28:a2:fa:51:1c:9e:4c:f7:94:71:49:32:3d:62: 05:3e:7d:68:8c:8b:a9:cd:19:4e:37:dc:69:89:46: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:BD:5B:20:E0:C2:EE:17:8A:BA:E3:34:99:C2:22:02:B8:D3:74:48 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ae:97:62:5d:f0:d2:0a:e3:6d:55:9c:d5:d2:36:b0:11:a5: 1b:e2:10:bb:d4:a9:38:82:09:b0:83:1b:e1:93:56:ed:42:2d: 2d:8b:1f:d1:7f:a3:bf:7e:f3:de:ff:d6:57:b7:01:30:4b:1d: 68:fb:67:52:d7:5e:41:b4:19:c9:0d:3d:6a:35:f3:3a:0b:93: 39:3e:9c:8c:d5:ac:c3:4c:4c:15:fa:60:53:53:c8:76:fc:9d: 63:90:db:d8:38:38:43:a5:d7:50:76:26:21:94:5e:6e:f6:3c: 7a:46:26:af:d2:05:1e:c9:54:ab:d8:dd:21:19:92:14:cf:b0: c6:7c:00:77:39:55:1f:05:ea:be:ca:ec:9e:22:d6:ae:40:36: d8:85:96:90:ad:4a:dd:58:40:0f:16:1f:d4:db:fe:0d:1f:5b: 03:05:72:d5:5c:df:40:14:e5:c5:2a:46:3e:6c:c8:c2:f2:16: ff:5d:e3:de:48:e1:56:d5:bc:4e:ee:e3:54:9a:a6:1e:1d:7c: 9d:2d:2a:36:a4:77:91:f7:93:55:a2:fe:97:63:c8:df:21:ae: 29:a6:44:aa:56:76:bc:25:33:54:b6:c6:d3:a5:5c:67:38:a1: fe:61:91:38:6d:99:0f:43:b9:85:68:e1:8d:2a:de:94:16:23: 77:e2:00:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwODIzMDQwNzAxWhcNMjUwODMwMDQwNzAxWjAYMRYwFAYD VQQDEw02OGE5M2U2NS1jYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCUBt1lOhkTJ5QruOHpIrjf8yv7IlO/J68m8aJGE9GdVRlKL9xtLafduT8e/ FZlSgcrmxZdE+sZNCvWiNmlUR1Cl4R34XomHjLSmHbv4C+5GbOJmr+yZQZjqZbR0 3nlQuUMNcbUxHu6CMeqgilXq8or8Rs3TnTdo7juOEDjq1YshyMUBSd/kSkILstP3 2ql42rFCYCe4OtGWbqHzxJ+LpkdeDfUdJAVYok1wTJ7ssfUKMpYDCpzvmMHSFsgL q1V+x8/HM2MNmHppmQi7T1GeEWkya8qIjB8jlAknAioLoqCyKKL6URyeTPeUcUky PWIFPn1ojIupzRlON9xpiUYq+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGC9WyDg wu4XirrjNJnCIgK403RIMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+rpdiXfDSCuNtVZzV0jawEaUb4hC71Kk4ggmwgxvhk1btQi0tix/R f6O/fvPe/9ZXtwEwSx1o+2dS115BtBnJDT1qNfM6C5M5PpyM1azDTEwV+mBTU8h2 /J1jkNvYODhDpddQdiYhlF5u9jx6Riav0gUeyVSr2N0hGZIUz7DGfAB3OVUfBeq+ yuyeItauQDbYhZaQrUrdWEAPFh/U2/4NH1sDBXLVXN9AFOXFKkY+bMjC8hb/XePe SOFW1bxO7uNUmqYeHXydLSo2pHeR95NVov6XY8jfIa4ppkSqVna8JTNUtsbTpVxn OKH+YZE4bZkPQ7mFaOGNKt6UFiN34gAv -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:35 2025 by rpki-client