$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: ibck3Z7CRdddot8bfZa7tCqwHxDeAi0ygajBNj4ziH8= Subject key identifier: 51:83:CD:0C:09:BB:C6:1C:0E:44:4F:DE:BF:99:48:11:21:94:C5:D2 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04D7 Signing time: Sat 23 Aug 2025 00:00:29 +0000 Manifest this update: Sat 23 Aug 2025 00:00:28 +0000 Manifest next update: Sat 30 Aug 2025 00:00:28 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: Ryxdg7AUFDuEK0jWqjtXmYFIA0zPSt3H1ve1jy0Xehc=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Aug 23 00:00:28 2025 GMT Not After : Aug 30 00:00:28 2025 GMT Subject: CN=68a9049c-defb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:e3:9e:e1:d5:9d:b8:20:e2:2b:81:87:5c: 63:3b:ae:c8:3b:4a:d9:4c:a6:28:48:00:12:dc:99: 8a:95:06:31:a9:86:c6:38:be:0a:15:ad:19:90:91: b6:74:27:b8:e3:5e:80:6d:b5:db:e4:54:06:31:c8: ab:5a:3c:bc:60:37:7a:61:4b:ac:60:f4:f2:8a:51: 30:fb:c5:c6:d9:b0:de:e8:a2:10:81:eb:8e:48:37: 08:e5:f8:e8:eb:b8:46:bf:65:1f:85:be:50:de:c9: b0:7b:db:8b:e1:35:8f:67:39:c2:2f:b6:77:e0:df: 11:ee:95:ec:13:dc:40:de:45:53:2c:78:d8:69:24: 26:50:69:94:21:19:c0:9c:ee:cd:35:6c:15:b3:7f: 02:0b:7a:f7:89:a1:73:11:13:25:60:a5:c3:78:10: 86:1a:9c:44:b2:65:29:34:a8:5b:31:15:26:e9:f3: 2e:1f:c2:89:f7:a6:30:1f:dd:b8:6a:7c:a3:ba:41: 32:4c:10:1a:bc:3d:05:aa:b6:41:7d:d1:54:10:36: 64:48:25:52:8a:b1:12:68:21:f6:6d:37:de:a6:d7: b5:90:b3:9f:f1:69:71:1c:1b:45:25:97:78:7a:04: b8:28:9f:5e:d6:cd:4c:b4:52:dc:58:0b:03:2f:30: 23:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:83:CD:0C:09:BB:C6:1C:0E:44:4F:DE:BF:99:48:11:21:94:C5:D2 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:de:c2:9e:3a:f4:07:ec:6a:10:dd:73:22:8b:43:e7:2b:6f: 1f:ca:7a:ea:54:1c:ae:53:11:c9:a9:80:07:9c:c9:68:b5:32: 4f:c9:f4:c3:e1:71:00:45:01:49:57:f3:78:89:f2:0d:ad:56: 61:79:11:97:e8:cb:a4:9c:ff:ec:40:1f:5b:cf:63:56:19:b1: cf:1c:d1:13:d1:26:0b:c6:03:0b:bb:c0:cf:18:cc:2e:fe:80: a5:9b:7c:e1:33:bd:af:2e:f6:95:be:7d:68:cf:9e:df:ca:39: 0a:86:07:a5:c2:ce:17:04:ea:46:86:64:f7:69:30:38:d9:00: 7a:15:a8:2b:05:b4:3e:12:5a:c8:47:c2:88:a2:19:52:73:52: 58:2f:d6:e4:b9:83:e0:ff:f3:a7:c0:e4:62:6b:04:37:75:bb: dd:f9:e5:de:e8:5e:b9:30:c0:b9:de:6b:ad:f0:4f:73:60:38: 02:72:39:5c:b3:8c:0a:9f:2d:3f:94:e3:20:fa:2a:57:f1:0f: 60:f7:e0:a2:d2:5c:00:80:22:83:8d:df:1c:ea:7f:f5:8c:21: 85:97:a4:72:e6:d9:05:bd:0b:5f:b0:d6:3d:9d:e6:3b:ad:df: da:29:e1:62:3f:a6:f5:fe:82:b3:2e:40:a1:d6:78:cc:5d:c1: cf:bb:29:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwODIzMDAwMDI4WhcNMjUwODMwMDAwMDI4WjAYMRYwFAYD VQQDEw02OGE5MDQ5Yy1kZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq93jnuHVnbgg4iuBh1xjO67IO0rZTKYoSAAS3JmKlQYxqYbGOL4KFa0ZkJG2 dCe4416AbbXb5FQGMcirWjy8YDd6YUusYPTyilEw+8XG2bDe6KIQgeuOSDcI5fjo 67hGv2Ufhb5Q3smwe9uL4TWPZznCL7Z34N8R7pXsE9xA3kVTLHjYaSQmUGmUIRnA nO7NNWwVs38CC3r3iaFzERMlYKXDeBCGGpxEsmUpNKhbMRUm6fMuH8KJ96YwH924 anyjukEyTBAavD0FqrZBfdFUEDZkSCVSirESaCH2bTfepte1kLOf8WlxHBtFJZd4 egS4KJ9e1s1MtFLcWAsDLzAjYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGDzQwJ u8YcDkRP3r+ZSBEhlMXSMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS3sKeOvQH7GoQ3XMii0PnK28fynrqVByuUxHJqYAHnMlotTJPyfTD 4XEARQFJV/N4ifINrVZheRGX6MuknP/sQB9bz2NWGbHPHNET0SYLxgMLu8DPGMwu /oClm3zhM72vLvaVvn1oz57fyjkKhgelws4XBOpGhmT3aTA42QB6FagrBbQ+ElrI R8KIohlSc1JYL9bkuYPg//OnwORiawQ3dbvd+eXe6F65MMC53mut8E9zYDgCcjlc s4wKny0/lOMg+ipX8Q9g9+Ci0lwAgCKDjd8c6n/1jCGFl6Ry5tkFvQtfsNY9neY7 rd/aKeFiP6b1/oKzLkCh1njMXcHPuylY -----END CERTIFICATE-----Generated at Sat Aug 23 20:28:20 2025 by rpki-client