$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: sud3F/e0qvLJfA85Fp23gZ+5giDunFgmyOFkHap5UPE= Subject key identifier: 10:F3:FB:BB:08:55:F3:4F:D3:BC:EC:B1:DD:3D:AC:51:9D:7B:76:F9 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 072F Signing time: Fri 22 Aug 2025 21:55:29 +0000 Manifest this update: Fri 22 Aug 2025 21:55:29 +0000 Manifest next update: Fri 29 Aug 2025 21:55:29 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: t5GrZsp1irpcwKXONbYzykm+Rah1brVw2PLLi8oE5OU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Aug 22 21:55:29 2025 GMT Not After : Aug 29 21:55:29 2025 GMT Subject: CN=68a8e751-b5cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:06:8a:33:81:c4:7a:b2:cd:15:8c:50:20:e2: b4:1a:91:a3:f5:39:da:57:06:48:d6:d5:aa:bb:4d: 78:8f:5c:9a:d8:ee:98:4d:b0:c4:1e:ba:ff:d4:09: 5c:3a:1e:90:8c:f8:49:7d:e1:51:f5:e2:67:15:5d: 15:10:9c:21:cf:37:99:31:02:05:20:62:f8:7d:08: ff:03:0e:c6:a8:cd:f0:ee:91:59:59:bd:c4:25:2c: 86:da:40:1b:f6:cb:c1:7a:2e:fc:f7:14:96:c0:e5: cc:97:b9:f4:15:b4:b6:8d:c7:7f:9a:14:51:ad:20: 1b:5a:9a:a8:09:93:47:23:45:98:06:05:2f:95:1e: c5:40:7b:e0:ff:01:b4:39:65:0e:a5:0c:5f:fc:2a: d9:39:c8:cb:e7:9e:ff:93:68:2a:3b:04:47:d8:44: 73:9c:81:08:ef:99:8a:b1:40:be:72:b7:40:a1:1a: f1:d1:84:7b:33:49:4c:ea:05:20:40:06:c1:5e:9a: ca:c2:1b:d0:21:6b:85:9d:34:af:77:7b:4c:63:c7: e7:35:32:b2:e1:23:86:05:81:8f:a5:30:ca:4c:4c: b2:ab:5f:75:34:90:ce:77:63:96:26:24:18:18:d1: 7d:71:a5:d3:14:f7:4f:75:06:46:f3:05:2e:77:41: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F3:FB:BB:08:55:F3:4F:D3:BC:EC:B1:DD:3D:AC:51:9D:7B:76:F9 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:09:da:8f:c6:49:d5:97:9f:e8:39:3b:3a:8d:45:84:bd:6f: 83:4b:5a:28:3c:5c:d1:2a:8e:dc:5b:b5:2a:75:1e:be:e1:c7: ea:42:6d:78:d0:d1:45:ad:e2:94:d4:ed:ce:b3:2c:93:db:50: af:f6:4a:bc:ac:25:8c:03:b2:06:8a:a5:35:fc:39:aa:c6:57: 15:21:da:1e:87:ee:32:f4:dd:2d:37:23:5b:70:0b:0a:14:3b: cd:10:f3:11:82:12:63:a6:90:c2:c3:51:28:eb:f0:80:c7:dc: 0e:7b:98:0c:d1:e5:70:78:a9:a5:5d:e1:3c:e9:38:0b:9d:a4: 4b:e1:8e:5b:d7:e2:47:98:8d:ba:3c:c6:f7:0f:0e:d1:27:f3: 11:d3:8c:bb:2d:53:6a:44:02:93:8a:5a:99:62:84:8f:b6:50: b8:1c:34:70:8e:9c:89:bc:32:84:52:18:3d:ce:5e:a5:c6:68: 49:86:81:28:30:cc:da:a8:71:6d:a4:53:73:f2:d1:7a:ab:d6: 6e:74:9b:f9:2e:8a:7e:63:90:22:33:98:01:b1:7f:45:da:15: 60:80:e9:1e:40:5c:d5:91:12:4f:e9:72:1b:57:69:f2:2e:c1: 4c:9b:3c:d0:d9:41:d1:18:90:47:3d:67:13:14:8f:7f:ee:7a: ee:16:14:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwODIyMjE1NTI5WhcNMjUwODI5MjE1NTI5WjAYMRYwFAYD VQQDEw02OGE4ZTc1MS1iNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQaKM4HEerLNFYxQIOK0GpGj9TnaVwZI1tWqu014j1ya2O6YTbDEHrr/1Alc Oh6QjPhJfeFR9eJnFV0VEJwhzzeZMQIFIGL4fQj/Aw7GqM3w7pFZWb3EJSyG2kAb 9svBei789xSWwOXMl7n0FbS2jcd/mhRRrSAbWpqoCZNHI0WYBgUvlR7FQHvg/wG0 OWUOpQxf/CrZOcjL557/k2gqOwRH2ERznIEI75mKsUC+crdAoRrx0YR7M0lM6gUg QAbBXprKwhvQIWuFnTSvd3tMY8fnNTKy4SOGBYGPpTDKTEyyq191NJDOd2OWJiQY GNF9caXTFPdPdQZG8wUud0HlsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDz+7sI VfNP07zssd09rFGde3b5MB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPCdqPxknVl5/oOTs6jUWEvW+DS1ooPFzRKo7cW7UqdR6+4cfqQm14 0NFFreKU1O3OsyyT21Cv9kq8rCWMA7IGiqU1/DmqxlcVIdoeh+4y9N0tNyNbcAsK FDvNEPMRghJjppDCw1Eo6/CAx9wOe5gM0eVweKmlXeE86TgLnaRL4Y5b1+JHmI26 PMb3Dw7RJ/MR04y7LVNqRAKTilqZYoSPtlC4HDRwjpyJvDKEUhg9zl6lxmhJhoEo MMzaqHFtpFNz8tF6q9ZudJv5Lop+Y5AiM5gBsX9F2hVggOkeQFzVkRJP6XIbV2ny LsFMmzzQ2UHRGJBHPWcTFI9/7nruFhQs -----END CERTIFICATE-----Generated at Sun Aug 24 11:03:55 2025 by rpki-client