$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: 3XnqLsWdWfgo+HKHLT5RouLTxHD8O/+lm/JnOrUMXaE= Subject key identifier: ED:A1:F0:71:CB:14:9C:2C:B7:69:B8:F6:66:9C:3A:C4:F9:B1:65:13 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 139C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 136C Signing time: Fri 22 Aug 2025 17:09:10 +0000 Manifest this update: Fri 22 Aug 2025 17:09:09 +0000 Manifest next update: Fri 29 Aug 2025 17:09:09 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: ICAu4Ix/Wp5ApVz3NRQHdBgj4zLu+XBN7owP8vD2zUQ=) 2: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: opi/P1izP12wmgyZoTRlzEdUKVhs1E1PLUVMyFLXYNA=) 3: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: sh0Y5QkQRJLw2PzMnrx92KrfNcOOqsL5LvYlvLQUjWk=) 4: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: 2CAgcrLv4JGzDGMPlAonDkbaG+eLBXz0G6EKid4bHfs=) 5: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5020 (0x139c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Aug 22 17:09:09 2025 GMT Not After : Aug 29 17:09:09 2025 GMT Subject: CN=68a8a435-de24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:a4:4e:3b:5a:ea:a8:aa:65:56:b9:46:e2: 12:f8:47:33:63:c4:4e:1e:6b:eb:ae:2f:5c:9c:87: 15:04:a9:b8:41:89:96:6c:20:0e:e4:9a:d8:cc:cc: cf:59:62:fb:8c:bb:bc:96:2e:f6:fe:e5:e2:71:72: 3e:dc:06:fb:b8:f7:3d:10:fc:48:fe:1b:93:3f:f3: 5d:4a:6a:1b:59:d4:b5:b0:08:b2:59:4b:ce:c6:7c: e5:e4:7c:4a:50:47:2b:1e:64:d7:a5:ff:58:31:0b: 4b:81:93:b4:23:6a:56:c1:ce:1b:f4:5d:24:63:5e: c5:e6:6f:ae:bd:57:c5:84:15:3b:5b:ea:c3:d0:0b: 86:1d:f5:3b:28:24:e7:a4:7e:80:b1:e4:46:dc:84: d5:75:1e:27:a3:33:32:d3:24:e7:c3:c5:b1:87:e9: da:de:f3:ac:d3:68:28:5a:22:e8:3e:f2:02:63:cc: 56:b5:8b:aa:a4:59:00:b1:35:46:f1:61:24:e4:11: 7c:f9:c8:bf:b3:d2:e3:54:00:cf:e6:d9:ce:be:38: da:89:2e:2e:d0:d9:12:e5:96:fd:87:df:af:3a:40: c5:ee:7f:2f:f5:f5:ee:e3:ed:3e:c8:b9:4d:2a:62: e0:e5:dc:79:d4:e5:4c:d7:4d:b9:1c:b8:82:73:f4: e2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A1:F0:71:CB:14:9C:2C:B7:69:B8:F6:66:9C:3A:C4:F9:B1:65:13 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ea:dd:58:a4:69:12:14:ca:3f:24:1b:62:4d:c8:e8:51:1d: e8:e9:e1:1b:9a:3b:6c:35:25:cd:da:ed:9e:53:e2:ad:50:4a: f0:70:ce:b3:cb:a1:06:31:9c:e9:7e:94:ef:5e:1f:34:c7:55: d3:6d:11:5b:6b:aa:8d:7c:c6:a6:6f:2f:24:ed:60:3d:f7:1f: f6:dc:d0:35:d9:98:ef:7b:6a:aa:b9:2d:3f:84:5c:5d:ea:97: e5:a9:ff:19:ea:38:6c:b3:93:8b:f4:6a:37:99:19:26:6a:3d: 64:76:1d:cd:ef:ff:10:e1:78:e1:d1:86:c7:3e:c3:fc:4e:39: e1:a0:cb:cc:78:c7:0a:9c:6c:97:a1:bd:76:00:73:75:a0:d0: 51:35:01:0c:a8:25:42:c2:2b:a7:74:99:7d:96:bb:1b:6a:4e: 4a:95:61:e0:98:bc:c9:46:a4:a4:b2:96:38:5e:66:54:a4:f2: e9:93:b4:f1:77:7d:36:85:b9:48:8a:96:b7:74:88:1b:96:e7: 9a:df:c1:ab:85:d6:d6:90:cc:b4:c1:18:2c:50:0c:ff:9f:94: a2:c9:d0:35:fa:8f:80:90:74:a2:b0:f0:0d:af:cd:9a:fa:c9: 0a:e4:f6:e3:8c:d6:ef:a9:b8:8e:d8:c0:c9:ba:1f:aa:60:79: 43:f2:f3:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwODIyMTcwOTA5WhcNMjUwODI5MTcwOTA5WjAYMRYwFAYD VQQDEw02OGE4YTQzNS1kZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iOkTjta6qiqZVa5RuIS+EczY8ROHmvrri9cnIcVBKm4QYmWbCAO5JrYzMzP WWL7jLu8li72/uXicXI+3Ab7uPc9EPxI/huTP/NdSmobWdS1sAiyWUvOxnzl5HxK UEcrHmTXpf9YMQtLgZO0I2pWwc4b9F0kY17F5m+uvVfFhBU7W+rD0AuGHfU7KCTn pH6AseRG3ITVdR4nozMy0yTnw8Wxh+na3vOs02goWiLoPvICY8xWtYuqpFkAsTVG 8WEk5BF8+ci/s9LjVADP5tnOvjjaiS4u0NkS5Zb9h9+vOkDF7n8v9fXu4+0+yLlN KmLg5dx51OVM1025HLiCc/TiIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2h8HHL FJwst2m49macOsT5sWUTMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa6t1YpGkSFMo/JBtiTcjoUR3o6eEbmjtsNSXN2u2eU+KtUErwcM6z y6EGMZzpfpTvXh80x1XTbRFba6qNfMamby8k7WA99x/23NA12Zjve2qquS0/hFxd 6pflqf8Z6jhss5OL9Go3mRkmaj1kdh3N7/8Q4Xjh0YbHPsP8TjnhoMvMeMcKnGyX ob12AHN1oNBRNQEMqCVCwiundJl9lrsbak5KlWHgmLzJRqSkspY4XmZUpPLpk7Tx d302hblIipa3dIgbluea38GrhdbWkMy0wRgsUAz/n5SiydA1+o+AkHSisPANr82a +skK5PbjjNbvqbiO2MDJuh+qYHlD8vO5 -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:02 2025 by rpki-client