$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: sCM6hiH4m3KQ+OCMrh65hEXgLUSgQxiDvqhOb4F/DlE= Subject key identifier: 2B:B9:B4:DA:16:DC:50:C9:AF:EC:47:6F:6B:2D:13:48:28:87:10:5B Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 07 Signing time: Sat 23 Aug 2025 08:22:58 +0000 Manifest this update: Sat 23 Aug 2025 08:22:57 +0000 Manifest next update: Sat 30 Aug 2025 08:22:57 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: VzT0S9QK8ZX16IieVwNQHLGYt0gD5nsTa0Fy1RLOFG8=) 2: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 3: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) 4: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 5: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 6: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Aug 23 08:22:57 2025 GMT Not After : Aug 30 08:22:57 2025 GMT Subject: CN=68a97a61-9bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:d0:9f:66:1e:89:49:d8:ca:68:a7:29:68: a8:1e:9a:39:eb:9a:b3:b1:fe:73:8d:16:c5:8b:b9: d4:d6:25:69:12:bb:cc:f9:8c:64:89:d3:d4:cd:5f: 08:25:b2:6b:b4:e7:0c:9d:ed:1b:9b:da:79:f7:5c: b5:37:94:d5:b8:f3:79:eb:48:9d:c5:be:46:c2:d9: 15:26:17:9d:fb:c5:65:8c:2c:17:8b:de:42:f1:8a: 2f:f3:63:f7:35:4a:0f:d4:87:e6:62:6d:9b:48:40: 32:33:75:a3:81:03:ae:e5:f6:9f:0a:90:f9:47:ee: 9d:dc:93:76:e4:5c:19:9a:d2:5b:e8:bb:87:2c:57: b9:5e:57:e8:5d:c0:97:22:8b:8e:b7:fc:4c:c6:1d: 87:04:44:eb:5d:f3:c4:e2:a3:5e:af:24:68:df:88: 37:3e:33:a9:35:4c:68:50:e8:58:4f:cb:a7:27:85: 20:05:7d:1c:a5:ba:8b:a6:8e:5d:ea:b3:9c:8b:73: 99:23:2c:23:b5:45:17:b0:41:24:e0:01:91:5a:62: 13:75:56:97:e9:c9:05:cf:d1:30:67:a3:9f:24:e3: db:dd:4c:a1:da:1a:b3:d9:e6:4c:63:52:d6:3a:41: 61:ae:1b:eb:41:4f:81:4d:e3:62:eb:93:18:43:fc: e0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B9:B4:DA:16:DC:50:C9:AF:EC:47:6F:6B:2D:13:48:28:87:10:5B X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:36:40:a8:34:7a:43:54:54:0e:79:05:cc:10:b9:c4:b8:d1: 80:96:5d:df:a3:77:18:83:ab:3c:d8:d3:a7:e3:e0:d8:3d:85: c0:91:ca:47:ee:c1:30:82:b5:fe:19:62:bf:02:77:a0:11:d0: 74:88:40:98:7b:4b:87:56:16:71:36:77:9d:3e:af:e6:90:19: 8c:db:51:70:16:95:a5:27:9a:d6:d1:6a:6f:a3:ca:db:73:35: a0:0e:e8:f1:0d:78:05:be:08:81:51:fd:41:c1:36:7a:09:a3: 52:b1:f0:7f:fc:8e:79:51:51:ca:0a:02:27:32:61:27:db:ad: a0:86:09:32:84:17:ba:b4:07:1d:32:4f:0d:56:a9:30:ea:e2: 36:8d:55:c6:dd:9c:a8:8e:ec:5c:61:24:1f:8d:c7:7b:1f:59: d3:53:e9:c4:df:f4:2f:10:8a:40:56:97:89:3a:e8:0d:e8:4f: 15:ba:7f:38:42:3d:8c:41:59:37:ec:57:65:44:22:62:50:a7: 19:dd:ae:2f:6f:b3:37:25:f8:a5:bb:40:ba:a8:cd:44:4f:fa: d7:e5:cb:4d:6d:e0:f0:89:64:52:03:24:4c:02:25:ea:4a:38: ad:f4:e3:ad:c2:26:86:82:6c:bb:e8:41:3a:8e:8a:e3:a0:58: 15:31:7c:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTA4MjMwODIyNTdaFw0yNTA4MzAwODIyNTdaMBgxFjAUBgNV BAMTDTY4YTk3YTYxLTliZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs6NCfZh6JSdjKaKcpaKgemjnrmrOx/nONFsWLudTWJWkSu8z5jGSJ09TNXwgl smu05wyd7Rub2nn3XLU3lNW483nrSJ3FvkbC2RUmF537xWWMLBeL3kLxii/zY/c1 Sg/Uh+ZibZtIQDIzdaOBA67l9p8KkPlH7p3ck3bkXBma0lvou4csV7leV+hdwJci i463/EzGHYcEROtd88Tio16vJGjfiDc+M6k1TGhQ6FhPy6cnhSAFfRyluoumjl3q s5yLc5kjLCO1RRewQSTgAZFaYhN1VpfpyQXP0TBno58k49vdTKHaGrPZ5kxjUtY6 QWGuG+tBT4FN42LrkxhD/OBVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK7m02hbc UMmv7Edvay0TSCiHEFswHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJA2QKg0ekNUVA55BcwQucS40YCWXd+jdxiDqzzY06fj4Ng9hcCRykfu wTCCtf4ZYr8Cd6AR0HSIQJh7S4dWFnE2d50+r+aQGYzbUXAWlaUnmtbRam+jyttz NaAO6PENeAW+CIFR/UHBNnoJo1Kx8H/8jnlRUcoKAicyYSfbraCGCTKEF7q0Bx0y Tw1WqTDq4jaNVcbdnKiO7FxhJB+Nx3sfWdNT6cTf9C8QikBWl4k66A3oTxW6fzhC PYxBWTfsV2VEImJQpxndri9vszcl+KW7QLqozURP+tfly01t4PCJZFIDJEwCJepK OK30463CJoaCbLvoQTqOiuOgWBUxfHI= -----END CERTIFICATE-----Generated at Sat Aug 23 18:12:44 2025 by rpki-client