$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: iAK/w9yjOnXRNVeQ7gnQrCiZAe2wwFuO2V1reY96DZE= Subject key identifier: 74:D0:B0:76:1B:B4:AC:48:08:D7:76:35:AB:14:93:F7:DB:88:D0:13 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 057F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 06AB Signing time: Fri 22 Aug 2025 23:27:28 +0000 Manifest this update: Fri 22 Aug 2025 23:27:27 +0000 Manifest next update: Fri 29 Aug 2025 23:27:27 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: oVuWCeiuAKkmvDK7W3BJtKzogt/8+p8hv0AlriKj/wU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Aug 22 23:27:27 2025 GMT Not After : Aug 29 23:27:27 2025 GMT Subject: CN=68a8fcdf-3048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:08:54:ee:38:2b:96:0c:a1:a7:fa:03:99:36: 91:3d:89:d3:db:ba:b7:72:36:4f:1b:0b:50:12:2f: ed:58:cf:dc:62:cc:d5:77:37:7a:b4:a7:dd:e0:10: de:41:e5:a9:fc:8b:21:04:42:de:2a:7f:3d:69:cf: a0:b1:58:df:61:f0:e6:ce:65:df:66:64:88:b3:5b: a9:f2:68:b9:c6:e4:97:e7:f5:94:1f:24:26:8f:05: 50:69:0e:07:0f:8f:5d:df:d7:83:55:e8:46:bd:86: f5:b1:13:2a:4a:9b:ac:94:32:38:aa:df:14:02:76: 38:10:d0:5b:cb:02:a1:f8:12:3b:44:c6:23:04:c1: 19:ed:4c:30:d9:12:60:82:7d:24:3b:35:d9:03:aa: 8b:29:1e:52:47:0c:ce:5d:bf:f2:7a:c0:6f:17:60: 1f:cf:a7:18:04:cf:3f:65:f8:7e:15:52:5a:20:28: 8a:65:87:0b:7d:11:c1:3f:43:cc:03:82:9a:f3:a1: 31:05:c5:89:9a:58:0e:5e:ee:ce:fe:64:7d:6b:12: 39:82:c7:91:08:0b:09:8a:f0:b8:e8:ea:6a:76:6b: 4f:a2:a0:f2:f5:79:af:b7:d1:f0:a2:0b:89:e7:aa: 0d:69:29:63:19:8f:a3:b7:81:1a:f1:bb:29:31:73: e6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D0:B0:76:1B:B4:AC:48:08:D7:76:35:AB:14:93:F7:DB:88:D0:13 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:46:36:6d:a9:7f:65:79:8f:d7:49:67:2b:42:60:d3:a3:c0: 69:6e:0b:fb:17:7e:1b:df:91:de:39:04:53:b4:4c:32:15:3c: 88:18:f6:06:ad:9c:45:ad:66:ad:04:2e:8c:5c:61:3a:ad:e5: 26:2a:ae:c3:17:3c:29:5d:30:63:74:31:86:69:31:e3:1a:4b: 40:1d:8b:2f:d3:d5:ed:67:dc:55:41:af:be:c9:84:0c:3d:ea: 56:21:1b:9b:52:f6:89:85:4e:ba:01:d9:40:eb:0d:f1:22:cc: a9:9f:eb:21:1e:58:f4:33:06:ea:46:7b:c4:05:0c:b6:3b:f0: 2e:9f:5b:c5:1b:86:7d:f2:34:97:e1:21:09:3c:d9:71:a8:fe: ba:8b:4a:0c:e0:39:f9:8a:82:90:cb:3d:45:76:df:40:62:36: 45:bc:38:d7:e9:e0:6f:ab:8a:46:61:1a:21:b0:d3:1e:79:12: ec:9b:0b:2f:48:be:a2:b4:e4:d4:f5:3c:30:4d:30:fa:45:36: e6:04:a1:ba:3e:2d:78:40:52:cf:f4:fc:65:9c:ef:e5:d0:0b: d5:c5:cc:c5:b3:78:ad:54:86:4f:76:39:e2:61:5c:47:ee:f6: 5d:44:45:cf:ea:e4:22:37:05:ed:72:31:e9:12:d8:df:ac:0b: dc:54:de:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwODIyMjMyNzI3WhcNMjUwODI5MjMyNzI3WjAYMRYwFAYD VQQDEw02OGE4ZmNkZi0zMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQhU7jgrlgyhp/oDmTaRPYnT27q3cjZPGwtQEi/tWM/cYszVdzd6tKfd4BDe QeWp/IshBELeKn89ac+gsVjfYfDmzmXfZmSIs1up8mi5xuSX5/WUHyQmjwVQaQ4H D49d39eDVehGvYb1sRMqSpuslDI4qt8UAnY4ENBbywKh+BI7RMYjBMEZ7Uww2RJg gn0kOzXZA6qLKR5SRwzOXb/yesBvF2Afz6cYBM8/Zfh+FVJaICiKZYcLfRHBP0PM A4Ka86ExBcWJmlgOXu7O/mR9axI5gseRCAsJivC46OpqdmtPoqDy9Xmvt9HwoguJ 56oNaSljGY+jt4Ea8bspMXPmewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTQsHYb tKxICNd2NasUk/fbiNATMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcRjZtqX9leY/XSWcrQmDTo8Bpbgv7F34b35HeOQRTtEwyFTyIGPYG rZxFrWatBC6MXGE6reUmKq7DFzwpXTBjdDGGaTHjGktAHYsv09XtZ9xVQa++yYQM PepWIRubUvaJhU66AdlA6w3xIsypn+shHlj0MwbqRnvEBQy2O/Aun1vFG4Z98jSX 4SEJPNlxqP66i0oM4Dn5ioKQyz1Fdt9AYjZFvDjX6eBvq4pGYRohsNMeeRLsmwsv SL6itOTU9TwwTTD6RTbmBKG6Pi14QFLP9PxlnO/l0AvVxczFs3itVIZPdjniYVxH 7vZdREXP6uQiNwXtcjHpEtjfrAvcVN4l -----END CERTIFICATE-----Generated at Sat Aug 23 16:33:34 2025 by rpki-client