$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: Z68JF1Xq5U2qqAPe2ONqdt4vK5LvoWF+P/WPsHITIuc= Subject key identifier: D7:A5:ED:5B:F7:FD:F9:50:CE:5F:99:08:ED:21:FC:FF:DF:14:E5:5E Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07D3 Signing time: Fri 22 Aug 2025 21:16:40 +0000 Manifest this update: Fri 22 Aug 2025 21:16:40 +0000 Manifest next update: Fri 29 Aug 2025 21:16:40 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: OH+m/GUKhB2Ci0zVf2EmJrxUsxUYLulwpKSMfF9wV1c=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2010 (0x7da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Aug 22 21:16:40 2025 GMT Not After : Aug 29 21:16:40 2025 GMT Subject: CN=68a8de38-80f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:69:f2:9f:c1:06:24:ec:3f:d5:78:48:7d:7f: 20:f1:8f:61:38:f1:ba:09:a7:41:88:dd:8d:a0:d1: af:e8:39:5c:13:75:eb:51:71:2b:f3:62:5e:b7:98: ee:4b:0c:ee:0e:a8:0d:3c:4a:0a:48:f4:84:ec:3c: 4a:44:e2:be:eb:5b:40:9a:89:eb:71:39:85:44:46: 45:43:ff:57:78:d7:4b:5d:ba:fa:e0:49:f8:cf:e0: e8:f3:71:a8:5f:ec:f0:e4:90:01:29:ce:ae:53:76: 38:50:c4:55:40:cd:e1:8d:b9:1e:53:3d:39:35:87: f8:e7:bb:ce:85:a4:3f:b5:9f:5f:2d:57:7a:8d:55: fc:11:0d:0b:a8:52:dc:51:1b:0e:e3:8f:5d:d6:e1: e2:d1:76:c6:7e:eb:a7:7e:6f:53:5c:b1:54:8e:83: 80:a5:80:cc:6f:e7:b6:b9:9a:be:b9:8e:bd:7f:99: 8e:fa:5e:7d:11:72:e7:2e:5e:52:50:bf:93:1d:9f: 02:f0:e1:a6:df:82:34:80:60:04:3b:74:80:f7:53: 68:f5:25:50:8b:50:cb:74:9b:4a:8a:19:13:d0:12: 09:d0:70:3a:4a:f1:7f:5a:20:5b:c3:cd:c0:3d:8a: 2e:11:2f:5c:c8:74:d7:af:1c:78:11:a8:74:34:34: e2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A5:ED:5B:F7:FD:F9:50:CE:5F:99:08:ED:21:FC:FF:DF:14:E5:5E X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:bc:79:b7:59:b2:91:6b:e0:a3:42:04:82:85:d6:3e:39:d3: 9c:46:bd:84:0b:87:ed:2e:97:d9:51:aa:3a:d4:f6:e1:05:aa: a2:dc:f8:22:18:97:e1:06:55:68:95:8f:ad:5b:48:3f:78:98: 42:28:88:9f:3a:63:17:64:ee:b8:6d:44:4b:b9:30:18:35:62: ba:4f:e0:9d:87:a2:48:b4:2d:e3:10:26:30:1f:30:77:08:8f: 26:34:8c:6f:5b:2d:b3:5f:8f:01:20:fd:26:50:53:a1:d6:32: 88:cd:33:45:f8:56:85:98:f2:8d:a2:0f:70:b0:48:57:b5:74: 0f:d1:0a:19:4b:c8:0a:41:31:ab:7b:f1:52:07:a1:9e:db:b1: ea:6e:e9:80:25:76:93:a4:d9:46:01:3c:79:a9:ab:7f:b0:01: 03:df:4c:82:45:9d:bc:80:0f:60:af:dd:54:9d:a3:a2:21:6b: 52:aa:08:81:df:81:37:8d:a1:6e:a9:4b:22:8b:70:69:6e:77: 15:dd:f0:8d:ac:ad:29:21:b2:77:87:b7:0f:36:cd:4f:95:e6: 5f:2e:a4:9e:8b:e4:c5:fe:c9:2b:29:a9:d1:cd:dc:92:df:2f: 8c:1d:2c:70:fc:e6:96:9f:3d:57:50:d2:f6:df:66:aa:6c:c2: 06:aa:f3:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwODIyMjExNjQwWhcNMjUwODI5MjExNjQwWjAYMRYwFAYD VQQDEw02OGE4ZGUzOC04MGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGnyn8EGJOw/1XhIfX8g8Y9hOPG6CadBiN2NoNGv6DlcE3XrUXEr82Jet5ju SwzuDqgNPEoKSPSE7DxKROK+61tAmonrcTmFREZFQ/9XeNdLXbr64En4z+Do83Go X+zw5JABKc6uU3Y4UMRVQM3hjbkeUz05NYf457vOhaQ/tZ9fLVd6jVX8EQ0LqFLc URsO449d1uHi0XbGfuunfm9TXLFUjoOApYDMb+e2uZq+uY69f5mO+l59EXLnLl5S UL+THZ8C8OGm34I0gGAEO3SA91No9SVQi1DLdJtKihkT0BIJ0HA6SvF/WiBbw83A PYouES9cyHTXrxx4Eah0NDTimwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNel7Vv3 /flQzl+ZCO0h/P/fFOVeMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcvHm3WbKRa+CjQgSChdY+OdOcRr2EC4ftLpfZUao61PbhBaqi3Pgi GJfhBlVolY+tW0g/eJhCKIifOmMXZO64bURLuTAYNWK6T+Cdh6JItC3jECYwHzB3 CI8mNIxvWy2zX48BIP0mUFOh1jKIzTNF+FaFmPKNog9wsEhXtXQP0QoZS8gKQTGr e/FSB6Ge27HqbumAJXaTpNlGATx5qat/sAED30yCRZ28gA9gr91UnaOiIWtSqgiB 34E3jaFuqUsii3BpbncV3fCNrK0pIbJ3h7cPNs1PleZfLqSei+TF/skrKanRzdyS 3y+MHSxw/OaWnz1XUNL232aqbMIGqvOP -----END CERTIFICATE-----Generated at Sat Aug 23 18:52:43 2025 by rpki-client