$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: EHFdbeKKUWpWXhDEdj5+e9Nktbea0ULQHruzJ9kBjrQ= Subject key identifier: 31:B3:1A:BE:F5:A4:6E:75:E0:6E:C8:87:9E:2B:C0:8D:15:B6:DE:79 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07B7 Signing time: Fri 22 Aug 2025 21:24:08 +0000 Manifest this update: Fri 22 Aug 2025 21:24:08 +0000 Manifest next update: Fri 29 Aug 2025 21:24:08 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: YFl1f+nnHQOhvgGYdHO83GIWWyKB0/zNsf0dHInr+7g=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Aug 22 21:24:08 2025 GMT Not After : Aug 29 21:24:08 2025 GMT Subject: CN=68a8dff8-6b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ee:9a:d6:ff:d1:a7:2a:b5:48:aa:91:a8:35: fc:df:1e:df:32:a1:39:62:58:0c:0d:8e:4b:ea:fb: 44:3e:6d:1f:59:fd:40:5f:cf:db:fb:34:5c:81:3c: 3b:aa:cd:2f:ab:01:5f:13:90:37:9f:db:8a:1d:a8: 37:dd:b4:29:ff:1a:7a:d2:4f:46:75:53:19:c7:9b: af:8b:e8:ef:8d:59:42:8a:16:26:d9:28:8c:8f:92: aa:a5:2c:4d:aa:58:34:ef:9b:b1:d4:11:ae:6b:ab: 21:7f:f2:3f:8b:25:c2:ce:4a:ab:36:b0:cb:3f:a6: c0:58:39:ee:d3:24:b4:fe:04:95:a7:d6:b9:28:f2: 80:9e:ca:f6:1f:ce:2b:01:f0:ff:d4:65:bb:7a:43: ff:7c:c3:da:0b:0c:53:b6:a6:9e:5e:27:15:88:ba: 30:d0:9c:e2:b6:53:e7:00:fc:a3:f2:17:7a:e3:09: 1e:4f:09:cf:f1:f6:95:d0:d9:f5:a3:78:43:3f:7a: 06:15:00:72:2b:00:ad:69:f6:30:4e:91:fe:fb:5c: ce:c4:79:74:9d:83:7c:5d:97:c2:54:c7:55:76:bb: 5a:7c:0b:1f:7f:aa:76:70:73:00:4c:01:7e:cf:12: 0a:c7:d2:6f:ad:5b:45:4a:07:aa:ec:d2:5a:74:e4: f8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B3:1A:BE:F5:A4:6E:75:E0:6E:C8:87:9E:2B:C0:8D:15:B6:DE:79 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:4a:1c:6b:5a:77:29:7f:c7:34:44:bf:b6:d7:5e:ce:a7:88: da:f6:27:63:5a:3a:57:01:d9:1d:2d:ce:be:a5:12:56:25:bd: c8:6d:bf:43:d6:3a:75:35:0d:a6:4b:8c:c6:87:f8:dd:aa:aa: c3:bf:62:31:e4:28:a1:41:80:ee:2c:12:39:1b:b5:8a:0c:b9: 8a:0c:dc:1e:26:11:da:af:9d:bc:4c:7b:aa:90:64:c0:b0:76: b6:dd:22:e7:fe:84:d4:24:b7:b8:79:7b:06:14:f4:e2:47:94: b4:dc:63:39:96:e5:ea:52:d0:b9:f5:41:0b:b6:c6:4b:a6:c5: d3:e0:6d:8e:f9:eb:bf:f7:1e:54:65:fb:c4:af:37:c7:10:e3: eb:24:c8:0d:b8:00:97:e5:d4:d1:32:c3:04:01:a8:e7:73:1e: a2:1c:dd:84:e5:bc:08:ed:b9:a0:80:95:3f:7b:94:e4:f3:c2: 3f:1b:48:d8:c7:8e:cd:f7:df:07:f2:32:5b:22:6b:03:cc:f4: 2b:92:b6:8e:28:92:e3:cf:c5:94:7d:90:c8:df:6e:99:31:9c: 93:2f:93:8a:97:c4:93:72:a2:d5:71:67:35:18:cb:91:93:cf: ab:f6:3b:b2:c4:0a:a7:4d:d8:d7:dc:c9:62:43:0c:5a:67:ad: 9a:00:6f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwODIyMjEyNDA4WhcNMjUwODI5MjEyNDA4WjAYMRYwFAYD VQQDEw02OGE4ZGZmOC02YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+6a1v/Rpyq1SKqRqDX83x7fMqE5YlgMDY5L6vtEPm0fWf1AX8/b+zRcgTw7 qs0vqwFfE5A3n9uKHag33bQp/xp60k9GdVMZx5uvi+jvjVlCihYm2SiMj5KqpSxN qlg075ux1BGua6shf/I/iyXCzkqrNrDLP6bAWDnu0yS0/gSVp9a5KPKAnsr2H84r AfD/1GW7ekP/fMPaCwxTtqaeXicViLow0JzitlPnAPyj8hd64wkeTwnP8faV0Nn1 o3hDP3oGFQByKwCtafYwTpH++1zOxHl0nYN8XZfCVMdVdrtafAsff6p2cHMATAF+ zxIKx9JvrVtFSgeq7NJadOT4lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGzGr71 pG514G7Ih54rwI0Vtt55MB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTShxrWncpf8c0RL+2117Op4ja9idjWjpXAdkdLc6+pRJWJb3Ibb9D 1jp1NQ2mS4zGh/jdqqrDv2Ix5CihQYDuLBI5G7WKDLmKDNweJhHar528THuqkGTA sHa23SLn/oTUJLe4eXsGFPTiR5S03GM5luXqUtC59UELtsZLpsXT4G2O+eu/9x5U ZfvErzfHEOPrJMgNuACX5dTRMsMEAajncx6iHN2E5bwI7bmggJU/e5Tk88I/G0jY x47N998H8jJbImsDzPQrkraOKJLjz8WUfZDI326ZMZyTL5OKl8STcqLVcWc1GMuR k8+r9juyxAqnTdjX3MliQwxaZ62aAG+/ -----END CERTIFICATE-----Generated at Sun Aug 24 03:33:48 2025 by rpki-client