$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: B8mSnldn5ub5AL7lH1YO9Ayn1E0im+Slw3AtYG896HE= Subject key identifier: D9:AD:61:F8:C4:D6:06:8E:F1:B2:2C:6C:6B:F9:56:37:1A:51:FB:5E Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1CF5 Signing time: Fri 22 Aug 2025 16:15:38 +0000 Manifest this update: Fri 22 Aug 2025 16:15:37 +0000 Manifest next update: Fri 29 Aug 2025 16:15:37 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: Fs9v/LBOioo1AtyJbF5ZOqhXBlzkiR9tXyDiUXOmj/4=) 2: 5AF6DD08FAE611EF88903035C4F9AE02.roa (hash: KNe37v08jiMTHI1bvjZ6KE/Vcj+r6uVPwkyGH49Kddo=) 3: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: ibfU8LeRFc29BiPbfaOtCj5JQq97ZqfQqw4BbP5mq+Q=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: DWVN0wHi6QUPs6snWtASAJaDoQXZR8E1QW/cZGA9SNI=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: EyyP05+w3I6zJfg1bK7YEVwaO6aHmtM/Fo2uP4RPYlc=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: d3vLmOzYTOa3NHb3yIWalGAnlNbBjiF+dtQHwr43NhM=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: Rkz8G55vowkF7kydrCN5pxGVCB20c+IGP3x592UMfSw=) 8: 3EF78CAA9DF911EF971AD149C4F9AE02.roa (hash: JvMqjKLoQToshoNSeubhlEpU1GQez85G+xjPh2YQQpU=) 9: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: mX5h1pe0z8G3BqKuVtzq+wiHKMx8BkOvpXEXAJFLe90=) 10: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: UwXH1XygsxxIwL/5ppPhVWdo9CvnJPBBvjk5qqmH4lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7531 (0x1d6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Aug 22 16:15:37 2025 GMT Not After : Aug 29 16:15:37 2025 GMT Subject: CN=68a897aa-67bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:8d:07:99:46:ed:b6:f0:77:d5:f0:87:76: c1:1c:22:f1:af:83:c3:de:29:4c:9f:be:76:f3:da: 8b:e4:11:8c:6a:6e:d2:85:0a:0c:89:8d:0d:88:29: cd:c9:f4:25:89:66:69:19:61:67:9e:cf:6e:57:73: d4:7c:2c:ee:d3:fa:6a:2d:4a:d7:71:b8:32:b2:a8: f6:9a:d1:22:33:64:91:93:5e:60:55:1e:ab:e3:d8: d1:c7:d1:4d:e6:39:53:13:a9:45:6a:d9:cb:10:0c: a6:b6:96:ca:92:81:92:4c:40:b3:cc:ca:78:52:78: f9:fa:a4:3c:d4:a4:cb:52:61:83:83:b8:db:df:53: 27:d1:45:9f:22:dd:9b:70:f1:df:55:9e:23:11:6d: f0:91:f6:5c:ee:e4:ad:ff:95:ac:d3:68:e3:1e:b7: 90:b8:6b:17:c8:7f:6c:81:06:41:c6:91:7a:de:22: 57:26:df:8d:f3:4e:70:6a:63:91:93:7a:ce:8d:63: 6e:a7:3b:8d:5e:73:ff:d1:48:73:62:39:de:ea:95: 38:b5:bc:39:a7:39:25:f7:79:0b:07:8e:e0:69:ae: e3:a3:7a:4f:46:88:e8:04:96:9d:be:86:35:d3:22: 3e:3c:99:d8:97:01:ef:c2:5c:8c:4f:da:8c:b5:1e: 59:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AD:61:F8:C4:D6:06:8E:F1:B2:2C:6C:6B:F9:56:37:1A:51:FB:5E X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ac:7b:30:1f:00:ea:06:1e:7e:0d:39:77:79:37:5b:69:16: 5f:19:e3:ec:2a:88:c4:7d:eb:4f:d0:a5:9f:50:ec:65:77:b8: ab:8e:5f:1c:fc:08:39:f0:da:4c:0e:4d:d0:61:e5:40:47:52: 62:ad:f5:0d:48:ce:3b:e2:95:0a:0b:c6:e0:cd:04:2e:17:7f: f5:8f:ce:02:0e:7e:2b:54:77:f1:4a:5a:b2:0a:cc:08:24:fb: 1a:9e:d2:0d:e5:8d:a2:2d:8f:1d:3a:13:61:ab:35:6d:96:47: 2b:1f:2b:16:40:40:b8:34:37:19:f4:cf:ca:4e:cc:30:5a:76: 1b:74:01:d0:67:93:3a:e8:d4:fb:e7:8c:28:71:de:4e:84:37: 5b:42:47:1e:ed:b9:f9:17:c6:9f:59:de:4d:75:8e:47:94:65: 01:48:c8:07:53:f3:62:c9:63:39:52:d3:e5:2c:36:d5:8d:5f: 9d:89:78:5b:08:d1:bc:d9:f6:47:a5:d5:4f:4b:20:18:c1:9a: eb:3f:bc:e4:1b:ee:07:f2:ed:a8:58:dd:90:21:78:88:5f:b1: fd:a9:88:5c:89:22:72:24:26:e9:d0:35:5a:4c:71:7b:34:34: 9b:e4:47:91:0a:e6:03:6f:bb:68:30:61:af:5f:68:70:92:6a: fa:43:b4:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwODIyMTYxNTM3WhcNMjUwODI5MTYxNTM3WjAYMRYwFAYD VQQDEw02OGE4OTdhYS02N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1U6NB5lG7bbwd9Xwh3bBHCLxr4PD3ilMn75289qL5BGMam7ShQoMiY0NiCnN yfQliWZpGWFnns9uV3PUfCzu0/pqLUrXcbgysqj2mtEiM2SRk15gVR6r49jRx9FN 5jlTE6lFatnLEAymtpbKkoGSTECzzMp4Unj5+qQ81KTLUmGDg7jb31Mn0UWfIt2b cPHfVZ4jEW3wkfZc7uSt/5Ws02jjHreQuGsXyH9sgQZBxpF63iJXJt+N805wamOR k3rOjWNupzuNXnP/0UhzYjne6pU4tbw5pzkl93kLB47gaa7jo3pPRojoBJadvoY1 0yI+PJnYlwHvwlyMT9qMtR5ZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmtYfjE 1gaO8bIsbGv5VjcaUfteMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzrHswHwDqBh5+DTl3eTdbaRZfGePsKojEfetP0KWfUOxld7irjl8c /Ag58NpMDk3QYeVAR1JirfUNSM474pUKC8bgzQQuF3/1j84CDn4rVHfxSlqyCswI JPsantIN5Y2iLY8dOhNhqzVtlkcrHysWQEC4NDcZ9M/KTswwWnYbdAHQZ5M66NT7 54wocd5OhDdbQkce7bn5F8afWd5NdY5HlGUBSMgHU/NiyWM5UtPlLDbVjV+diXhb CNG82fZHpdVPSyAYwZrrP7zkG+4H8u2oWN2QIXiIX7H9qYhciSJyJCbp0DVaTHF7 NDSb5EeRCuYDb7toMGGvX2hwkmr6Q7Tz -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:02 2025 by rpki-client