$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: b0DdSg0P6VDmSckFHGc4D2DcnQlI0v0XphPnVGAK77c= Subject key identifier: 56:44:83:FB:62:5D:30:55:3A:2B:5D:B7:6B:51:64:BC:C0:19:F2:FB Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0AEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0AE6 Signing time: Fri 22 Aug 2025 19:31:42 +0000 Manifest this update: Fri 22 Aug 2025 19:31:42 +0000 Manifest next update: Fri 29 Aug 2025 19:31:42 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: JuvHIKGX885Ulxl8rwV92YDRkzmxplWEkUdePoyQlYk=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2799 (0xaef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Aug 22 19:31:42 2025 GMT Not After : Aug 29 19:31:42 2025 GMT Subject: CN=68a8c59e-0035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:9f:53:44:47:92:b4:26:0d:b7:cd:ff:b8: d6:ae:fd:e6:c8:5d:54:03:92:31:21:e0:90:f8:34: 53:de:72:ea:04:5e:fc:26:c2:27:db:5d:c7:36:4c: 6f:1e:22:c5:9b:c5:cd:df:9d:20:a4:f8:6a:27:c4: 99:92:5a:b4:15:fb:a5:ad:ee:b5:dc:d9:19:99:62: f6:5f:10:56:b1:97:18:dd:e3:05:fe:4a:0e:9f:3b: ba:da:b4:68:74:5b:3b:e0:c7:40:22:45:e6:12:33: 25:aa:d2:72:f4:dc:af:b8:c1:62:f8:1c:65:77:6c: 75:4e:6d:29:03:e3:0a:80:11:fd:f6:2e:0e:be:39: 9f:34:64:3e:0d:ef:78:2e:0c:6e:05:d2:ab:89:27: 9b:32:2c:43:37:9f:a8:fb:fd:03:a5:70:4c:e3:9c: 0e:bb:28:52:4b:d9:57:2c:04:a8:db:23:f9:94:f4: 35:ff:ba:67:80:c9:07:80:06:d3:6c:27:eb:0e:73: 74:e0:43:54:5a:be:25:0f:c7:b2:e4:d9:8c:22:16: 5b:b9:90:2a:a0:94:3c:d0:c9:eb:11:a1:8f:26:d5: 84:77:53:43:82:e7:68:20:93:72:02:e5:df:4e:94: cc:59:42:fe:ca:21:ee:d8:61:81:1d:6b:01:d4:85: 1a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:44:83:FB:62:5D:30:55:3A:2B:5D:B7:6B:51:64:BC:C0:19:F2:FB X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e8:cd:6d:52:e9:77:f8:4d:9b:76:6d:6d:a4:31:c1:0d:91: 6d:6d:62:f3:80:a2:15:5b:88:90:31:b2:78:b5:d7:b6:e1:eb: f9:48:83:85:31:06:10:c1:7c:4b:5c:32:25:cd:76:3f:67:24: 68:e7:c6:cf:2d:68:60:ae:cb:dc:85:a7:a3:21:c6:50:22:c4: 31:4b:4f:0d:88:57:d0:32:33:93:96:c3:6b:00:2c:c5:38:8a: 73:2a:c2:cf:47:c5:45:73:54:20:33:8b:97:dd:04:e5:64:4e: f2:00:65:1c:86:92:1b:de:af:43:d8:e1:d3:02:72:9f:ae:ab: 9a:d9:11:52:a5:72:3e:86:b7:69:19:3d:bc:ad:d9:36:9a:ef: 53:7e:ec:db:1d:ca:e6:9e:a9:1e:c5:44:2e:e9:d3:93:a9:31: de:e0:ec:c0:17:94:8a:c5:df:29:99:9a:da:8c:fc:de:85:e2: 01:b1:7c:78:74:65:ec:dd:9e:55:95:c5:0d:4d:f1:27:c9:cb: 78:41:11:58:b6:8a:c8:da:50:96:80:e1:dd:17:a9:7b:1b:71: 50:e8:af:e8:d6:d7:f3:85:28:22:be:d2:3e:2e:b1:bc:54:9d: 3c:f3:95:e6:b4:54:8e:b9:5e:53:0c:e1:93:05:8f:48:c4:74: 7a:cf:2c:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwODIyMTkzMTQyWhcNMjUwODI5MTkzMTQyWjAYMRYwFAYD VQQDEw02OGE4YzU5ZS0wMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0mfU0RHkrQmDbfN/7jWrv3myF1UA5IxIeCQ+DRT3nLqBF78JsIn213HNkxv HiLFm8XN350gpPhqJ8SZklq0Ffulre613NkZmWL2XxBWsZcY3eMF/koOnzu62rRo dFs74MdAIkXmEjMlqtJy9NyvuMFi+Bxld2x1Tm0pA+MKgBH99i4OvjmfNGQ+De94 LgxuBdKriSebMixDN5+o+/0DpXBM45wOuyhSS9lXLASo2yP5lPQ1/7pngMkHgAbT bCfrDnN04ENUWr4lD8ey5NmMIhZbuZAqoJQ80MnrEaGPJtWEd1NDgudoIJNyAuXf TpTMWUL+yiHu2GGBHWsB1IUaFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZEg/ti XTBVOitdt2tRZLzAGfL7MB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA76M1tUul3+E2bdm1tpDHBDZFtbWLzgKIVW4iQMbJ4tde24ev5SIOF MQYQwXxLXDIlzXY/ZyRo58bPLWhgrsvchaejIcZQIsQxS08NiFfQMjOTlsNrACzF OIpzKsLPR8VFc1QgM4uX3QTlZE7yAGUchpIb3q9D2OHTAnKfrqua2RFSpXI+hrdp GT28rdk2mu9TfuzbHcrmnqkexUQu6dOTqTHe4OzAF5SKxd8pmZrajPzeheIBsXx4 dGXs3Z5VlcUNTfEnyct4QRFYtorI2lCWgOHdF6l7G3FQ6K/o1tfzhSgivtI+LrG8 VJ0885XmtFSOuV5TDOGTBY9IxHR6zyzP -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:11 2025 by rpki-client