$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: 93i2t+Gp2qUNv9S4IJz9ktfHjGo3Yzs5gFlPs9yMC5o= Subject key identifier: 16:68:EF:00:55:9E:A3:BA:AC:87:FB:0C:C8:C9:F5:B6:7F:BD:B6:62 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 34ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 34D5 Signing time: Fri 22 Aug 2025 15:02:44 +0000 Manifest this update: Fri 22 Aug 2025 15:02:43 +0000 Manifest next update: Fri 29 Aug 2025 15:02:43 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: GWGH7uvE9ZBKYalOUzR+TEY7OLrngpIExiB4ihiug0g=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: ty5I3DahkDwmuQG0MkBj34whcyz61V92kdrY50JAllc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Aug 22 15:02:43 2025 GMT Not After : Aug 29 15:02:43 2025 GMT Subject: CN=68a88693-2926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:74:d9:cd:e7:e5:b0:7f:71:2d:6f:37:f3: ea:f5:34:80:cc:c6:d4:c5:e1:57:2e:6b:fb:22:59: 31:3b:be:8d:db:4c:f2:c8:40:21:d8:6a:dc:25:9c: 36:ea:e6:42:c8:aa:e9:ee:cb:ca:10:c1:f7:0e:fe: 4c:4b:ab:81:7f:3d:40:a4:6f:ba:53:3b:9c:bd:52: 03:58:2e:d2:5b:8e:67:81:15:dd:a0:52:f0:35:d5: 1d:d1:14:8f:03:86:36:ed:ba:41:d7:c4:53:7d:70: 92:44:eb:69:fb:f7:1e:c0:5a:83:cb:ed:90:31:c5: 9c:30:2f:2e:be:9f:02:53:0e:31:47:e3:bc:49:94: 13:87:09:74:34:73:a6:2e:da:96:a6:c0:59:39:84: 7a:42:a2:4c:65:c2:d1:4b:4f:1f:17:55:1b:05:df: 2f:ad:1c:70:c2:96:a6:dd:b4:f5:fe:d4:4d:aa:38: 70:c1:ec:d7:8a:a5:87:d5:3a:91:6d:9b:43:57:f1: e4:8b:d9:23:fb:72:fd:95:29:40:cc:42:f2:e4:e3: 21:28:0d:0e:55:01:c8:a8:98:e3:69:16:fb:a9:ce: f0:31:61:f6:aa:59:d5:66:b1:4b:73:77:4d:af:77: 01:78:86:36:93:d3:b9:94:13:32:bc:ba:3f:85:5c: dc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:68:EF:00:55:9E:A3:BA:AC:87:FB:0C:C8:C9:F5:B6:7F:BD:B6:62 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:57:97:af:e6:0f:60:bb:3c:e5:9e:b3:72:24:d4:a1:80:fc: 7a:66:43:1b:80:11:46:fa:27:5b:9a:da:e4:fe:12:14:7e:67: cf:9b:6f:19:3e:d9:fe:05:fb:f5:20:6c:2f:2e:f7:8a:80:8d: c8:4a:90:de:2c:fb:8f:c2:39:a9:a9:87:42:de:68:bc:bd:a5: 74:35:60:d7:92:92:57:f8:d6:04:ab:71:51:08:46:20:c9:c0: 1a:eb:fb:1f:72:b5:65:44:0b:6b:3f:44:92:bd:bd:33:73:da: 25:02:3f:8a:c6:2d:b3:bc:cf:2c:b4:af:ac:7b:1f:a6:10:40: 45:3c:2e:3e:ba:0e:f3:d0:55:3b:d8:1f:22:67:2e:92:cb:4b: 0a:fd:3d:42:f5:64:98:8c:88:8d:c5:1f:5d:28:bc:9c:b0:64: c3:b1:4f:de:74:65:bb:56:17:2b:6f:bf:f1:31:bb:74:a0:da: 71:3e:00:8c:f3:a8:22:2e:8a:b6:15:91:ea:13:ec:b0:44:e3: 51:ec:6c:f9:15:5d:6f:ed:f2:ef:4a:aa:65:10:7e:26:3c:03: 82:20:cf:8c:01:9e:23:4a:40:8c:a8:b7:80:6c:95:09:9e:df: a8:e3:10:b1:89:43:16:21:2a:7c:27:fe:c2:4d:af:ec:63:ac: fc:6c:2b:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwODIyMTUwMjQzWhcNMjUwODI5MTUwMjQzWjAYMRYwFAYD VQQDEw02OGE4ODY5My0yOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Q102c3n5bB/cS1vN/Pq9TSAzMbUxeFXLmv7IlkxO76N20zyyEAh2GrcJZw2 6uZCyKrp7svKEMH3Dv5MS6uBfz1ApG+6UzucvVIDWC7SW45ngRXdoFLwNdUd0RSP A4Y27bpB18RTfXCSROtp+/cewFqDy+2QMcWcMC8uvp8CUw4xR+O8SZQThwl0NHOm LtqWpsBZOYR6QqJMZcLRS08fF1UbBd8vrRxwwpam3bT1/tRNqjhwwezXiqWH1TqR bZtDV/Hki9kj+3L9lSlAzELy5OMhKA0OVQHIqJjjaRb7qc7wMWH2qlnVZrFLc3dN r3cBeIY2k9O5lBMyvLo/hVzcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZo7wBV nqO6rIf7DMjJ9bZ/vbZiMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCV5ev5g9guzzlnrNyJNShgPx6ZkMbgBFG+idbmtrk/hIUfmfPm28Z Ptn+Bfv1IGwvLveKgI3ISpDeLPuPwjmpqYdC3mi8vaV0NWDXkpJX+NYEq3FRCEYg ycAa6/sfcrVlRAtrP0SSvb0zc9olAj+Kxi2zvM8stK+sex+mEEBFPC4+ug7z0FU7 2B8iZy6Sy0sK/T1C9WSYjIiNxR9dKLycsGTDsU/edGW7Vhcrb7/xMbt0oNpxPgCM 86giLoq2FZHqE+ywRONR7Gz5FV1v7fLvSqplEH4mPAOCIM+MAZ4jSkCMqLeAbJUJ nt+o4xCxiUMWISp8J/7CTa/sY6z8bCu9 -----END CERTIFICATE-----Generated at Sat Aug 23 16:13:01 2025 by rpki-client