$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft File: IooLm4TrYOtGFVZbAhDVR1xRiKk.mft (raw, json) Hash identifier: 1aO1NuOKiowG16nZfYf6+ONCc1GGOeFIDkFmZFusRL4= Subject key identifier: 57:96:48:07:AC:6D:83:4F:A7:51:26:2E:00:08:5B:1D:15:30:51:EE Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0B61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft Manifest number: 0B59 Signing time: Fri 22 Aug 2025 19:14:28 +0000 Manifest this update: Fri 22 Aug 2025 19:14:27 +0000 Manifest next update: Fri 29 Aug 2025 19:14:27 +0000 Files and hashes: 1: IooLm4TrYOtGFVZbAhDVR1xRiKk.crl (hash: KD1pEjn2RF7lcKtc++TAD+/U9sfHBD30o2jRTRnZUwA=) 2: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (hash: Q4J9l++n+la5Zfxccf3dc2lEQlGumKMJ7Sd1OPrz7gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2913 (0xb61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: Aug 22 19:14:27 2025 GMT Not After : Aug 29 19:14:27 2025 GMT Subject: CN=68a8c193-eccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:2e:fe:dc:23:8d:03:85:d8:5d:ce:84:40: 3f:b0:c4:fb:0b:14:f2:16:6a:82:10:48:68:c8:d7: 7c:b0:9c:f8:9e:34:8a:58:07:16:9b:ab:e9:33:b6: f7:3c:36:92:e5:ab:f4:0d:31:08:13:b8:b1:c0:78: ec:1c:46:62:00:b7:4e:d9:31:e2:ec:04:3e:8e:7e: 94:33:92:96:ea:2a:7b:d4:b3:16:c9:e1:06:ba:41: b2:8b:74:99:f4:ce:7a:8a:2f:53:ac:bc:f9:6c:6a: 5b:f2:c9:ab:a9:71:f3:5b:bd:03:8c:1c:4c:bb:5d: fe:76:40:ef:ae:ca:38:2f:de:14:6f:3f:82:c0:df: 87:42:07:2b:a6:45:63:d4:fa:f4:9e:8b:04:30:7f: 08:3a:a9:b1:ef:d2:28:01:c0:63:6e:bf:08:82:69: 83:dd:46:9c:9e:d2:9e:b6:fe:59:aa:b4:0b:5b:62: bb:63:3a:53:f8:f2:af:84:5d:a9:f1:a5:6e:26:d4: 67:d8:4b:9b:0e:99:3c:a3:4f:d6:b2:02:50:86:47: 3f:a1:01:e1:c3:9c:98:5c:04:f6:ba:bf:6b:2c:4f: 40:86:34:05:43:ff:f5:1b:28:48:77:58:16:56:1e: b1:00:11:6e:b0:54:6d:f3:f2:dd:a3:23:29:49:73: c6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:96:48:07:AC:6D:83:4F:A7:51:26:2E:00:08:5B:1D:15:30:51:EE X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:93:4a:ec:1f:4d:3b:eb:b1:b2:f8:ae:a3:17:d8:a5:20:d3: eb:d0:ad:95:d0:f5:d4:c9:b5:0c:23:e3:b6:8b:cf:aa:a3:40: f4:f1:de:c5:2a:86:44:22:51:3c:fd:87:47:ab:8e:71:22:b4: 0c:ca:21:96:e8:b1:f6:3a:d9:bc:04:08:1b:07:2f:f0:2d:69: 22:3c:4e:3b:00:ee:05:8d:7a:9c:5e:25:1b:ae:5f:76:8c:cd: 7c:b8:5b:df:92:92:81:b4:6b:63:77:97:93:5a:54:4d:a9:fe: 4f:1b:a6:3b:1b:70:3a:3e:58:49:e2:e1:e4:90:ae:14:85:65: 8a:1d:b7:ea:ff:4c:df:aa:6e:da:8f:ff:9e:6a:d2:c1:1e:d1: 7f:4d:b9:dd:14:5a:b6:e7:76:6d:ec:e7:0a:f1:d0:85:3d:4f: f0:24:1f:5e:91:18:f0:f4:9b:79:1c:8a:9e:89:68:fa:6b:7c: 6f:2d:ac:37:98:e9:5b:c6:05:62:ec:dc:da:ed:0f:f1:e7:f6: 16:4d:58:ad:4d:36:32:a6:81:fa:89:49:69:c8:70:1d:5a:43: 21:30:a8:f1:18:f9:b6:db:3b:97:2a:6f:a4:36:ae:cb:5c:e2: 6b:47:d7:05:f0:05:1a:d9:48:f7:8f:28:c5:c5:04:f2:dd:dc: ee:b2:3c:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjUwODIyMTkxNDI3WhcNMjUwODI5MTkxNDI3WjAYMRYwFAYD VQQDEw02OGE4YzE5My1lY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ssu/twjjQOF2F3OhEA/sMT7CxTyFmqCEEhoyNd8sJz4njSKWAcWm6vpM7b3 PDaS5av0DTEIE7ixwHjsHEZiALdO2THi7AQ+jn6UM5KW6ip71LMWyeEGukGyi3SZ 9M56ii9TrLz5bGpb8smrqXHzW70DjBxMu13+dkDvrso4L94Ubz+CwN+HQgcrpkVj 1Pr0nosEMH8IOqmx79IoAcBjbr8IgmmD3UacntKetv5ZqrQLW2K7YzpT+PKvhF2p 8aVuJtRn2EubDpk8o0/WsgJQhkc/oQHhw5yYXAT2ur9rLE9AhjQFQ//1GyhId1gW Vh6xABFusFRt8/LdoyMpSXPGaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeWSAes bYNPp1EmLgAIWx0VMFHuMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkUyRi9GRUIxMjI1ODNCMzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllP dEdGVlpiQWhEVlIxeFJpS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXk0rsH00767Gy+K6jF9ilINPr0K2V0PXUybUMI+O2i8+qo0D08d7F KoZEIlE8/YdHq45xIrQMyiGW6LH2Otm8BAgbBy/wLWkiPE47AO4FjXqcXiUbrl92 jM18uFvfkpKBtGtjd5eTWlRNqf5PG6Y7G3A6PlhJ4uHkkK4UhWWKHbfq/0zfqm7a j/+eatLBHtF/TbndFFq253Zt7OcK8dCFPU/wJB9ekRjw9Jt5HIqeiWj6a3xvLaw3 mOlbxgVi7Nza7Q/x5/YWTVitTTYypoH6iUlpyHAdWkMhMKjxGPm22zuXKm+kNq7L XOJrR9cF8AUa2Uj3jyjFxQTy3dzusjxT -----END CERTIFICATE-----Generated at Sat Aug 23 17:12:04 2025 by rpki-client