$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: Is5LttCH4q0ST0J1VwYd6R3eciKRKw9rQDlfmOso8m0= Subject key identifier: DC:AD:19:D5:A0:D0:55:95:A5:92:08:01:4D:D2:E7:C8:85:63:AD:EA Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 1C Signing time: Sat 23 Aug 2025 08:08:23 +0000 Manifest this update: Sat 23 Aug 2025 08:08:23 +0000 Manifest next update: Sat 30 Aug 2025 08:08:23 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: /uoAOR61+vVW7uMHrgLPsxUNF6jyoebQleveOORkmTk=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Aug 23 08:08:23 2025 GMT Not After : Aug 30 08:08:23 2025 GMT Subject: CN=68a976f7-eff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:18:9e:0b:59:6d:b7:d7:cc:50:98:f4:46:d5: d6:ec:e4:94:53:56:55:12:30:50:34:6e:2b:fa:7f: 27:59:d0:87:90:9a:82:6f:e4:c8:74:eb:99:d6:46: 86:46:32:6f:ec:cf:f9:9b:d1:f6:7c:75:9a:58:96: b4:48:9f:59:45:08:34:2d:40:b8:4d:fc:2b:cb:cc: 45:0f:ce:08:2a:21:19:59:b9:a6:2e:64:bd:e3:37: 84:bc:b4:d4:31:af:6a:ed:3b:87:e4:0f:36:06:d1: a8:88:bb:32:ee:e8:7f:ac:cd:46:35:dd:bf:e1:aa: 2d:cf:77:ee:f4:a1:62:e3:cd:c7:3a:9f:08:d3:4a: 52:fe:a7:5a:36:aa:e3:96:ae:4f:ff:f0:65:b3:21: b1:b0:f7:54:52:6c:99:42:3e:3c:da:ee:ee:bd:7c: 2a:6b:88:91:ad:da:40:f0:cd:a5:bd:85:97:88:ae: a3:3d:e7:58:06:26:f0:4a:9f:60:4c:64:2b:29:b7: 5c:3a:46:43:51:10:d5:ba:c4:32:0e:d1:e3:fa:e4: 5e:3b:20:56:76:35:62:76:b2:a9:1b:2a:76:47:66: 1b:e2:7f:9d:ba:b5:c1:73:ec:70:01:c4:10:59:18: 5c:07:d1:27:c8:1d:e1:dd:3e:a3:74:d9:3f:0c:68: d4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AD:19:D5:A0:D0:55:95:A5:92:08:01:4D:D2:E7:C8:85:63:AD:EA X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:f8:1c:ab:19:56:c7:6a:cd:f9:6d:40:55:4e:a4:ee:b1:0b: 7d:b1:f9:f0:26:32:c0:05:b9:f0:5a:79:0f:fc:30:83:c6:25: a8:47:62:42:f1:62:cc:27:18:4d:bb:49:9b:06:89:30:e7:14: 39:d4:66:83:ad:2d:63:c9:db:6a:43:7d:47:97:de:a5:6c:9f: 49:83:fe:de:43:34:00:a7:8c:cb:c9:ca:73:34:14:78:72:37: 2d:a8:5d:89:12:df:10:53:c1:bd:a1:f9:f3:46:28:82:67:bc: 45:1f:9a:dc:61:39:fb:6d:70:c3:06:1d:af:11:6c:c0:57:91: fa:24:4d:73:a7:27:9d:9d:d2:90:9a:5c:b0:f4:5a:80:ff:e3: c7:62:d5:a5:29:89:09:9f:69:9f:74:45:9d:44:e0:3e:2d:6c: fa:a2:e1:3f:86:f6:ce:b3:a5:10:2f:55:0a:6d:96:80:22:bd: 30:f2:49:d7:d3:95:55:de:72:f6:1c:68:c1:dc:bd:09:45:f3: 30:af:21:81:d5:8e:37:67:ba:2a:ad:3a:83:d4:dd:74:03:37: 9f:bf:7f:c1:63:01:10:ae:90:d0:5b:66:e2:87:f4:0f:a1:c1: 90:66:d6:22:2f:dc:f9:9b:bd:f8:8a:85:36:36:98:62:31:94: 67:a9:f0:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTA4MjMwODA4MjNaFw0yNTA4MzAwODA4MjNaMBgxFjAUBgNV BAMTDTY4YTk3NmY3LWVmZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeGJ4LWW2318xQmPRG1dbs5JRTVlUSMFA0biv6fydZ0IeQmoJv5Mh065nWRoZG Mm/sz/mb0fZ8dZpYlrRIn1lFCDQtQLhN/CvLzEUPzggqIRlZuaYuZL3jN4S8tNQx r2rtO4fkDzYG0aiIuzLu6H+szUY13b/hqi3Pd+70oWLjzcc6nwjTSlL+p1o2quOW rk//8GWzIbGw91RSbJlCPjza7u69fCpriJGt2kDwzaW9hZeIrqM951gGJvBKn2BM ZCspt1w6RkNRENW6xDIO0eP65F47IFZ2NWJ2sqkbKnZHZhvif526tcFz7HABxBBZ GFwH0SfIHeHdPqN02T8MaNQdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3K0Z1aDQ VZWlkggBTdLnyIVjreowHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALL4HKsZVsdqzfltQFVOpO6xC32x+fAmMsAFufBaeQ/8MIPGJahHYkLx YswnGE27SZsGiTDnFDnUZoOtLWPJ22pDfUeX3qVsn0mD/t5DNACnjMvJynM0FHhy Ny2oXYkS3xBTwb2h+fNGKIJnvEUfmtxhOfttcMMGHa8RbMBXkfokTXOnJ52d0pCa XLD0WoD/48di1aUpiQmfaZ90RZ1E4D4tbPqi4T+G9s6zpRAvVQptloAivTDySdfT lVXecvYcaMHcvQlF8zCvIYHVjjdnuiqtOoPU3XQDN5+/f8FjARCukNBbZuKH9A+h wZBm1iIv3PmbvfiKhTY2mGIxlGep8IM= -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:25 2025 by rpki-client