$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: OMME2On1cxhz0YQ2VrG+MfpFGUIBYEOnkn1AZHgQw/s= Subject key identifier: 37:89:FF:2D:69:0E:F9:1E:74:1A:53:7C:64:F5:A6:E2:35:75:24:3F Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: EC Signing time: Thu 21 Aug 2025 05:30:57 +0000 Manifest this update: Thu 21 Aug 2025 05:30:56 +0000 Manifest next update: Thu 28 Aug 2025 05:30:56 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: cQqAjzNbWg6gkFcdPX5YGTVsUHuUOrygCNZ8Y4irIvw=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: m/G/Sff8tqA/XbNYboOxx50mkuYuHxKvPy3vRj80oOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Aug 21 05:30:56 2025 GMT Not After : Aug 28 05:30:56 2025 GMT Subject: CN=68a6af11-bc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:89:e8:c5:85:67:d5:96:20:a3:f3:55:51: 01:53:e7:b2:95:81:24:38:be:59:a6:32:de:b6:87: 41:61:b4:03:1b:d3:77:3f:4e:0f:08:00:7d:e6:1a: 91:0f:df:85:d9:9a:7d:a1:c1:a2:3c:b1:b4:cc:75: ec:ad:11:86:f1:4c:e4:2e:2a:2f:27:dd:0c:3f:b8: 0f:94:54:bd:10:17:36:f7:a1:63:26:60:94:b2:df: ea:9f:ea:21:71:09:cf:bb:43:17:1a:13:b8:82:9f: 52:7f:ae:48:27:73:87:28:44:e4:28:b2:92:47:94: 85:1a:8d:03:e0:74:3c:34:04:4d:9e:a3:08:3e:f4: f3:70:e1:f4:02:28:68:33:28:41:64:9b:ee:a0:08: 71:d9:3b:c0:e5:82:2e:e0:29:fb:e1:2f:2d:9c:7e: df:82:e9:33:30:fd:9f:d2:03:57:2c:e5:fc:7e:fe: 1b:7e:3d:cc:2f:cc:00:75:9b:ce:b0:a5:9c:e0:aa: 40:7f:58:9a:20:ae:91:db:2f:da:7c:04:d6:d8:8e: 52:b8:63:2d:7b:0f:03:10:0e:6c:be:89:bd:10:b7: 85:a7:7c:ad:09:16:60:80:3d:f8:9e:79:9f:f6:0c: bf:b8:5e:c1:b6:c0:e5:14:58:8f:07:d5:33:3b:a5: aa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:89:FF:2D:69:0E:F9:1E:74:1A:53:7C:64:F5:A6:E2:35:75:24:3F X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:24:60:66:c7:5c:fd:31:ee:ab:c1:52:3f:2b:55:b3:04:c9: 2f:42:ea:cc:20:62:62:36:29:29:83:05:39:3c:e5:63:6b:57: 92:07:e0:b6:83:56:82:f2:dc:6b:89:aa:a5:1e:35:72:cf:7d: b8:f2:e7:76:db:81:c5:77:a7:e7:da:7f:9d:66:d5:e8:5f:e2: cd:3b:5c:fa:02:a2:8b:16:c6:42:17:40:31:56:94:d6:88:54: 2e:a3:49:5c:b0:a3:84:90:b3:0c:9c:7d:9d:14:70:18:1d:2e: 1b:2a:7f:8a:be:3d:c0:a2:47:89:ff:25:df:8d:1f:55:70:ed: fd:9d:e8:92:d0:0f:f6:90:b4:be:02:47:41:f5:a7:b9:ee:19: 61:04:13:d9:83:80:51:79:a3:d5:b9:a9:f8:94:3d:6c:71:26: 59:1b:39:18:02:9d:62:fd:02:54:7b:18:71:34:b8:a1:f2:7b: c3:48:1b:77:9a:79:96:79:ed:d1:2b:b4:63:f7:0b:8c:77:f5: f1:48:ea:4d:a8:a0:2b:22:2f:ec:f9:67:e1:5e:75:24:b1:23: d3:7c:8b:af:96:7d:07:6d:8b:f1:5c:68:e4:dc:b8:83:e9:32: 60:47:92:3e:6e:d7:09:2b:c4:9c:18:90:42:f5:96:8c:bc:66: ad:aa:96:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwODIxMDUzMDU2WhcNMjUwODI4MDUzMDU2WjAYMRYwFAYD VQQDEw02OGE2YWYxMS1iYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDOJ6MWFZ9WWIKPzVVEBU+eylYEkOL5ZpjLetodBYbQDG9N3P04PCAB95hqR D9+F2Zp9ocGiPLG0zHXsrRGG8UzkLiovJ90MP7gPlFS9EBc296FjJmCUst/qn+oh cQnPu0MXGhO4gp9Sf65IJ3OHKETkKLKSR5SFGo0D4HQ8NARNnqMIPvTzcOH0Aiho MyhBZJvuoAhx2TvA5YIu4Cn74S8tnH7fgukzMP2f0gNXLOX8fv4bfj3ML8wAdZvO sKWc4KpAf1iaIK6R2y/afATW2I5SuGMtew8DEA5svom9ELeFp3ytCRZggD34nnmf 9gy/uF7BtsDlFFiPB9UzO6WqkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeJ/y1p DvkedBpTfGT1puI1dSQ/MB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkJGBmx1z9Me6rwVI/K1WzBMkvQurMIGJiNikpgwU5POVja1eSB+C2 g1aC8txriaqlHjVyz3248ud224HFd6fn2n+dZtXoX+LNO1z6AqKLFsZCF0AxVpTW iFQuo0lcsKOEkLMMnH2dFHAYHS4bKn+Kvj3AokeJ/yXfjR9VcO39neiS0A/2kLS+ AkdB9ae57hlhBBPZg4BReaPVuan4lD1scSZZGzkYAp1i/QJUexhxNLih8nvDSBt3 mnmWee3RK7Rj9wuMd/XxSOpNqKArIi/s+WfhXnUksSPTfIuvln0HbYvxXGjk3LiD 6TJgR5I+btcJK8ScGJBC9ZaMvGatqpZ1 -----END CERTIFICATE-----Generated at Sat Aug 23 07:05:20 2025 by rpki-client