$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: yNLtBMdj37HGBD93r1SmI+ddP8NS24XXEV1HOLp3JWo= Subject key identifier: 5F:C8:35:FC:38:91:73:57:9B:D8:D5:1E:5C:4E:10:40:49:19:02:9A Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09AE Signing time: Fri 22 Aug 2025 20:11:07 +0000 Manifest this update: Fri 22 Aug 2025 20:11:06 +0000 Manifest next update: Fri 29 Aug 2025 20:11:06 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: vwDNN+jwVPPFKEKeWru86SgTsDCP7iALQ5f4COevkus=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Aug 22 20:11:06 2025 GMT Not After : Aug 29 20:11:06 2025 GMT Subject: CN=68a8cedb-fc8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:db:31:3b:88:d8:da:79:1b:81:f4:4f:74: c2:c6:18:43:4d:83:59:39:53:ba:f8:ed:23:83:25: 57:e7:77:80:aa:d7:be:65:9a:62:f1:32:f3:5e:ec: 03:16:5f:c7:ab:6e:96:ab:e9:b1:cc:04:4e:b6:5d: c9:9d:04:25:6a:66:30:cb:d2:59:57:46:c7:39:44: fa:62:d7:2f:c3:11:ad:22:27:55:89:55:56:7e:07: 18:ed:e6:81:99:d9:66:1f:19:17:f0:de:b8:85:5d: a7:31:e9:3f:8a:eb:05:03:35:86:3a:bf:53:4d:5c: 02:69:f7:b0:00:59:c7:8d:69:e3:34:05:55:66:18: ea:93:9c:68:47:cb:ad:d4:20:e8:d9:8a:79:8c:5c: a4:a4:d4:85:31:e9:c6:c4:e8:9f:ad:09:ba:ea:e1: 7b:14:6f:9e:4d:1e:7c:22:a4:04:f9:c9:76:62:9c: 2f:86:ec:d9:a3:fb:bd:63:48:5f:14:70:38:44:e9: 81:99:e7:fd:91:54:90:bb:09:f1:0a:7c:74:7a:d9: e9:c3:5a:c7:6f:d6:ed:f4:2a:f6:50:84:14:e7:6a: ca:e2:b2:2a:f1:ff:ea:84:26:dc:cf:51:b4:34:77: c5:57:42:2b:df:ff:ac:9c:9b:bd:df:f6:2c:ab:75: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C8:35:FC:38:91:73:57:9B:D8:D5:1E:5C:4E:10:40:49:19:02:9A X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f8:b9:96:36:5c:76:72:0b:df:85:ee:a6:39:94:48:12:a4: 21:17:74:30:25:f3:1c:d9:b5:5f:26:42:33:1e:ea:a5:ea:bd: 51:a3:b8:ed:fb:39:ba:b2:f9:76:3e:e0:8a:34:59:3b:7c:ff: bf:3f:e9:af:cb:e1:af:1a:29:92:d5:c8:a6:56:15:4e:8a:08: a8:c4:14:cf:82:6e:48:0b:a4:be:94:86:b1:47:a0:75:cc:46: 36:af:32:44:b5:f4:e6:1a:4f:29:29:85:93:61:13:ca:03:ac: 36:e2:98:bb:ee:05:a9:c8:58:35:d1:32:b1:56:94:04:7c:22: 8d:2d:10:ed:82:fb:0c:ff:72:34:96:96:8e:09:d0:46:46:2f: 01:f3:58:6f:22:a3:97:fd:46:6f:b3:6a:bf:bb:2d:5b:64:17: 83:16:74:af:0a:67:dc:29:18:2d:72:62:29:84:c8:3f:72:48: 04:3e:16:58:76:32:c5:6f:49:7c:10:f4:c2:56:fe:d5:ca:d8: 02:ac:f3:90:56:de:e3:16:90:ad:6f:53:34:23:6f:40:61:e6: 16:6e:0b:4f:51:d3:d1:ab:09:5f:1d:fc:2b:74:83:9c:97:02: b3:e3:d0:62:b5:1d:9e:d4:8b:dc:cf:26:47:1d:30:3d:9b:56: c4:98:15:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUwODIyMjAxMTA2WhcNMjUwODI5MjAxMTA2WjAYMRYwFAYD VQQDEw02OGE4Y2VkYi1mYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+DbMTuI2Np5G4H0T3TCxhhDTYNZOVO6+O0jgyVX53eAqte+ZZpi8TLzXuwD Fl/Hq26Wq+mxzAROtl3JnQQlamYwy9JZV0bHOUT6YtcvwxGtIidViVVWfgcY7eaB mdlmHxkX8N64hV2nMek/iusFAzWGOr9TTVwCafewAFnHjWnjNAVVZhjqk5xoR8ut 1CDo2Yp5jFykpNSFMenGxOifrQm66uF7FG+eTR58IqQE+cl2YpwvhuzZo/u9Y0hf FHA4ROmBmef9kVSQuwnxCnx0etnpw1rHb9bt9Cr2UIQU52rK4rIq8f/qhCbcz1G0 NHfFV0Ir3/+snJu93/Ysq3UDkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/INfw4 kXNXm9jVHlxOEEBJGQKaMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc+LmWNlx2cgvfhe6mOZRIEqQhF3QwJfMc2bVfJkIzHuql6r1Ro7jt +zm6svl2PuCKNFk7fP+/P+mvy+GvGimS1cimVhVOigioxBTPgm5IC6S+lIaxR6B1 zEY2rzJEtfTmGk8pKYWTYRPKA6w24pi77gWpyFg10TKxVpQEfCKNLRDtgvsM/3I0 lpaOCdBGRi8B81hvIqOX/UZvs2q/uy1bZBeDFnSvCmfcKRgtcmIphMg/ckgEPhZY djLFb0l8EPTCVv7VytgCrPOQVt7jFpCtb1M0I29AYeYWbgtPUdPRqwlfHfwrdIOc lwKz49BitR2e1IvczyZHHTA9m1bEmBVD -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:45 2025 by rpki-client