$ rpki-client -vvf rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft File: iNHJlOgQj8ClM99LuOLOjRxLnxc.mft (raw, json) Hash identifier: tkZMIdtU8PWV0jOHCI8aN7x2xyoBiaGrbuLGrMjH7B4= Subject key identifier: 18:91:FF:E9:4C:79:F5:A2:24:3E:E3:38:A3:F0:A6:3A:9C:EA:41:A3 Authority key identifier: 88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 Certificate issuer: /CN=A911A702/serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft Manifest number: 0676 Signing time: Fri 22 Aug 2025 22:38:06 +0000 Manifest this update: Fri 22 Aug 2025 22:38:06 +0000 Manifest next update: Fri 29 Aug 2025 22:38:06 +0000 Files and hashes: 1: iNHJlOgQj8ClM99LuOLOjRxLnxc.crl (hash: 4p0gr4L/5QTErHWgfwyN3bw+t5f5o/kYoWM6R6uGGVU=) 2: 6339493A516311ED90F04711C4F9AE02.roa (hash: UZVHz0fvOssKPNLwiZ35IeL2xHQA6a7FTosxanmpoZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A702, serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Validity Not Before: Aug 22 22:38:06 2025 GMT Not After : Aug 29 22:38:06 2025 GMT Subject: CN=68a8f14e-e5aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cd:3b:1f:cf:d0:7a:ce:e4:3f:5f:cf:83:6a: 29:9f:a2:93:41:be:5d:b3:e3:37:4a:f0:91:66:dc: 66:71:da:fc:ef:5e:33:19:48:b1:8d:bb:b4:6d:33: 29:9f:c0:66:a0:d7:dd:ea:92:52:86:a9:b0:c8:c0: b1:f3:98:f7:37:81:51:6a:f0:bf:ce:85:75:07:25: ed:6f:c2:c5:21:1f:bb:70:48:cb:d8:73:20:37:4e: 42:9d:c1:83:40:c6:aa:48:92:9d:ba:81:c7:bf:11: 31:49:65:dc:66:76:24:d6:b9:95:83:4d:1e:67:cf: 64:2b:7f:f5:56:83:ac:46:f6:09:0e:bc:5a:ec:ba: 89:90:63:03:15:a4:9f:96:df:11:2a:ce:15:4f:06: e7:49:d8:25:63:4f:b7:16:1b:a8:15:13:4e:66:56: d3:ea:02:c4:8e:fe:81:2f:b4:0e:b7:55:0d:c5:bc: 44:05:ec:a6:f0:10:87:ab:07:f9:3d:ac:6a:c2:ea: a6:39:c2:80:69:93:7f:4c:0c:d9:db:b0:41:26:45: d0:b9:98:e3:6a:f5:95:65:6d:ee:82:fe:ca:47:55: 8f:33:ff:d4:89:ea:8e:79:58:d3:a8:a2:50:c2:03: ae:85:50:d9:18:d9:32:b9:60:c6:a6:64:66:19:68: e2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:91:FF:E9:4C:79:F5:A2:24:3E:E3:38:A3:F0:A6:3A:9C:EA:41:A3 X509v3 Authority Key Identifier: keyid:88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:58:d5:ad:90:4b:b6:75:73:d6:96:55:71:6a:ad:63:5c:69: f1:e9:52:75:44:a4:a9:a3:14:33:0d:59:72:64:43:2a:c3:91: f1:14:91:b5:4b:07:ac:01:a1:0f:71:05:4d:34:bb:14:38:0b: 92:c8:00:11:63:d5:01:40:c2:f0:c5:39:72:2a:7d:a6:e3:fc: e0:8c:56:99:29:72:4e:a8:1d:de:e6:93:53:d5:68:94:6e:4d: aa:58:24:c4:9c:f0:29:20:df:80:b5:95:68:84:a9:38:2a:53: 5b:2b:95:5a:b5:ae:b3:7d:23:03:d5:34:52:b1:a6:d7:4a:cc: fc:69:de:86:7d:98:8d:a1:31:e5:04:f6:fd:fb:fb:14:ee:87: 2e:bc:a9:aa:c3:05:83:2b:b5:b0:92:78:71:6a:17:b3:64:73: 5c:38:97:d5:6f:23:d2:2c:b5:fb:f3:3e:ae:be:87:62:31:d6: c9:2a:39:4a:98:a3:61:d0:9a:b6:7d:04:49:c7:62:3c:db:84: e7:28:2e:fe:54:80:d1:f4:45:b8:57:fe:a9:da:80:32:e1:9f: 2e:e9:ab:7d:9f:75:73:b3:9a:0d:82:f4:15:07:d3:d1:7d:2f: c0:80:f0:8c:d0:cb:a5:37:be:ce:6a:c8:f6:3d:62:14:e3:97: 78:17:78:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE3MDIxMTAvBgNVBAUTKDg4RDFDOTk0RTgxMDhGQzBBNTMzREY0QkI4RTJDRThE MUM0QjlGMTcwHhcNMjUwODIyMjIzODA2WhcNMjUwODI5MjIzODA2WjAYMRYwFAYD VQQDEw02OGE4ZjE0ZS1lNWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1807H8/Qes7kP1/Pg2opn6KTQb5ds+M3SvCRZtxmcdr8714zGUixjbu0bTMp n8BmoNfd6pJShqmwyMCx85j3N4FRavC/zoV1ByXtb8LFIR+7cEjL2HMgN05CncGD QMaqSJKduoHHvxExSWXcZnYk1rmVg00eZ89kK3/1VoOsRvYJDrxa7LqJkGMDFaSf lt8RKs4VTwbnSdglY0+3FhuoFRNOZlbT6gLEjv6BL7QOt1UNxbxEBeym8BCHqwf5 PaxqwuqmOcKAaZN/TAzZ27BBJkXQuZjjavWVZW3ugv7KR1WPM//UieqOeVjTqKJQ wgOuhVDZGNkyuWDGpmRmGWjinwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiR/+lM efWiJD7jOKPwpjqc6kGjMB8GA1UdIwQYMBaAFIjRyZToEI/ApTPfS7jizo0cS58X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwMi85MzlDQUUyQzhE RDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4Q2xNOTlMdU9MT2pSeExu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lOSEpsT2dRajhDbE05OUx1T0xPalJ4TG54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTcwMi85MzlDQUUyQzhERDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4 Q2xNOTlMdU9MT2pSeExueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPWNWtkEu2dXPWllVxaq1jXGnx6VJ1RKSpoxQzDVlyZEMqw5HxFJG1 SwesAaEPcQVNNLsUOAuSyAARY9UBQMLwxTlyKn2m4/zgjFaZKXJOqB3e5pNT1WiU bk2qWCTEnPApIN+AtZVohKk4KlNbK5Vata6zfSMD1TRSsabXSsz8ad6GfZiNoTHl BPb9+/sU7ocuvKmqwwWDK7WwknhxahezZHNcOJfVbyPSLLX78z6uvodiMdbJKjlK mKNh0Jq2fQRJx2I824TnKC7+VIDR9EW4V/6p2oAy4Z8u6at9n3Vzs5oNgvQVB9PR fS/AgPCM0MulN77Oasj2PWIU45d4F3gi -----END CERTIFICATE-----Generated at Sat Aug 23 19:40:13 2025 by rpki-client