$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: Mo0IWGYwsCJh5BbMiJ1um/vKkHHiIuHc7l4XuFiWGWQ= Subject key identifier: 49:B7:A5:A8:EC:F6:3B:3D:C4:94:3C:11:35:DE:DA:FF:C8:0E:56:FF Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 34C4 Signing time: Fri 22 Aug 2025 14:35:51 +0000 Manifest this update: Fri 22 Aug 2025 14:35:51 +0000 Manifest next update: Fri 29 Aug 2025 14:35:51 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 3lWczL/Fx4drf/2yyMzgNLGdVSbEFEcuARefX1fR7NY=) 2: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13528 (0x34d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Aug 22 14:35:51 2025 GMT Not After : Aug 29 14:35:51 2025 GMT Subject: CN=68a88047-223d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:aa:c7:f9:88:84:5b:e4:ca:9c:ab:a0:07: 1b:5f:f6:4f:0b:5f:37:ea:d4:4b:9c:78:0c:95:9b: d1:29:4a:0b:5a:fa:64:a2:c3:5b:a9:02:5b:25:11: 89:6a:8b:25:c5:1e:ea:06:1f:89:aa:92:85:d5:f3: 59:76:61:21:bf:2d:94:19:06:45:1b:62:6a:cf:cd: 68:8a:4b:c5:0f:41:fe:17:6c:16:bb:d1:a9:41:30: 82:00:30:8c:7d:f0:96:67:2e:33:4a:bd:78:54:f0: 39:cf:14:57:ef:5e:24:e1:df:e6:66:5b:b6:b6:67: b7:c3:54:50:bb:78:d1:8e:04:ed:77:fd:8d:5f:67: ea:1b:1d:37:d8:09:ae:d1:c2:dc:48:59:04:57:06: 31:b3:c9:40:9a:d8:c3:b3:57:41:ff:be:9d:09:08: d2:8b:47:a7:19:53:e4:0b:5b:5f:ea:ee:b4:78:6e: 7d:d6:2c:6d:86:de:89:ce:0b:16:04:22:ee:b2:db: fb:58:78:c2:82:aa:c8:ef:9f:1c:3f:5a:8e:b4:21: 4c:6b:94:1b:45:0e:33:67:bf:26:cc:28:ef:27:a3: cc:74:08:c7:7b:50:51:15:eb:6b:26:04:8d:23:c2: 20:86:07:75:5a:23:03:01:20:f8:94:ea:9e:4c:1b: 80:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B7:A5:A8:EC:F6:3B:3D:C4:94:3C:11:35:DE:DA:FF:C8:0E:56:FF X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:5b:d2:1e:ca:07:39:39:e7:d3:5f:52:9e:9c:e6:6f:e1:1a: c1:79:74:9e:b6:68:14:75:28:59:10:cc:58:86:3e:55:8d:c6: 2e:0d:d2:f7:64:43:0a:09:dd:18:50:60:34:e4:c3:9b:00:ba: ef:bd:b4:66:49:f9:78:be:92:87:00:7c:7f:3f:9d:6f:d3:ef: 5c:df:15:09:17:79:43:0f:af:2b:b4:e0:a3:4a:05:1b:f3:4f: 95:56:5a:5f:23:8d:6e:42:62:0b:fa:30:6a:a6:c8:25:d6:ca: db:d8:6f:09:1e:34:f9:aa:b8:d3:08:02:eb:7d:e5:77:5e:2c: 24:45:bc:f3:a6:7e:d9:b3:ad:bb:59:70:a8:71:00:06:09:1b: 0e:ce:72:8f:c8:b5:0c:a4:f3:2a:dc:f5:c2:2a:21:cd:fd:f7: cb:86:16:35:78:da:c6:8c:02:d3:2e:ca:4c:9e:39:5d:7b:99: 44:19:05:6f:2b:43:3e:57:db:bc:99:b1:2d:f2:80:41:ab:e8: d8:cc:6d:c4:cb:9b:b2:8c:ad:25:52:59:b4:ef:7d:2e:95:7b: 24:fd:4a:0e:b9:77:4f:24:1e:ac:df:b5:10:83:37:8f:4d:a6: 39:1c:6c:94:51:36:9a:56:14:fd:82:cc:3c:a0:32:c1:18:61: 02:7e:a1:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwODIyMTQzNTUxWhcNMjUwODI5MTQzNTUxWjAYMRYwFAYD VQQDEw02OGE4ODA0Ny0yMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWGqx/mIhFvkypyroAcbX/ZPC1836tRLnHgMlZvRKUoLWvpkosNbqQJbJRGJ aoslxR7qBh+JqpKF1fNZdmEhvy2UGQZFG2Jqz81oikvFD0H+F2wWu9GpQTCCADCM ffCWZy4zSr14VPA5zxRX714k4d/mZlu2tme3w1RQu3jRjgTtd/2NX2fqGx032Amu 0cLcSFkEVwYxs8lAmtjDs1dB/76dCQjSi0enGVPkC1tf6u60eG591ixtht6JzgsW BCLustv7WHjCgqrI758cP1qOtCFMa5QbRQ4zZ78mzCjvJ6PMdAjHe1BRFetrJgSN I8Ighgd1WiMDASD4lOqeTBuAZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEm3pajs 9js9xJQ8ETXe2v/IDlb/MB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRW9Ieygc5OefTX1KenOZv4RrBeXSetmgUdShZEMxYhj5VjcYuDdL3 ZEMKCd0YUGA05MObALrvvbRmSfl4vpKHAHx/P51v0+9c3xUJF3lDD68rtOCjSgUb 80+VVlpfI41uQmIL+jBqpsgl1srb2G8JHjT5qrjTCALrfeV3XiwkRbzzpn7Zs627 WXCocQAGCRsOznKPyLUMpPMq3PXCKiHN/ffLhhY1eNrGjALTLspMnjlde5lEGQVv K0M+V9u8mbEt8oBBq+jYzG3Ey5uyjK0lUlm0730ulXsk/UoOuXdPJB6s37UQgzeP TaY5HGyUUTaaVhT9gsw8oDLBGGECfqE+ -----END CERTIFICATE-----Generated at Sun Aug 24 03:03:29 2025 by rpki-client