$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: OhuxPK69FccEtt23ph8TpQIMPAoXHA5ctPf9gXZ65d8= Subject key identifier: E8:78:4D:3B:9F:78:04:84:CB:20:1E:E3:29:F2:98:6F:31:0D:8A:F4 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 03D2 Signing time: Sat 23 Aug 2025 00:51:23 +0000 Manifest this update: Sat 23 Aug 2025 00:51:22 +0000 Manifest next update: Sat 30 Aug 2025 00:51:22 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: hQ0ATbRs3aqtP8YL2259+DuDjGJDggbwk3TKAG95Ym8=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: o33RNCZroDwsAJGcMgsni5M3q2cYV8AkaewWNhrky5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Aug 23 00:51:22 2025 GMT Not After : Aug 30 00:51:22 2025 GMT Subject: CN=68a9108b-ff3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2f:de:02:81:ef:df:f5:fc:cb:4c:31:e4:10: 19:36:6e:ce:80:0c:4b:87:54:4f:50:fd:dd:99:44: ee:d9:1b:a7:0c:5b:32:8e:cb:d7:86:7f:be:68:e8: ad:66:a1:20:ef:1f:a2:2f:f0:85:24:d0:63:57:ea: 1c:65:cf:7a:be:fc:a7:ce:cd:26:43:52:6e:27:8a: 62:c8:09:19:ca:6c:75:b6:49:1d:f8:63:c5:cc:7a: 22:e4:f5:f8:d0:d8:ec:3f:ec:16:0e:9b:ac:cd:1b: 65:af:f5:5f:be:bb:e8:85:9f:8b:c7:db:13:f3:89: fa:82:b4:52:7a:9d:9d:39:61:43:5f:44:ac:54:d9: 45:71:77:cd:3e:5e:a9:d2:f0:12:be:0b:db:b3:71: 9d:b9:fd:aa:29:80:37:3f:5b:27:16:71:cf:a0:a2: e3:f5:f4:65:ea:ef:53:aa:1e:06:f3:f8:cf:66:db: 90:a0:59:0c:0b:f2:34:40:a8:46:64:9e:bd:51:5a: 8f:37:9a:56:c7:4f:12:c5:7c:a6:bc:c1:f6:b2:98: 37:04:93:f4:d8:52:36:bc:aa:a0:bf:1d:46:ce:b7: 83:b9:3b:a2:89:d8:09:ed:3c:57:30:1c:e1:9d:cc: b7:63:74:13:48:3f:f3:9f:e0:09:be:5f:05:5e:30: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:78:4D:3B:9F:78:04:84:CB:20:1E:E3:29:F2:98:6F:31:0D:8A:F4 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:49:d7:9b:1d:2b:37:c2:7e:c6:e6:7b:e3:10:51:92:9a:f6: 36:14:97:41:f4:e9:35:1a:1e:ce:11:d2:53:33:de:27:0b:b6: 90:4c:dc:45:4e:ed:6a:58:36:a6:e8:bd:2a:e4:c8:92:b2:8c: fa:78:a9:08:a7:ff:c1:09:00:f6:b9:bb:1e:9c:47:1e:0b:d9: f8:ef:81:c2:6a:36:c4:94:14:9b:01:23:e3:aa:e3:e7:33:3a: 97:08:75:43:dc:36:32:1b:99:a5:ad:86:fc:dd:89:c4:7c:96: a8:1e:3d:19:42:c4:80:2c:b1:fb:18:db:c6:be:f3:ba:73:27: 1f:2d:05:da:91:ee:75:a5:56:f0:73:73:5d:af:00:f6:db:f5: 3b:60:1e:ce:37:bb:46:30:1a:74:86:28:25:b1:6e:cc:4f:4b: 10:61:b9:60:40:bc:81:86:5b:7b:fa:41:a8:72:9e:97:b2:73: 57:21:1d:ee:79:20:55:3e:93:d0:fc:31:d6:6b:b8:12:1a:6e: e6:b9:c7:5b:b0:07:4a:64:7f:0a:9a:f6:d0:e5:29:d9:13:14: 04:ce:4f:54:97:df:e7:7b:c0:9e:bb:16:16:c4:51:04:83:9c: 06:55:e2:4e:32:21:db:05:6a:e6:3c:82:4b:51:da:2d:4c:01: 74:9e:30:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjUwODIzMDA1MTIyWhcNMjUwODMwMDA1MTIyWjAYMRYwFAYD VQQDEw02OGE5MTA4Yi1mZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0S/eAoHv3/X8y0wx5BAZNm7OgAxLh1RPUP3dmUTu2RunDFsyjsvXhn++aOit ZqEg7x+iL/CFJNBjV+ocZc96vvynzs0mQ1JuJ4piyAkZymx1tkkd+GPFzHoi5PX4 0NjsP+wWDpuszRtlr/VfvrvohZ+Lx9sT84n6grRSep2dOWFDX0SsVNlFcXfNPl6p 0vASvgvbs3Gduf2qKYA3P1snFnHPoKLj9fRl6u9Tqh4G8/jPZtuQoFkMC/I0QKhG ZJ69UVqPN5pWx08SxXymvMH2spg3BJP02FI2vKqgvx1GzreDuTuiidgJ7TxXMBzh ncy3Y3QTSD/zn+AJvl8FXjBRdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOh4TTuf eASEyyAe4ynymG8xDYr0MB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClSdebHSs3wn7G5nvjEFGSmvY2FJdB9Ok1Gh7OEdJTM94nC7aQTNxF Tu1qWDam6L0q5MiSsoz6eKkIp//BCQD2ubsenEceC9n474HCajbElBSbASPjquPn MzqXCHVD3DYyG5mlrYb83YnEfJaoHj0ZQsSALLH7GNvGvvO6cycfLQXake51pVbw c3NdrwD22/U7YB7ON7tGMBp0higlsW7MT0sQYblgQLyBhlt7+kGocp6XsnNXIR3u eSBVPpPQ/DHWa7gSGm7mucdbsAdKZH8KmvbQ5SnZExQEzk9Ul9/ne8CeuxYWxFEE g5wGVeJOMiHbBWrmPIJLUdotTAF0njA+ -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:12 2025 by rpki-client