$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: O/VeqEQYC2JtNzmQxUpNPJOvm2UItolg9lwUy6rAdQI= Subject key identifier: 0E:AD:FC:86:63:DA:EC:2B:6D:B2:FC:E7:00:B7:A7:A0:AE:86:74:E5 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 053D Signing time: Fri 22 Aug 2025 23:41:24 +0000 Manifest this update: Fri 22 Aug 2025 23:41:23 +0000 Manifest next update: Fri 29 Aug 2025 23:41:23 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: qPJDPfrXykurs47mZsUmpYcInL1mmsd8aHVrvkXw/+Q=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:41:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Aug 22 23:41:23 2025 GMT Not After : Aug 29 23:41:23 2025 GMT Subject: CN=68a90024-fea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ae:3e:33:d9:38:49:db:7c:4a:50:fd:fd:42: f2:c0:7b:10:63:b7:f8:b8:c4:a2:0e:4e:5c:3c:1c: 83:07:8e:95:ee:e2:1c:56:ab:8c:27:d5:71:eb:50: 21:ae:d9:9c:dc:49:01:b4:e7:50:bb:4e:38:bd:2f: ce:1d:2c:cf:7c:cc:f1:49:dd:e8:c0:04:98:f4:c6: 28:f6:af:5e:12:79:e5:67:0d:c3:04:4d:7b:aa:ba: 63:fd:50:99:88:a3:86:73:bd:34:b5:60:84:ba:d3: e3:03:e1:cc:f9:ef:46:4d:61:87:15:90:27:12:e6: 79:6c:f9:d6:63:65:9a:2f:0f:f6:90:92:ea:32:4f: 6f:26:91:6e:04:d3:a7:3a:44:c3:eb:8d:d8:e5:8f: 24:5d:79:10:7e:79:4c:15:ab:27:69:3c:90:2f:7b: ba:c2:db:28:7f:4d:95:de:5d:5e:6d:83:59:df:df: b4:36:d1:4c:f0:dd:79:5e:3f:f4:59:3d:58:ef:14: b1:6b:6e:f9:43:21:cc:8c:99:a0:9a:f1:46:46:52: c0:76:71:f0:f0:c6:c8:f9:7d:06:b8:47:52:b9:57: 26:1a:ab:1c:40:61:0b:94:d5:be:13:b6:20:c5:38: a4:b2:99:ba:43:8e:9d:d9:88:6d:93:b7:af:5e:9c: 1c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AD:FC:86:63:DA:EC:2B:6D:B2:FC:E7:00:B7:A7:A0:AE:86:74:E5 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ae:4b:b2:ab:75:3d:a5:f9:aa:b6:6b:ee:fb:f3:2e:54:19: 8f:29:c7:f4:c9:0c:99:fd:48:49:25:7d:82:c9:a9:42:99:f8: ff:62:22:78:e4:74:da:19:77:d8:97:a9:04:47:17:c0:94:f7: 22:c1:23:46:be:9a:1a:a0:f8:38:97:8c:e1:85:3a:c3:26:41: 09:fd:24:ff:23:57:a6:84:d8:28:fb:97:46:9c:c6:08:78:de: 13:73:d3:8a:34:19:eb:e0:27:bc:3b:df:52:d9:31:43:3d:de: e5:da:51:e3:91:15:e1:20:19:18:2e:6a:a7:d0:8a:ad:fa:68: 8e:85:94:a1:4c:59:e7:29:a1:df:37:9f:b7:4a:0b:93:a0:58: f1:eb:86:62:63:79:aa:65:04:e2:e5:57:42:87:4f:a5:28:3e: 08:2e:95:c2:ab:a2:8d:ef:2b:da:73:d2:d9:69:0d:7a:22:84: 3d:92:c6:8c:59:79:b4:9a:4e:91:d3:24:96:ac:c7:72:9b:d2: 95:1f:1b:70:cd:75:e6:bf:9d:33:3b:69:0e:89:2a:61:b1:39: 0e:15:88:4b:6a:9f:6a:12:1e:5f:d4:02:20:f2:ed:1a:74:65: 42:4b:41:a2:e2:c1:21:6a:89:e7:63:3c:a1:3d:8c:6a:4f:b0: e2:b7:84:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwODIyMjM0MTIzWhcNMjUwODI5MjM0MTIzWjAYMRYwFAYD VQQDEw02OGE5MDAyNC1mZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq4+M9k4Sdt8SlD9/ULywHsQY7f4uMSiDk5cPByDB46V7uIcVquMJ9Vx61Ah rtmc3EkBtOdQu044vS/OHSzPfMzxSd3owASY9MYo9q9eEnnlZw3DBE17qrpj/VCZ iKOGc700tWCEutPjA+HM+e9GTWGHFZAnEuZ5bPnWY2WaLw/2kJLqMk9vJpFuBNOn OkTD643Y5Y8kXXkQfnlMFasnaTyQL3u6wtsof02V3l1ebYNZ39+0NtFM8N15Xj/0 WT1Y7xSxa275QyHMjJmgmvFGRlLAdnHw8MbI+X0GuEdSuVcmGqscQGELlNW+E7Yg xTikspm6Q46d2Yhtk7evXpwcowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6t/IZj 2uwrbbL85wC3p6CuhnTlMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnrkuyq3U9pfmqtmvu+/MuVBmPKcf0yQyZ/UhJJX2CyalCmfj/YiJ4 5HTaGXfYl6kERxfAlPciwSNGvpoaoPg4l4zhhTrDJkEJ/ST/I1emhNgo+5dGnMYI eN4Tc9OKNBnr4Ce8O99S2TFDPd7l2lHjkRXhIBkYLmqn0Iqt+miOhZShTFnnKaHf N5+3SguToFjx64ZiY3mqZQTi5VdCh0+lKD4ILpXCq6KN7yvac9LZaQ16IoQ9ksaM WXm0mk6R0ySWrMdym9KVHxtwzXXmv50zO2kOiSphsTkOFYhLap9qEh5f1AIg8u0a dGVCS0Gi4sEhaonnYzyhPYxqT7Dit4RK -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:01 2025 by rpki-client