$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: jurc4WYmWfljZmoAZxVSKfCeQetLNpU+RxL3rXo/daE= Subject key identifier: B8:73:23:33:27:3B:6D:D3:94:44:CD:83:FB:42:5E:D6:D1:B3:F1:65 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 014F Signing time: Sat 23 Aug 2025 04:20:01 +0000 Manifest this update: Sat 23 Aug 2025 04:20:01 +0000 Manifest next update: Sat 30 Aug 2025 04:20:01 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: YLkVagIsMzuqWo0HflOYdT5+vVvyFwRKBUtcH99LQGs=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Aug 23 04:20:01 2025 GMT Not After : Aug 30 04:20:01 2025 GMT Subject: CN=68a94171-c4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8b:34:2c:92:47:c9:14:8b:78:e2:94:cc:b1: a1:a1:11:4e:d1:49:2f:6b:f3:5a:c2:9f:0d:91:f9: 77:a0:ad:df:c4:0c:77:51:04:1b:b4:f6:e7:54:09: 73:da:34:bd:9f:60:c0:d4:7d:74:0f:c4:42:16:85: 74:7a:15:4f:9f:93:39:db:38:a2:07:f9:a7:c1:8b: 79:e0:dd:cf:59:cc:46:42:69:ad:73:10:3f:78:fa: 15:ee:a5:05:87:38:87:28:6f:22:17:72:27:c4:62: be:da:38:61:23:3d:a9:ff:58:9d:eb:a2:99:25:ca: 40:de:e3:92:d6:d7:75:d4:c4:59:ca:0b:c2:12:69: 3f:1e:62:6d:8d:20:63:d0:67:f1:97:d5:e7:e4:2e: a2:2e:80:bd:7b:a3:87:83:e2:f9:ba:46:39:7f:7c: 46:08:2e:bc:4a:23:7b:c9:a0:2e:6c:d9:12:f2:ee: 09:6c:3a:42:14:fb:9e:0f:9d:a7:80:df:55:53:3c: b3:e9:04:4d:57:7f:aa:bf:2d:cc:60:95:c2:89:7c: aa:e4:60:b1:db:e9:7c:3d:67:44:33:ae:79:02:86: 6d:71:3e:f1:6e:8b:95:a4:38:ca:76:81:ec:96:d8: a2:2d:15:22:b1:bb:88:e1:df:47:94:11:22:44:7c: 80:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:73:23:33:27:3B:6D:D3:94:44:CD:83:FB:42:5E:D6:D1:B3:F1:65 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:9d:74:51:b1:33:2e:34:21:73:f9:48:89:87:b0:fa:d7:00: 50:9e:d9:5f:b9:7f:97:31:d4:27:93:eb:d1:d4:e0:57:29:fb: 32:f1:68:7f:23:0a:ce:ac:cf:56:59:fc:2c:fb:18:10:c5:61: fd:39:1f:bd:cd:b9:69:5b:fc:d3:8d:20:96:fa:d5:9b:bd:49: 6e:5e:83:8f:fa:e8:f2:77:8b:92:d9:46:ff:6c:1d:ed:d6:88: da:6c:95:5c:3a:94:7d:dd:e8:6f:7e:aa:ed:56:1c:00:76:6a: a9:04:56:89:aa:1f:05:b3:cf:7b:52:8f:71:51:8e:15:59:07: aa:c8:a2:e9:51:92:34:63:1b:0a:4e:3d:8c:4f:72:4e:02:45: 68:ee:b1:6b:41:54:dd:bf:c4:c5:af:93:00:d4:22:18:97:bb: a1:38:9f:da:4c:29:a3:73:78:bf:87:31:57:70:38:52:2c:6d: 3d:3e:08:90:fe:91:40:e2:73:7d:a4:07:d0:89:a3:23:a5:93: 11:4b:ac:38:f0:a3:83:93:3d:75:8b:3b:49:22:5f:66:cd:65: fd:c3:59:8c:e3:e2:3e:d3:13:e5:89:5e:61:11:4a:e0:03:bd: cf:7a:63:18:80:fd:d1:a4:ee:b8:f3:89:95:45:ff:6f:8d:ff: a1:db:97:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUwODIzMDQyMDAxWhcNMjUwODMwMDQyMDAxWjAYMRYwFAYD VQQDEw02OGE5NDE3MS1jNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtos0LJJHyRSLeOKUzLGhoRFO0Ukva/Nawp8Nkfl3oK3fxAx3UQQbtPbnVAlz 2jS9n2DA1H10D8RCFoV0ehVPn5M52ziiB/mnwYt54N3PWcxGQmmtcxA/ePoV7qUF hziHKG8iF3InxGK+2jhhIz2p/1id66KZJcpA3uOS1td11MRZygvCEmk/HmJtjSBj 0Gfxl9Xn5C6iLoC9e6OHg+L5ukY5f3xGCC68SiN7yaAubNkS8u4JbDpCFPueD52n gN9VUzyz6QRNV3+qvy3MYJXCiXyq5GCx2+l8PWdEM655AoZtcT7xbouVpDjKdoHs ltiiLRUisbuI4d9HlBEiRHyAvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhzIzMn O23TlETNg/tCXtbRs/FlMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6nXRRsTMuNCFz+UiJh7D61wBQntlfuX+XMdQnk+vR1OBXKfsy8Wh/ IwrOrM9WWfws+xgQxWH9OR+9zblpW/zTjSCW+tWbvUluXoOP+ujyd4uS2Ub/bB3t 1ojabJVcOpR93ehvfqrtVhwAdmqpBFaJqh8Fs897Uo9xUY4VWQeqyKLpUZI0YxsK Tj2MT3JOAkVo7rFrQVTdv8TFr5MA1CIYl7uhOJ/aTCmjc3i/hzFXcDhSLG09PgiQ /pFA4nN9pAfQiaMjpZMRS6w48KODkz11iztJIl9mzWX9w1mM4+I+0xPliV5hEUrg A73PemMYgP3RpO6484mVRf9vjf+h25dY -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:54 2025 by rpki-client