$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: TqTwYyZa5hkw29R9Nwpsl+90ImZsTeP+HyhWu1Ko0iA= Subject key identifier: FD:BF:F6:DE:1D:77:07:94:79:39:C1:D0:01:0D:3C:F4:2E:2E:3E:95 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0372 Signing time: Sat 23 Aug 2025 01:08:37 +0000 Manifest this update: Sat 23 Aug 2025 01:08:36 +0000 Manifest next update: Sat 30 Aug 2025 01:08:36 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: IlVFFmWHXovEjfMkVA2BZvMdyKw5Tp9mdb6nbfGcjak=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Aug 23 01:08:36 2025 GMT Not After : Aug 30 01:08:36 2025 GMT Subject: CN=68a91494-3030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:02:52:67:15:e0:b1:8c:bd:00:9a:b1:2c:f1: 69:4e:57:1b:1f:05:56:cb:bd:da:d1:8a:32:92:89: 3f:74:14:a7:54:f8:56:4d:8f:fe:41:5c:b6:5e:09: 1e:a8:e2:d8:65:14:33:bf:3b:44:d3:63:bd:42:4b: b7:e8:85:c6:94:f9:d6:39:f2:bd:53:4d:95:fd:95: d0:e0:9b:17:5f:d1:2d:3c:14:6e:62:ec:bb:ed:e2: 02:8d:53:b2:79:7b:73:8e:8b:96:93:77:74:f9:8f: 18:b7:ed:f6:b3:b3:bc:6b:e0:19:07:5f:e0:2a:18: 45:2e:13:66:6d:04:60:cc:66:e7:15:1c:6d:1e:cb: 79:8b:4e:01:d7:a3:64:dd:0e:ed:46:81:7d:a1:ef: 87:db:ad:34:f3:c9:eb:50:05:9f:2c:50:2d:a8:a4: 00:62:8f:e4:c9:17:9c:b9:33:18:71:eb:d5:6c:6f: 9a:82:cf:39:46:0f:7c:ae:3d:52:98:08:63:80:6f: bf:71:8f:47:3f:60:c3:15:57:03:09:ec:a3:0a:6b: 41:de:8d:3a:27:53:c4:e1:77:2a:7c:ba:06:cf:c5: 31:40:51:29:d3:38:37:15:a2:c4:d0:3f:d8:24:ef: bd:b5:c7:66:c5:6e:00:93:b6:26:20:45:fe:e3:23: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BF:F6:DE:1D:77:07:94:79:39:C1:D0:01:0D:3C:F4:2E:2E:3E:95 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:1f:63:a0:fd:c8:04:b5:0d:9e:d4:dc:30:3a:44:a8:c1:2c: bc:72:20:7e:c1:38:dd:97:24:78:52:c4:1f:d2:40:7b:bc:e4: ec:0e:e9:d5:7c:37:6c:ba:ac:ca:c0:dc:be:71:d6:ae:94:5d: 40:fc:63:88:3b:24:3e:1d:85:87:b6:7a:66:5b:90:86:09:97: 13:eb:e4:39:b0:95:b7:47:0d:26:2b:81:32:e6:fd:6d:8a:0a: f0:0e:9d:06:65:cb:51:7f:69:e5:e7:b6:b6:d7:69:59:d6:97: b3:8d:eb:75:9a:d7:b2:30:cc:33:46:c4:5e:c4:fa:21:75:1c: 2b:8d:35:ff:a3:12:57:6c:b1:c8:cc:72:f5:cf:ab:60:75:a5: ce:db:80:50:ed:ad:dc:00:89:ff:de:ab:fe:64:0f:20:3d:ce: a4:43:1c:d1:2f:88:39:e3:df:3e:55:6f:94:5f:56:f7:ed:47: 42:b3:1c:51:be:64:33:e7:5e:b0:cf:fb:fc:13:56:cf:3c:bd: ca:7c:be:5f:e5:45:a6:53:7c:c1:66:e7:12:7a:ef:f5:87:64: 2f:4c:2f:b4:62:1f:fd:c7:9d:79:67:d6:68:ba:cc:68:4d:b2: c8:20:8e:28:2b:f8:da:ab:4f:5a:48:74:17:55:09:79:72:3a: a8:a9:79:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwODIzMDEwODM2WhcNMjUwODMwMDEwODM2WjAYMRYwFAYD VQQDEw02OGE5MTQ5NC0zMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwJSZxXgsYy9AJqxLPFpTlcbHwVWy73a0Yoykok/dBSnVPhWTY/+QVy2Xgke qOLYZRQzvztE02O9Qku36IXGlPnWOfK9U02V/ZXQ4JsXX9EtPBRuYuy77eICjVOy eXtzjouWk3d0+Y8Yt+32s7O8a+AZB1/gKhhFLhNmbQRgzGbnFRxtHst5i04B16Nk 3Q7tRoF9oe+H260088nrUAWfLFAtqKQAYo/kyRecuTMYcevVbG+ags85Rg98rj1S mAhjgG+/cY9HP2DDFVcDCeyjCmtB3o06J1PE4XcqfLoGz8UxQFEp0zg3FaLE0D/Y JO+9tcdmxW4Ak7YmIEX+4yOCowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2/9t4d dweUeTnB0AENPPQuLj6VMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGH2Og/cgEtQ2e1NwwOkSowSy8ciB+wTjdlyR4UsQf0kB7vOTsDunV fDdsuqzKwNy+cdaulF1A/GOIOyQ+HYWHtnpmW5CGCZcT6+Q5sJW3Rw0mK4Ey5v1t igrwDp0GZctRf2nl57a212lZ1pezjet1mteyMMwzRsRexPohdRwrjTX/oxJXbLHI zHL1z6tgdaXO24BQ7a3cAIn/3qv+ZA8gPc6kQxzRL4g5498+VW+UX1b37UdCsxxR vmQz516wz/v8E1bPPL3KfL5f5UWmU3zBZucSeu/1h2QvTC+0Yh/9x515Z9Zousxo TbLIII4oK/jaq09aSHQXVQl5cjqoqXl3 -----END CERTIFICATE-----Generated at Sat Aug 23 16:34:32 2025 by rpki-client