$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft File: IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json) Hash identifier: GG1kUPO30hzuuwZnMrSKaLaBgLJzntBjYYsaowWhEhw= Subject key identifier: 27:6F:97:E5:FF:39:90:DD:19:9E:1D:07:A1:68:20:CE:6C:23:F6:00 Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD Certificate issuer: /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Certificate serial: 0769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft Manifest number: 0762 Signing time: Fri 22 Aug 2025 21:45:20 +0000 Manifest this update: Fri 22 Aug 2025 21:45:19 +0000 Manifest next update: Fri 29 Aug 2025 21:45:19 +0000 Files and hashes: 1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: ZMWxk6zAwqcRcveo6KhyEXHetC4AxceT9nPix4xeVio=) 2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: 1Nd3whCoQ3UeAyTbWO/1UHp1zlBom6OZhYQFPq70UDQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D545, serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Validity Not Before: Aug 22 21:45:19 2025 GMT Not After : Aug 29 21:45:19 2025 GMT Subject: CN=68a8e4f0-d76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:12:c2:74:eb:93:28:12:1e:41:f5:67:57:25: 08:be:c5:f0:89:51:6f:fb:80:5c:ba:8f:5d:37:d5: 2f:5e:3a:e7:45:7f:37:dc:96:a5:a1:4a:39:2f:a2: 09:5d:02:90:43:66:5e:31:b9:e5:fb:5c:b9:7c:47: ac:a5:7a:fb:45:1d:94:b3:a5:41:23:f4:64:c3:7c: 91:ee:9c:04:ab:1d:8f:79:b6:8f:db:0e:77:5d:aa: e4:a8:43:08:61:15:58:0f:3d:c4:45:44:b2:1c:b6: dd:4f:20:e6:7d:f7:3f:d4:06:d2:f6:d1:d5:79:9d: d4:6a:ff:d3:eb:d2:ea:32:93:3c:7e:2b:e5:05:33: 7b:48:0f:81:83:ad:fe:6a:47:16:97:43:d7:24:f4: 26:60:b2:00:fe:49:e4:9e:5b:2a:02:b5:ca:c0:53: 44:d4:21:32:db:4f:27:5c:67:ef:dd:8d:47:56:e8: d0:3d:79:cf:28:29:7a:55:06:0e:3b:c9:f8:16:78: ab:0a:a4:57:88:1d:73:4b:04:a7:e1:b6:24:b4:cd: b7:5e:18:4c:78:92:71:09:10:49:74:a7:b3:dd:55: e2:d3:57:05:27:43:dc:a1:0d:0a:fe:52:34:9d:38: 53:73:1d:61:f2:f7:ea:1c:66:c0:48:af:e0:23:15: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6F:97:E5:FF:39:90:DD:19:9E:1D:07:A1:68:20:CE:6C:23:F6:00 X509v3 Authority Key Identifier: keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:50:76:97:5c:fe:c1:2c:66:d4:01:a7:40:84:97:be:48:11: 1f:fa:7e:7a:55:01:04:51:35:0c:8f:91:24:00:4c:1d:aa:96: dd:e6:fe:99:69:f7:3d:c2:ac:47:76:f4:d0:a3:51:2f:1a:dc: c3:4b:cd:6b:17:9f:74:03:f0:b4:df:c8:82:7f:4a:0f:cf:57: 0b:69:ef:24:3d:6b:55:f4:0e:21:5c:bd:d4:fe:db:44:de:34: 4c:79:83:39:09:1a:c7:bc:09:c1:4e:48:8a:58:55:b0:f5:15: 03:47:ad:f4:5a:c0:f5:6b:87:ff:8e:11:94:d7:74:1d:5d:c8: 16:42:20:9a:0b:11:91:51:78:27:c9:c5:a8:27:77:20:e8:c5: 72:fc:71:40:04:57:df:99:2f:ca:86:da:cc:f7:99:56:f2:9a: 4b:59:c3:a4:b1:8e:d4:a4:53:ef:f6:bd:20:99:a5:08:84:0c: a4:4c:6d:eb:cc:09:52:95:85:f1:14:21:ba:db:97:9a:f3:69: 83:af:7d:39:14:2a:c2:24:18:2e:2b:9c:42:6d:01:bb:ba:a5: c3:f3:b2:82:51:b2:a6:ee:b1:49:6c:97:24:c7:25:46:9f:ca: 19:5b:3a:e7:50:21:e8:b0:94:c1:da:81:dd:c8:28:64:cf:29: c2:3e:1d:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1NDUxMTAvBgNVBAUTKDIwODUwRkM3MEMyNUZEQjE1NUQzN0VDQjBFQzM5NjJD NkI0N0ZDQUQwHhcNMjUwODIyMjE0NTE5WhcNMjUwODI5MjE0NTE5WjAYMRYwFAYD VQQDEw02OGE4ZTRmMC1kNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRLCdOuTKBIeQfVnVyUIvsXwiVFv+4Bcuo9dN9UvXjrnRX833JaloUo5L6IJ XQKQQ2ZeMbnl+1y5fEespXr7RR2Us6VBI/Rkw3yR7pwEqx2PebaP2w53XarkqEMI YRVYDz3ERUSyHLbdTyDmffc/1AbS9tHVeZ3Uav/T69LqMpM8fivlBTN7SA+Bg63+ akcWl0PXJPQmYLIA/knknlsqArXKwFNE1CEy208nXGfv3Y1HVujQPXnPKCl6VQYO O8n4FnirCqRXiB1zSwSn4bYktM23XhhMeJJxCRBJdKez3VXi01cFJ0PcoQ0K/lI0 nThTcx1h8vfqHGbASK/gIxVG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdvl+X/ OZDdGZ4dB6FoIM5sI/YAMB8GA1UdIwQYMBaAFCCFD8cMJf2xVdN+yw7DlixrR/yt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDU0NS9GM0I5NzYwNjJF MUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9iRlYwMzdMRHNPV0xHdEhf SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJVVB4d3dsX2JGVjAzN0xEc09XTEd0SF9LMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU0NS9GM0I5NzYwNjJFMUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9i RlYwMzdMRHNPV0xHdEhfSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALUHaXXP7BLGbUAadAhJe+SBEf+n56VQEEUTUMj5EkAEwdqpbd5v6Z afc9wqxHdvTQo1EvGtzDS81rF590A/C038iCf0oPz1cLae8kPWtV9A4hXL3U/ttE 3jRMeYM5CRrHvAnBTkiKWFWw9RUDR630WsD1a4f/jhGU13QdXcgWQiCaCxGRUXgn ycWoJ3cg6MVy/HFABFffmS/KhtrM95lW8ppLWcOksY7UpFPv9r0gmaUIhAykTG3r zAlSlYXxFCG625ea82mDr305FCrCJBguK5xCbQG7uqXD87KCUbKm7rFJbJckxyVG n8oZWzrnUCHosJTB2oHdyChkzynCPh2U -----END CERTIFICATE-----Generated at Sat Aug 23 22:42:47 2025 by rpki-client