$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: CR5ZkBYmNJ85csdTFyEwfM1/qUraqQIUQMFPKnvN7BE= Subject key identifier: 81:32:17:65:02:F2:24:51:9E:B1:10:00:81:4B:39:DF:12:4F:B9:24 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 3016 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FF1 Signing time: Fri 22 Aug 2025 15:30:53 +0000 Manifest this update: Fri 22 Aug 2025 15:30:53 +0000 Manifest next update: Fri 29 Aug 2025 15:30:53 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: 7AfySv5fJSR5rwDXZUp/oyqed130iPkgVZub3qNEveM=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12310 (0x3016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Aug 22 15:30:53 2025 GMT Not After : Aug 29 15:30:53 2025 GMT Subject: CN=68a88d2d-0369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cc:27:fa:f8:84:91:12:91:93:14:80:8d:b2: 65:8a:de:64:9e:c8:b5:f8:30:f8:0b:0e:67:85:a3: 61:18:6a:d1:0d:25:96:aa:45:92:89:8e:c0:60:08: 35:e0:6b:39:90:ea:26:e8:ec:7d:4e:a9:61:d3:67: 43:6e:82:0f:b2:90:b0:4a:15:94:c5:61:95:0f:5b: c3:70:5f:82:4c:21:ca:6d:16:0e:e0:ce:b3:f1:e6: 24:d4:78:36:bc:5e:5e:a1:fa:8d:29:ad:f5:e7:1c: 5e:21:9b:8e:5a:56:2e:78:2e:85:a8:10:2d:bd:30: 28:45:55:d2:df:b8:bf:0c:39:60:fd:55:fe:37:fe: 90:e5:d9:6c:40:2f:54:fa:e7:f7:4a:5d:37:7a:a2: 32:d2:d2:72:e1:cc:08:ea:fa:ca:87:71:db:ae:f0: 5a:95:9d:bb:cd:cf:90:d7:85:0d:a2:b7:5b:62:38: 7b:43:63:e6:d7:66:10:1a:89:72:54:b6:9c:4c:1d: 2b:4b:7e:c2:50:22:53:8a:47:f9:cb:65:25:21:24: 3c:2b:2b:4b:ef:44:58:ea:5d:4a:3a:86:64:a6:a0: 11:a8:d5:5e:70:ca:d9:98:9a:d0:da:b0:35:6a:f0: f5:a7:0d:80:68:1d:93:ab:05:3a:0f:ea:55:f1:28: 41:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:32:17:65:02:F2:24:51:9E:B1:10:00:81:4B:39:DF:12:4F:B9:24 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:82:bc:51:93:ac:ee:90:cb:fb:56:65:db:18:87:cf:90:ab: 18:26:b1:6b:ca:37:96:16:95:91:d9:36:a5:84:57:b4:66:86: 22:72:a2:f9:97:6c:ac:7c:35:b8:1a:68:4d:54:13:33:3f:72: c6:cf:2b:84:c5:bb:d7:13:84:d7:75:a9:dd:7b:94:e4:fe:40: b9:f2:be:09:89:d5:d4:69:b0:79:51:c8:12:a5:97:59:30:81: 62:52:1b:56:8d:4a:79:2d:cf:d9:15:48:e2:84:26:8c:1d:f8: 48:b4:39:bc:1a:8d:4b:79:7a:8b:e7:83:2b:8c:ec:5a:a4:73: 70:7b:ee:64:69:2b:fd:d8:88:97:df:f7:59:dc:dc:ed:4b:c2: 16:32:f4:91:b4:55:15:39:d1:75:87:6c:86:74:73:7f:74:1f: c9:ea:ae:eb:da:11:d0:b9:af:3b:76:1d:06:f9:83:8e:f4:83: 52:eb:17:ea:d5:1c:c9:d6:dc:ae:33:67:7e:26:46:5f:5d:8a: 66:8c:33:3e:6d:25:29:aa:b6:97:7d:7b:b9:07:8b:c8:b0:db: 5a:42:60:ca:36:b8:cd:25:3a:45:df:37:7f:3f:a2:22:d7:40: ca:d2:1b:da:34:08:59:ab:0e:54:5a:53:73:72:16:4d:98:b1: 02:12:47:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwODIyMTUzMDUzWhcNMjUwODI5MTUzMDUzWjAYMRYwFAYD VQQDEw02OGE4OGQyZC0wMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMwn+viEkRKRkxSAjbJlit5knsi1+DD4Cw5nhaNhGGrRDSWWqkWSiY7AYAg1 4Gs5kOom6Ox9Tqlh02dDboIPspCwShWUxWGVD1vDcF+CTCHKbRYO4M6z8eYk1Hg2 vF5eofqNKa315xxeIZuOWlYueC6FqBAtvTAoRVXS37i/DDlg/VX+N/6Q5dlsQC9U +uf3Sl03eqIy0tJy4cwI6vrKh3HbrvBalZ27zc+Q14UNordbYjh7Q2Pm12YQGoly VLacTB0rS37CUCJTikf5y2UlISQ8KytL70RY6l1KOoZkpqARqNVecMrZmJrQ2rA1 avD1pw2AaB2TqwU6D+pV8ShBkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEyF2UC 8iRRnrEQAIFLOd8ST7kkMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcgrxRk6zukMv7VmXbGIfPkKsYJrFryjeWFpWR2TalhFe0ZoYicqL5 l2ysfDW4GmhNVBMzP3LGzyuExbvXE4TXdande5Tk/kC58r4JidXUabB5UcgSpZdZ MIFiUhtWjUp5Lc/ZFUjihCaMHfhItDm8Go1LeXqL54MrjOxapHNwe+5kaSv92IiX 3/dZ3NztS8IWMvSRtFUVOdF1h2yGdHN/dB/J6q7r2hHQua87dh0G+YOO9INS6xfq 1RzJ1tyuM2d+JkZfXYpmjDM+bSUpqraXfXu5B4vIsNtaQmDKNrjNJTpF3zd/P6Ii 10DK0hvaNAhZqw5UWlNzchZNmLECEkdY -----END CERTIFICATE-----Generated at Sat Aug 23 19:40:27 2025 by rpki-client