$ rpki-client -vvf rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft File: IMAbBSwVg-NofN7L_BPplBAa1C8.mft (raw, json) Hash identifier: jJ0KFU+q0xFTWk5mAmsdLkSgBar0jEK5LygJVgiiew0= Subject key identifier: AB:8F:07:DB:3A:FF:E6:57:EC:E0:90:D6:6D:4C:5F:83:FD:98:DD:8C Authority key identifier: 20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F Certificate issuer: /CN=A919794D/serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft Manifest number: 01B5 Signing time: Sat 23 Aug 2025 03:12:35 +0000 Manifest this update: Sat 23 Aug 2025 03:12:35 +0000 Manifest next update: Sat 30 Aug 2025 03:12:35 +0000 Files and hashes: 1: IMAbBSwVg-NofN7L_BPplBAa1C8.crl (hash: a0QevZgUsOFMXaSWvgiqdOwCt22oi5JCWJcsJwLyf6A=) 2: CFC4BC00EB2911ED882B8A32C4F9AE02.roa (hash: KHyj1otfkf2S5YApB/OtC5OI1QkNCQ8X27Eo+XCQipE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919794D, serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Validity Not Before: Aug 23 03:12:35 2025 GMT Not After : Aug 30 03:12:35 2025 GMT Subject: CN=68a931a3-6a59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9e:18:d0:a7:8a:8e:13:a5:b6:b8:5a:42:ca: 23:4a:dc:92:e0:63:59:6d:e8:c2:8c:40:a3:92:df: 01:de:28:f4:48:dc:4a:39:28:e9:aa:97:4c:88:24: ce:85:c2:da:be:e6:ba:23:33:a2:c4:d9:22:1c:06: f4:24:1b:4f:21:2e:32:81:99:e0:41:5b:90:2c:0f: c6:3e:ef:8b:89:de:45:33:26:72:75:ff:90:b8:da: 10:75:22:d9:a2:a5:6a:58:f6:04:67:89:86:a2:c9: b8:2b:86:32:81:92:e3:10:51:03:28:c1:b9:31:2f: 37:dc:ed:01:6a:6a:10:8b:48:97:af:f1:ef:40:4e: 7c:6b:55:f7:f6:47:99:0d:f6:a1:f7:26:30:59:03: d1:7e:74:67:f8:8b:a6:e2:ad:c7:27:13:41:9a:80: 19:5e:01:68:a9:85:a3:72:95:62:21:31:ea:41:ec: 06:d9:d0:68:37:d9:aa:35:55:d2:ce:b5:c1:11:7d: 60:01:09:72:54:22:e2:40:e6:04:bc:e1:de:c1:39: 39:aa:95:7e:1f:2d:55:92:ab:27:29:74:77:5a:d4: 60:38:69:bf:11:d3:ca:98:3f:4f:cd:e2:5a:ce:cb: e7:14:99:c9:14:00:09:5e:25:c7:e1:e7:e5:db:b5: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8F:07:DB:3A:FF:E6:57:EC:E0:90:D6:6D:4C:5F:83:FD:98:DD:8C X509v3 Authority Key Identifier: keyid:20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:30:ae:90:a3:97:67:f4:33:25:c8:34:78:ca:47:32:4e:ed: 1e:20:b9:de:bd:fd:20:c5:71:a1:75:60:17:e2:12:8c:6f:4b: 81:cc:a3:d8:3a:0b:05:ed:4c:6f:69:30:aa:e5:f7:79:79:6d: 7d:89:fd:b5:0a:e0:b1:d7:76:93:5e:f7:ce:e0:5e:90:b1:f3: 73:a8:b8:c8:14:17:50:42:15:cd:f9:9c:dc:db:eb:d9:2a:62: 00:92:fe:46:91:cc:e5:00:3d:85:e9:aa:12:d2:4c:a1:c9:e9: ff:1e:dc:cd:c6:2a:42:b9:48:43:e3:48:1c:87:76:d9:61:ad: f7:b1:23:68:25:21:ec:6f:0e:c4:45:0e:43:99:e7:d1:7d:29: 82:80:1d:68:79:e5:21:27:ed:70:a0:ad:75:26:e8:cf:44:5f: cf:18:ba:ce:70:2f:1d:e4:6e:e3:52:da:ed:01:c7:4c:ab:cf: 7f:3c:0a:a9:10:d7:ce:d4:cf:fc:18:f9:9e:11:7c:f4:24:68: d6:ff:fb:21:19:74:9e:75:35:42:25:4a:e4:cd:85:4d:5c:8e: 96:2f:e2:42:d9:0b:e2:f7:b5:65:5d:75:f2:bf:f8:e8:d5:e7: 40:9e:e0:81:0f:40:ff:81:33:b1:61:e4:8c:2b:2c:ab:81:45: 6f:93:9f:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc5NEQxMTAvBgNVBAUTKDIwQzAxQjA1MkMxNTgzRTM2ODdDREVDQkZDMTNFOTk0 MTAxQUQ0MkYwHhcNMjUwODIzMDMxMjM1WhcNMjUwODMwMDMxMjM1WjAYMRYwFAYD VQQDEw02OGE5MzFhMy02YTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsp4Y0KeKjhOltrhaQsojStyS4GNZbejCjECjkt8B3ij0SNxKOSjpqpdMiCTO hcLavua6IzOixNkiHAb0JBtPIS4ygZngQVuQLA/GPu+Lid5FMyZydf+QuNoQdSLZ oqVqWPYEZ4mGosm4K4YygZLjEFEDKMG5MS833O0BamoQi0iXr/HvQE58a1X39keZ Dfah9yYwWQPRfnRn+Ium4q3HJxNBmoAZXgFoqYWjcpViITHqQewG2dBoN9mqNVXS zrXBEX1gAQlyVCLiQOYEvOHewTk5qpV+Hy1VkqsnKXR3WtRgOGm/EdPKmD9PzeJa zsvnFJnJFAAJXiXH4efl27VkVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuPB9s6 /+ZX7OCQ1m1MX4P9mN2MMB8GA1UdIwQYMBaAFCDAGwUsFYPjaHzey/wT6ZQQGtQv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Nzk0RC9DMkNDRTFEQ0U0 MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3VmctTm9mTjdMX0JQcGxCQWEx QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNQWJCU3dWZy1Ob2ZON0xfQlBwbEJBYTFDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Nzk0RC9DMkNDRTFEQ0U0MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3Vmct Tm9mTjdMX0JQcGxCQWExQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuMK6Qo5dn9DMlyDR4ykcyTu0eILnevf0gxXGhdWAX4hKMb0uBzKPY OgsF7UxvaTCq5fd5eW19if21CuCx13aTXvfO4F6QsfNzqLjIFBdQQhXN+Zzc2+vZ KmIAkv5GkczlAD2F6aoS0kyhyen/HtzNxipCuUhD40gch3bZYa33sSNoJSHsbw7E RQ5DmefRfSmCgB1oeeUhJ+1woK11JujPRF/PGLrOcC8d5G7jUtrtAcdMq89/PAqp ENfO1M/8GPmeEXz0JGjW//shGXSedTVCJUrkzYVNXI6WL+JC2Qvi97VlXXXyv/jo 1edAnuCBD0D/gTOxYeSMKyyrgUVvk59L -----END CERTIFICATE-----Generated at Sat Aug 23 15:14:42 2025 by rpki-client