$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: 09kBAUJCmtqk+qUHSrOKX8047Yei0I5KB1pE/UVv4Gg= Subject key identifier: 67:70:25:90:E3:71:C3:EB:59:85:E7:03:FE:0D:FE:7C:FD:9E:DC:7C Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C28 Signing time: Fri 22 Aug 2025 18:43:43 +0000 Manifest this update: Fri 22 Aug 2025 18:43:42 +0000 Manifest next update: Fri 29 Aug 2025 18:43:42 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: 62Dkvsi/mLBgGw2bCOaDOpG2lGR735ngP8FR3qKT/G0=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Aug 22 18:43:42 2025 GMT Not After : Aug 29 18:43:42 2025 GMT Subject: CN=68a8ba5e-14c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:37:5d:6a:48:c6:c0:a5:cc:af:92:6c:8d:06: db:4f:91:bd:fd:4f:47:1f:26:49:39:3d:c2:16:a3: 14:08:47:f4:75:18:a5:a9:33:a6:56:5c:cb:22:0a: 31:90:e5:5c:4a:7c:db:22:70:72:ff:b5:b0:90:61: fd:66:61:7a:27:c1:8d:66:5a:fa:ea:8c:33:fc:cd: 22:7f:53:f6:06:8e:60:a6:61:51:20:17:82:a0:8c: fe:48:7c:55:cf:36:9a:61:32:27:76:c1:c9:9b:29: 1e:bc:b1:e0:5d:54:af:3d:79:97:35:55:a0:07:a8: 64:ea:46:e5:b5:59:c6:0b:1e:3b:49:14:5a:82:db: a3:e9:c9:c1:ab:f6:07:38:9c:f4:4c:72:32:e7:58: 1f:d2:fd:4a:56:36:de:35:ba:85:f1:f4:97:72:58: d0:63:a7:ff:16:ef:8a:f3:f2:27:32:49:77:11:80: 0d:e0:48:ef:3b:77:31:10:bf:20:e1:af:52:45:11: bc:1b:b4:7f:29:31:ad:a3:27:a6:af:21:13:b8:ed: 50:5f:a8:0b:f3:82:9e:1f:3a:ba:bd:1a:da:bd:35: 8c:17:f0:88:a1:44:7b:2c:51:e1:ce:ac:ca:d5:34: ce:a5:41:6c:25:75:60:b0:f3:6f:75:3a:c4:c8:2b: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:70:25:90:E3:71:C3:EB:59:85:E7:03:FE:0D:FE:7C:FD:9E:DC:7C X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c4:9b:8d:86:1a:af:d1:3e:8a:2e:8c:1e:f0:0c:5e:d6:28: 17:87:7b:bf:df:84:c7:bc:c9:f3:03:b2:1d:99:c9:94:58:57: bd:0e:bc:50:42:76:22:61:cd:18:8b:cf:95:b4:56:70:0c:b1: 57:0a:29:c1:28:4c:79:53:64:ab:77:51:8f:7c:58:71:c2:05: eb:49:45:5e:c2:92:80:c8:72:dc:dd:68:7a:5b:1b:f3:fc:00: 97:3a:47:85:20:7d:92:2e:da:8f:89:95:e1:10:7e:d3:19:fe: b1:6b:40:5c:38:aa:70:b5:d2:60:e6:b2:6c:31:78:98:81:19: c5:c9:a9:75:64:8e:1e:2f:3a:e4:6c:cc:60:d4:34:e9:35:ba: 8d:dd:b6:3a:f3:99:e2:84:ec:48:d0:cf:ef:92:ea:e3:64:d7: 3f:2d:52:d5:f3:f3:8d:2f:fa:cb:33:15:d3:7d:9a:33:73:fb: a4:01:e1:4b:20:a8:87:9c:0d:6c:a4:5c:fc:b3:89:b6:ef:02: e8:53:0e:10:20:a3:3a:eb:cb:63:ce:27:e0:21:d6:bd:ae:8b: a4:f9:a0:2c:16:41:11:88:50:bc:2d:7c:64:da:7b:85:10:aa: 95:5c:be:06:6d:01:42:a4:7c:64:7f:31:64:59:c4:54:2e:7e: a0:2c:cd:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwODIyMTg0MzQyWhcNMjUwODI5MTg0MzQyWjAYMRYwFAYD VQQDEw02OGE4YmE1ZS0xNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDddakjGwKXMr5JsjQbbT5G9/U9HHyZJOT3CFqMUCEf0dRilqTOmVlzLIgox kOVcSnzbInBy/7WwkGH9ZmF6J8GNZlr66owz/M0if1P2Bo5gpmFRIBeCoIz+SHxV zzaaYTIndsHJmykevLHgXVSvPXmXNVWgB6hk6kbltVnGCx47SRRagtuj6cnBq/YH OJz0THIy51gf0v1KVjbeNbqF8fSXcljQY6f/Fu+K8/InMkl3EYAN4EjvO3cxEL8g 4a9SRRG8G7R/KTGtoyemryETuO1QX6gL84KeHzq6vRravTWMF/CIoUR7LFHhzqzK 1TTOpUFsJXVgsPNvdTrEyCsohQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdwJZDj ccPrWYXnA/4N/nz9ntx8MB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7xJuNhhqv0T6KLowe8Axe1igXh3u/34THvMnzA7IdmcmUWFe9DrxQ QnYiYc0Yi8+VtFZwDLFXCinBKEx5U2Srd1GPfFhxwgXrSUVewpKAyHLc3Wh6Wxvz /ACXOkeFIH2SLtqPiZXhEH7TGf6xa0BcOKpwtdJg5rJsMXiYgRnFyal1ZI4eLzrk bMxg1DTpNbqN3bY685nihOxI0M/vkurjZNc/LVLV8/ONL/rLMxXTfZozc/ukAeFL IKiHnA1spFz8s4m27wLoUw4QIKM668tjzifgIda9rouk+aAsFkERiFC8LXxk2nuF EKqVXL4GbQFCpHxkfzFkWcRULn6gLM3r -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:12 2025 by rpki-client