$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft File: iA5rTc1s7FPI0D10DIjpdzsEexk.mft (raw, json) Hash identifier: yzcB1bWQWGhMQxZaYsU3xTDgwhyd5OH/OZFVz480fhs= Subject key identifier: FF:6C:59:B6:91:60:4C:07:D2:CF:FC:23:98:9A:88:3B:DD:43:C6:FA Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 169C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft Manifest number: 1688 Signing time: Fri 22 Aug 2025 16:48:13 +0000 Manifest this update: Fri 22 Aug 2025 16:48:12 +0000 Manifest next update: Fri 29 Aug 2025 16:48:12 +0000 Files and hashes: 1: iA5rTc1s7FPI0D10DIjpdzsEexk.crl (hash: sbk2OG2bFH0ZyPxfA8xIVvncCidX4qZSihdRYH8sPYw=) 2: E1ADA4BC062B11F08449516EC4F9AE02.roa (hash: irCyzZt8lLVT2O/nBYFOPs0nEEY6FDn9ohpC+rSN6lg=) 3: E259315C57CA11EA8D931284C4F9AE02.roa (hash: UF4UGi4YvKSRTlKCNcjEh8f4bqwvLQuk9xLcKAJKTWQ=) 4: 7D2EA194B20711EA8B74F445C4F9AE02.roa (hash: slzLXwHdalwSZSG2cdS37Tf6mGAWnLHG4M+IywxJpUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5788 (0x169c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Aug 22 16:48:12 2025 GMT Not After : Aug 29 16:48:12 2025 GMT Subject: CN=68a89f4d-ff71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:31:99:1e:78:d5:d7:31:56:6b:3d:9c:90:56: f9:76:2b:df:11:36:d2:cb:d0:aa:f6:96:a8:d2:4d: c0:73:ea:3a:4f:80:b0:3c:9f:80:0d:8c:2d:9a:4c: 6e:2b:9c:2a:8f:24:e1:a7:7e:d0:bf:5b:5c:3a:d2: e2:3c:aa:e6:07:76:0a:87:74:56:39:db:ab:37:49: 39:91:ad:ef:ef:d5:72:04:48:d8:ef:80:0d:b2:0a: f7:c5:54:0f:24:0f:5d:4e:76:ff:2e:43:64:97:cd: 42:ac:03:23:5b:88:fc:5f:d5:fd:f2:4b:0e:91:3c: 6a:03:73:d2:af:bb:17:4a:15:3d:bd:56:d1:bf:d3: 2d:29:c4:80:7c:91:99:68:d7:9b:02:9f:08:6a:7c: a2:9b:14:95:19:d2:44:dd:de:c2:12:24:e3:07:b5: 72:c6:91:97:80:5c:36:01:bb:ea:22:2f:83:43:a9: e4:30:6d:e2:4a:dc:95:d7:50:f5:96:d9:a1:73:c2: d9:6b:63:6a:09:f6:ec:48:26:1f:f4:7d:e7:30:2c: bf:0c:66:12:a1:4d:9d:d3:44:56:a2:b5:6d:70:79: a2:02:51:de:36:80:91:69:26:4e:71:3a:b6:07:d1: 58:c4:be:92:ad:90:9c:58:05:b2:94:ac:2c:aa:39: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6C:59:B6:91:60:4C:07:D2:CF:FC:23:98:9A:88:3B:DD:43:C6:FA X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f8:ee:cb:35:9d:c5:f1:0c:7b:b8:b6:a0:5d:89:84:8b:55: 0c:eb:72:4c:47:83:b1:24:eb:91:b3:9b:fb:aa:89:d0:c0:64: fe:76:99:2e:2f:78:03:e3:58:3a:fe:6a:1d:ae:a8:38:42:d9: 33:32:27:8d:8d:d3:ff:b5:d0:4a:66:44:2d:bc:21:fb:2e:ea: f0:22:da:93:d7:78:92:54:8e:bb:e4:1c:a4:ed:c3:36:06:62: 9c:0e:5d:cf:07:a8:02:56:3e:4d:a9:e7:62:17:41:f0:68:5c: 12:c6:f2:5d:e4:cc:bf:48:b5:8b:31:9d:50:19:1b:17:a5:fa: af:d5:9b:56:e6:fa:07:13:9f:d4:70:ab:a2:c7:3c:53:b1:44: 0f:e3:1a:bc:16:24:b1:f8:b9:7f:4c:36:3b:39:91:d8:2b:0d: 3f:71:76:38:d5:28:5c:d7:15:95:9d:36:f1:c7:09:06:0e:b5: d7:b3:9b:73:53:2b:f4:72:b6:c4:19:24:33:98:04:58:12:59: ad:7d:f0:9d:ac:b8:a7:cf:00:85:aa:3c:41:84:b0:72:c9:fa: 9a:b4:4f:cc:87:40:cf:c6:25:12:e3:ce:f2:0a:55:cc:ca:8e: 17:55:3b:55:d8:e4:fa:1b:06:4d:16:c4:24:0e:67:2d:a8:b4: 44:c0:c8:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjUwODIyMTY0ODEyWhcNMjUwODI5MTY0ODEyWjAYMRYwFAYD VQQDEw02OGE4OWY0ZC1mZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzGZHnjV1zFWaz2ckFb5divfETbSy9Cq9pao0k3Ac+o6T4CwPJ+ADYwtmkxu K5wqjyThp37Qv1tcOtLiPKrmB3YKh3RWOdurN0k5ka3v79VyBEjY74ANsgr3xVQP JA9dTnb/LkNkl81CrAMjW4j8X9X98ksOkTxqA3PSr7sXShU9vVbRv9MtKcSAfJGZ aNebAp8IanyimxSVGdJE3d7CEiTjB7VyxpGXgFw2AbvqIi+DQ6nkMG3iStyV11D1 ltmhc8LZa2NqCfbsSCYf9H3nMCy/DGYSoU2d00RWorVtcHmiAlHeNoCRaSZOcTq2 B9FYxL6SrZCcWAWylKwsqjnppQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9sWbaR YEwH0s/8I5iaiDvdQ8b6MB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ2NS9CMUFGQjZGQTBBNTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdG UEkwRDEwRElqcGR6c0VleGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa+O7LNZ3F8Qx7uLagXYmEi1UM63JMR4OxJOuRs5v7qonQwGT+dpku L3gD41g6/modrqg4QtkzMieNjdP/tdBKZkQtvCH7LurwItqT13iSVI675Byk7cM2 BmKcDl3PB6gCVj5NqediF0HwaFwSxvJd5My/SLWLMZ1QGRsXpfqv1ZtW5voHE5/U cKuixzxTsUQP4xq8FiSx+Ll/TDY7OZHYKw0/cXY41Shc1xWVnTbxxwkGDrXXs5tz Uyv0crbEGSQzmARYElmtffCdrLinzwCFqjxBhLByyfqatE/Mh0DPxiUS487yClXM yo4XVTtV2OT6GwZNFsQkDmctqLREwMjm -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:37 2025 by rpki-client