$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: 7HtyI3tIPUQcTEbFiI6ppSkTL14AqMYnF9VTVBhRgs0= Subject key identifier: 90:98:07:60:9E:F0:E8:38:33:36:D9:73:42:01:C0:83:92:98:AA:91 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09E4 Signing time: Fri 22 Aug 2025 20:02:38 +0000 Manifest this update: Fri 22 Aug 2025 20:02:37 +0000 Manifest next update: Fri 29 Aug 2025 20:02:37 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: eZqkoOY9s+ELqAykXxReQKWc/lSmIoAtJ5AZnao8akE=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Aug 22 20:02:37 2025 GMT Not After : Aug 29 20:02:37 2025 GMT Subject: CN=68a8ccde-458f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:ec:be:50:af:9d:5b:dc:63:93:95:47:c2: b9:b9:34:87:d3:0c:b0:68:a8:f7:ab:d0:83:f5:56: 74:34:51:2e:23:6d:8c:2c:a1:74:81:c9:fb:35:89: 5f:31:3f:15:34:05:59:f3:14:28:f4:b0:c5:5d:15: 59:20:96:32:45:1a:43:1f:01:06:11:bf:d6:0d:2d: ff:59:72:73:58:80:d2:fd:f2:2b:4e:32:40:23:bd: ce:fa:d3:e3:95:90:84:a9:93:a8:a1:df:fd:24:26: 09:62:65:36:4b:cb:1d:0e:3d:5e:54:48:86:7e:55: 62:71:3b:24:61:13:10:c4:15:d7:7d:e3:cc:d5:93: fa:27:b9:de:7c:15:51:a6:ee:72:c3:c4:80:3e:2f: f7:69:8c:c5:ec:1f:f7:52:d0:ef:6e:77:a2:3a:1b: 48:dd:ca:fe:7a:75:aa:37:35:b8:9e:27:2f:ff:95: 39:56:10:cd:65:c9:75:6c:31:f7:34:cb:5c:30:c8: 9a:36:1f:2f:81:4f:ba:5a:f2:a6:8a:d0:42:9c:4f: a3:b7:fe:22:56:59:16:a0:91:71:1f:fc:aa:e7:30: b6:73:6f:a7:9c:1e:71:fa:63:36:80:91:02:15:c2: b7:c7:aa:0b:da:b5:3e:2c:dd:4d:0e:dc:11:92:12: d4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:98:07:60:9E:F0:E8:38:33:36:D9:73:42:01:C0:83:92:98:AA:91 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b9:14:2d:31:cc:e0:fe:a1:64:b7:72:1d:72:79:5e:2f:e2: d3:18:f8:f9:ab:a2:b3:96:3f:94:d1:bc:8d:47:56:03:26:50: 61:15:68:d2:17:0f:47:e3:11:2a:03:0e:69:eb:06:64:61:84: f0:bc:95:2f:d8:2f:24:4f:0c:77:12:dc:83:6e:cb:73:eb:ba: 52:c3:cd:bf:95:68:97:24:05:dd:0f:01:69:d8:01:06:88:93: 2a:21:bd:b9:48:ce:c9:71:1f:b8:52:b2:49:a4:21:4f:d2:c3: 12:7d:30:26:d0:7e:30:fa:94:16:2a:c5:0d:b7:d3:90:9b:6c: c4:34:16:7a:8c:32:6e:4d:5d:47:f9:74:f3:64:5b:a7:92:bc: 23:52:da:20:84:d0:aa:b8:19:80:4e:06:01:22:bb:54:f2:56: fa:ae:73:5d:fd:d9:69:c4:37:70:47:7f:fe:93:71:8c:b9:70: e6:bd:a0:2b:66:88:1b:38:7e:52:74:cb:b6:34:d2:3b:e3:97: 55:fd:e0:50:1a:38:27:91:15:67:0a:df:04:ff:91:6f:22:e6: 7a:e2:16:be:dd:5b:93:35:d8:be:49:ce:97:88:9a:a6:4b:63: 57:a3:53:1f:2d:0a:7a:1b:0d:29:a7:e9:7d:28:48:f6:25:8d: a4:05:87:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwODIyMjAwMjM3WhcNMjUwODI5MjAwMjM3WjAYMRYwFAYD VQQDEw02OGE4Y2NkZS00NThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlTsvlCvnVvcY5OVR8K5uTSH0wywaKj3q9CD9VZ0NFEuI22MLKF0gcn7NYlf MT8VNAVZ8xQo9LDFXRVZIJYyRRpDHwEGEb/WDS3/WXJzWIDS/fIrTjJAI73O+tPj lZCEqZOood/9JCYJYmU2S8sdDj1eVEiGflVicTskYRMQxBXXfePM1ZP6J7nefBVR pu5yw8SAPi/3aYzF7B/3UtDvbneiOhtI3cr+enWqNzW4nicv/5U5VhDNZcl1bDH3 NMtcMMiaNh8vgU+6WvKmitBCnE+jt/4iVlkWoJFxH/yq5zC2c2+nnB5x+mM2gJEC FcK3x6oL2rU+LN1NDtwRkhLUpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCYB2Ce 8Og4MzbZc0IBwIOSmKqRMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWuRQtMczg/qFkt3IdcnleL+LTGPj5q6Kzlj+U0byNR1YDJlBhFWjS Fw9H4xEqAw5p6wZkYYTwvJUv2C8kTwx3EtyDbstz67pSw82/lWiXJAXdDwFp2AEG iJMqIb25SM7JcR+4UrJJpCFP0sMSfTAm0H4w+pQWKsUNt9OQm2zENBZ6jDJuTV1H +XTzZFunkrwjUtoghNCquBmATgYBIrtU8lb6rnNd/dlpxDdwR3/+k3GMuXDmvaAr ZogbOH5SdMu2NNI745dV/eBQGjgnkRVnCt8E/5FvIuZ64ha+3VuTNdi+Sc6XiJqm S2NXo1MfLQp6Gw0pp+l9KEj2JY2kBYca -----END CERTIFICATE-----Generated at Sat Aug 23 20:27:04 2025 by rpki-client