$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: 1ObfLgdeCWWkjxRwbzCr0b6yY8ch6D3WfaGC2p5WD0o= Subject key identifier: 33:EC:5E:03:9C:D1:C9:31:64:E8:65:EE:CD:6E:B0:72:C6:03:0A:7B Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 0823 Signing time: Fri 22 Aug 2025 20:57:30 +0000 Manifest this update: Fri 22 Aug 2025 20:57:30 +0000 Manifest next update: Fri 29 Aug 2025 20:57:30 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: FeF1oMkNci+rOAun9u1vs6285TsN+5RvrlXDYmZSeH4=) 2: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: HYLlaeYCfOhwQIw7Fb2O6gPao8D0dgK0DzH31riAA30=) 3: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: CYIyqLTD/N7RHKkzVI9yCjfPCRo2bvj5EsxmVhBkQbM=) 4: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: EAWxypzDCQPQzqcMnvR1K/XDUjaENmu81MPhjQzqwkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Aug 22 20:57:30 2025 GMT Not After : Aug 29 20:57:30 2025 GMT Subject: CN=68a8d9ba-837c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:17:b1:69:45:21:a4:dc:26:9c:ee:a9:35:03: 38:4a:b7:e8:50:f1:6f:f0:6e:dd:6f:4e:71:e3:11: 2d:6f:a5:1c:b3:5c:0c:13:f7:f2:2d:ed:90:2e:4c: 03:d7:d0:f0:d8:34:b7:c8:8d:8f:e0:d6:0a:77:8b: 3f:f0:85:3f:4d:e9:ce:cc:f3:dd:ff:5f:e9:1f:36: 17:dc:57:1b:f9:4d:7a:a3:52:1e:d6:eb:2a:3b:e7: 84:e9:89:cd:17:ae:4d:f7:d0:d8:8a:e7:88:2b:a9: 47:95:2d:d9:60:40:a9:14:40:22:fb:58:21:a5:8e: ac:85:56:75:63:37:ea:50:18:72:2f:20:2d:f6:69: 5b:aa:68:dc:1b:6c:28:68:e8:bb:19:7f:f8:7b:69: 5b:ba:c0:03:1a:09:9e:aa:03:a8:2d:ba:2b:22:6e: d5:9b:0f:85:9f:17:39:cc:aa:e9:7e:84:7c:e2:ae: c5:b8:c1:f6:f9:d9:97:1f:e5:32:7d:83:90:60:c5: e0:ad:bd:c2:94:34:77:95:17:cb:f6:48:65:7a:4e: 02:e0:4d:f1:fd:26:9c:d0:ff:ec:ee:77:85:53:91: c1:97:0a:f1:bd:dc:0a:a1:17:99:31:d4:22:c9:48: d3:63:ac:9b:f4:66:68:a9:fa:ce:8c:a8:b0:df:43: 72:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:EC:5E:03:9C:D1:C9:31:64:E8:65:EE:CD:6E:B0:72:C6:03:0A:7B X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b1:6d:5b:51:e9:3b:f7:08:fc:83:2b:9b:b2:10:ad:3d:78: b0:3f:a2:5f:f4:a0:af:59:57:e7:88:9c:ca:00:62:5b:83:59: d9:c9:79:45:87:5e:6d:a4:07:99:6a:92:73:d0:0d:a0:4a:0e: 3c:bc:85:56:7b:06:d0:78:aa:09:b7:05:8d:27:22:69:9e:b0: 89:2f:97:2f:df:6d:4d:6f:5c:bf:1f:15:a4:be:7e:3f:dd:85: a9:2f:9f:7a:f9:8d:18:16:1b:08:cf:64:25:7f:ea:a0:96:3c: ce:3a:97:39:f6:c3:38:25:a2:d5:7c:60:63:76:d8:c7:c5:0c: 90:d7:af:90:94:79:d7:e1:28:db:6e:c1:d3:15:79:67:c9:bc: a9:df:8e:47:9b:c8:8b:84:40:fa:30:25:b1:61:aa:19:71:3b: 4c:24:10:ef:95:cd:42:b5:05:14:23:31:ca:22:a8:f6:bf:c2: 69:e9:d3:1c:0a:e1:44:55:11:4c:68:e2:4e:75:52:6c:8e:23: ad:61:89:14:f0:f7:cd:97:3c:39:15:58:42:9f:29:dd:79:c3: 0a:e7:cc:d7:3e:ed:4d:48:c5:07:ec:b9:5e:48:0d:98:a9:29: 16:62:85:27:f5:9c:d9:41:d7:fe:db:76:6f:4e:b8:6e:b2:a5: 59:4d:32:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjUwODIyMjA1NzMwWhcNMjUwODI5MjA1NzMwWjAYMRYwFAYD VQQDEw02OGE4ZDliYS04MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxexaUUhpNwmnO6pNQM4SrfoUPFv8G7db05x4xEtb6Ucs1wME/fyLe2QLkwD 19Dw2DS3yI2P4NYKd4s/8IU/TenOzPPd/1/pHzYX3Fcb+U16o1Ie1usqO+eE6YnN F65N99DYiueIK6lHlS3ZYECpFEAi+1ghpY6shVZ1YzfqUBhyLyAt9mlbqmjcG2wo aOi7GX/4e2lbusADGgmeqgOoLborIm7Vmw+Fnxc5zKrpfoR84q7FuMH2+dmXH+Uy fYOQYMXgrb3ClDR3lRfL9khlek4C4E3x/Sac0P/s7neFU5HBlwrxvdwKoReZMdQi yUjTY6yb9GZoqfrOjKiw30NyPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPsXgOc 0ckxZOhl7s1usHLGAwp7MB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWsW1bUek79wj8gyubshCtPXiwP6Jf9KCvWVfniJzKAGJbg1nZyXlF h15tpAeZapJz0A2gSg48vIVWewbQeKoJtwWNJyJpnrCJL5cv321Nb1y/HxWkvn4/ 3YWpL596+Y0YFhsIz2Qlf+qgljzOOpc59sM4JaLVfGBjdtjHxQyQ16+QlHnX4Sjb bsHTFXlnybyp345Hm8iLhED6MCWxYaoZcTtMJBDvlc1CtQUUIzHKIqj2v8Jp6dMc CuFEVRFMaOJOdVJsjiOtYYkU8PfNlzw5FVhCnyndecMK58zXPu1NSMUH7LleSA2Y qSkWYoUn9ZzZQdf+23ZvTrhusqVZTTL5 -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:37 2025 by rpki-client