$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: HM0ZO/itP6974qb2sZI0ehjDuoLVR6dKw8ENguVbB3w= Subject key identifier: 11:D0:9C:61:75:88:E2:76:15:60:AA:55:4C:68:98:54:4C:6B:B4:7C Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 0412 Signing time: Sat 23 Aug 2025 00:37:59 +0000 Manifest this update: Sat 23 Aug 2025 00:37:58 +0000 Manifest next update: Sat 30 Aug 2025 00:37:58 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: lPyM8JGAVi33l096sV7nDWFAh5s1UhIvKUSq4D+Lmlg=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Aug 23 00:37:58 2025 GMT Not After : Aug 30 00:37:58 2025 GMT Subject: CN=68a90d66-a74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ab:31:d2:20:07:82:18:9c:85:33:b5:c2:ba: da:27:cf:52:b3:14:47:0f:77:d2:93:1c:9b:b6:9b: 04:c3:98:4c:f2:55:63:e7:88:42:fa:ef:71:94:cf: a1:0e:79:1e:25:79:ed:db:4d:23:a6:1a:25:ef:fb: 9c:d3:6d:d4:57:80:f8:ba:da:86:de:89:98:40:5d: 14:15:97:79:c1:e8:3b:eb:bc:cd:69:a9:39:46:ad: 1e:75:d5:2c:39:43:9d:2c:c9:f1:25:84:48:54:57: 97:b3:ef:12:1e:d6:6a:68:01:2e:a7:0e:56:2c:2b: 0c:f8:cb:76:03:e6:9a:c2:76:0d:73:e6:47:cd:b6: a1:78:2e:42:7e:cf:dc:3a:a0:2e:58:3e:e7:0c:a3: 13:58:9c:55:9b:e2:f7:47:ca:5a:c2:24:f6:24:20: 7e:c2:2b:23:08:75:a6:e0:6a:d3:1a:b8:ff:4d:52: bb:8d:7c:f1:b8:1c:96:b2:2d:10:4b:6d:be:6d:37: 42:8c:7f:f9:3b:d5:05:db:a0:e6:be:b0:61:57:a2: 5d:b8:92:7d:dc:98:e5:85:a1:79:26:a1:1c:a2:f1: 57:1b:53:f8:05:8e:8f:bb:34:db:3e:be:9f:76:c3: cd:b3:53:40:3d:b6:7f:f5:56:27:9e:c5:6b:43:3f: 78:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D0:9C:61:75:88:E2:76:15:60:AA:55:4C:68:98:54:4C:6B:B4:7C X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c7:07:9c:aa:0f:16:36:4a:f1:ab:a6:c5:db:7d:17:16:f8: 14:43:45:65:6c:b6:7b:58:36:ed:a4:cb:e0:c1:e9:0d:5f:4b: d8:41:65:8e:1d:c1:1f:4a:4a:4a:12:38:41:ff:fb:12:7d:dc: da:31:ea:90:c1:8b:af:11:e2:1b:cf:7c:c2:d2:a2:9f:ed:30: cb:01:af:0f:bc:d7:12:05:20:69:5f:6f:c9:77:b2:51:b3:37: 03:bd:8d:10:87:1a:45:3c:d9:37:25:44:43:b4:31:ec:c9:6a: 88:43:d6:5d:bf:b7:6a:ee:16:50:ff:3d:34:bf:7c:64:b1:06: 26:5f:0d:52:ee:11:48:2b:19:18:51:8b:f3:15:47:b0:44:de: c1:73:2a:4e:4b:4a:18:38:a0:fc:4b:a6:38:50:6b:9f:92:f3: f8:77:8c:d8:31:35:d9:50:e8:6b:d2:85:6e:ec:49:45:f7:ad: 56:78:fa:8a:4f:74:45:e3:8d:50:dd:b1:45:22:96:f5:a9:19: dd:02:b7:37:bc:0a:ba:72:c2:29:ff:1a:8b:c5:2d:02:d9:e6: 12:2b:f3:47:5d:d0:65:b8:07:db:08:91:37:21:fb:1c:7b:90: f0:ef:1e:30:0d:4f:df:37:78:2b:99:7c:7e:56:60:15:d2:8b: 46:bb:c5:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwODIzMDAzNzU4WhcNMjUwODMwMDAzNzU4WjAYMRYwFAYD VQQDEw02OGE5MGQ2Ni1hNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6sx0iAHghichTO1wrraJ89SsxRHD3fSkxybtpsEw5hM8lVj54hC+u9xlM+h DnkeJXnt200jphol7/uc023UV4D4utqG3omYQF0UFZd5weg767zNaak5Rq0eddUs OUOdLMnxJYRIVFeXs+8SHtZqaAEupw5WLCsM+Mt2A+aawnYNc+ZHzbaheC5Cfs/c OqAuWD7nDKMTWJxVm+L3R8pawiT2JCB+wisjCHWm4GrTGrj/TVK7jXzxuByWsi0Q S22+bTdCjH/5O9UF26DmvrBhV6JduJJ93JjlhaF5JqEcovFXG1P4BY6PuzTbPr6f dsPNs1NAPbZ/9VYnnsVrQz94CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHQnGF1 iOJ2FWCqVUxomFRMa7R8MB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjxwecqg8WNkrxq6bF230XFvgUQ0VlbLZ7WDbtpMvgwekNX0vYQWWO HcEfSkpKEjhB//sSfdzaMeqQwYuvEeIbz3zC0qKf7TDLAa8PvNcSBSBpX2/Jd7JR szcDvY0QhxpFPNk3JURDtDHsyWqIQ9Zdv7dq7hZQ/z00v3xksQYmXw1S7hFIKxkY UYvzFUewRN7BcypOS0oYOKD8S6Y4UGufkvP4d4zYMTXZUOhr0oVu7ElF961WePqK T3RF441Q3bFFIpb1qRndArc3vAq6csIp/xqLxS0C2eYSK/NHXdBluAfbCJE3Ifsc e5Dw7x4wDU/fN3grmXx+VmAV0otGu8W3 -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:07 2025 by rpki-client