$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: RBxyJVe1ZeTW6IOQfg5yof2Dxn3vxKV5HmiaOS5wggA= Subject key identifier: A3:23:F3:98:99:C6:AE:1B:1F:29:EC:BC:F3:94:7F:D5:86:E6:26:19 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C6A Signing time: Fri 22 Aug 2025 18:32:24 +0000 Manifest this update: Fri 22 Aug 2025 18:32:23 +0000 Manifest next update: Fri 29 Aug 2025 18:32:23 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: lgTMoYlnv4vLlGkRPm/Qo4FkH0RswYeBfmKUuM/w7cw=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Aug 22 18:32:23 2025 GMT Not After : Aug 29 18:32:23 2025 GMT Subject: CN=68a8b7b8-c732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:85:59:dd:b1:f2:ea:03:3e:56:8d:65:a5: c7:90:d9:f9:20:8b:c5:15:a5:26:d6:6c:43:4d:81: b7:f2:bd:36:bc:22:2e:ed:8d:c6:3a:29:44:92:14: 6d:fa:3b:0b:0b:73:20:ff:5a:da:93:e2:e7:e7:6b: a0:ba:ad:66:87:a2:57:fe:d7:31:21:da:2e:21:0e: 13:1a:5b:9e:d2:db:92:7a:0b:85:a4:50:4a:be:8a: 46:77:df:1c:06:bc:fa:8d:5d:e9:eb:d4:c5:8b:f3: 52:b2:4b:19:4a:65:1c:b2:c7:68:49:1d:32:b3:ad: c1:b4:ff:3b:6a:a7:6d:3a:fa:43:95:24:53:93:12: ed:dc:8e:95:98:35:07:fe:f9:90:0a:1d:ae:89:bf: d4:22:4d:db:fd:19:3d:d4:38:6e:36:ea:0c:34:07: 1e:69:80:bb:43:d9:e1:1b:f6:76:d8:0a:3e:e5:5b: b2:5d:26:92:c2:9e:d4:24:e6:3c:6e:d1:03:33:52: 5b:b4:74:8f:7c:d3:50:0f:99:9b:41:62:6b:f8:ee: c0:a6:c2:e0:d9:05:4d:65:cf:16:a9:36:3e:14:ad: 85:f7:73:0c:3a:51:3c:59:05:3c:a3:9f:d4:8d:4b: 65:c9:ed:99:68:53:63:03:ae:9f:f0:9a:6f:14:f6: c8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:23:F3:98:99:C6:AE:1B:1F:29:EC:BC:F3:94:7F:D5:86:E6:26:19 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5d:9d:4a:ff:e1:2a:2a:c8:da:e4:5c:3d:3f:7c:56:78:85: 26:f4:a3:92:45:89:92:c6:77:a8:33:7e:fc:98:66:47:86:e5: 74:97:df:99:f5:f8:59:5e:2f:4c:fc:33:84:54:42:45:c6:23: 68:9c:03:d0:2e:b1:c2:21:46:a5:df:cb:42:96:2e:69:dc:11: 1e:a7:b7:ed:5b:31:5b:bb:aa:6d:98:99:ff:a6:00:40:54:ba: 82:12:bf:63:50:fb:cc:06:71:8d:a4:38:ae:80:f9:7c:5e:cc: 4a:9b:10:ac:87:89:f0:92:b1:d2:b8:b8:33:40:76:2e:ec:58: 9c:1f:83:c7:b0:37:85:5a:f3:1f:88:b9:4c:da:a7:b8:c1:ef: cf:02:90:dd:ed:6c:68:af:01:18:b3:ce:02:4d:d7:ba:c7:8a: 46:50:15:be:fe:92:87:a8:4f:df:fa:d2:b8:2c:16:76:a1:ac: 74:6a:8b:c1:11:aa:d5:05:9b:2a:3e:ea:1b:3e:88:ef:28:b9: e8:c9:65:40:df:8b:d6:3d:c8:41:db:5d:1c:4a:98:74:0d:43: 12:a0:f7:26:ab:12:2b:86:c1:4c:2f:0d:63:f2:ea:c3:a9:a1: 43:d3:8c:8c:9f:04:12:0c:96:6a:67:00:58:e0:fe:80:96:65: 3e:f9:77:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUwODIyMTgzMjIzWhcNMjUwODI5MTgzMjIzWjAYMRYwFAYD VQQDEw02OGE4YjdiOC1jNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbOFWd2x8uoDPlaNZaXHkNn5IIvFFaUm1mxDTYG38r02vCIu7Y3GOilEkhRt +jsLC3Mg/1rak+Ln52uguq1mh6JX/tcxIdouIQ4TGlue0tuSeguFpFBKvopGd98c Brz6jV3p69TFi/NSsksZSmUcssdoSR0ys63BtP87aqdtOvpDlSRTkxLt3I6VmDUH /vmQCh2uib/UIk3b/Rk91DhuNuoMNAceaYC7Q9nhG/Z22Ao+5VuyXSaSwp7UJOY8 btEDM1JbtHSPfNNQD5mbQWJr+O7ApsLg2QVNZc8WqTY+FK2F93MMOlE8WQU8o5/U jUtlye2ZaFNjA66f8JpvFPbI1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMj85iZ xq4bHynsvPOUf9WG5iYZMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPXZ1K/+EqKsja5Fw9P3xWeIUm9KOSRYmSxneoM378mGZHhuV0l9+Z 9fhZXi9M/DOEVEJFxiNonAPQLrHCIUal38tCli5p3BEep7ftWzFbu6ptmJn/pgBA VLqCEr9jUPvMBnGNpDiugPl8XsxKmxCsh4nwkrHSuLgzQHYu7FicH4PHsDeFWvMf iLlM2qe4we/PApDd7WxorwEYs84CTde6x4pGUBW+/pKHqE/f+tK4LBZ2oax0aovB EarVBZsqPuobPojvKLnoyWVA34vWPchB210cSph0DUMSoPcmqxIrhsFMLw1j8urD qaFD04yMnwQSDJZqZwBY4P6AlmU++Xe1 -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:49 2025 by rpki-client