$ rpki-client -vvf rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft File: IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft (raw, json) Hash identifier: WMPeCpnlP6TekYqYQT2PoLMEm1Sg9eYuajdNQ15DjKA= Subject key identifier: 06:E6:01:92:70:E2:51:0E:60:7E:41:54:34:0D:91:97:E0:88:AD:ED Authority key identifier: 21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 Certificate issuer: /CN=A91159B7/serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Certificate serial: 0D2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft Manifest number: 0D22 Signing time: Tue 12 Aug 2025 18:13:35 +0000 Manifest this update: Tue 12 Aug 2025 18:13:34 +0000 Manifest next update: Tue 19 Aug 2025 18:13:34 +0000 Files and hashes: 1: IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl (hash: MKgVcUqDnDi8O+brbLxY6HRUycTyi6psNiUka8w8GOc=) 2: 7FC0801ED4EF11EC84AABC0CC4F9AE02.roa (hash: KmGf8Zvcyufmo51iUasTSRX2HWDW8cDhuB6ClqAH62g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91159B7, serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Validity Not Before: Aug 12 18:13:34 2025 GMT Not After : Aug 19 18:13:34 2025 GMT Subject: CN=689b844e-f36a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:69:3c:89:69:4d:d5:fb:f9:cd:da:f9:04: 77:61:43:2f:7a:d6:1c:f2:9e:98:a7:27:83:c0:b5: e4:eb:c5:36:57:26:e8:1b:05:8b:30:32:21:4b:94: b5:65:76:b1:69:a1:7a:68:ac:a0:d4:d6:12:74:8a: 08:c5:6e:24:a4:b3:96:28:de:e7:11:de:2f:c7:c4: f9:eb:ad:da:fa:5f:59:a0:19:65:87:7e:d4:1d:d6: c2:d5:de:34:ba:98:d6:8f:8a:a6:a3:be:b0:55:6f: b6:57:a2:e6:1e:c3:2b:23:f4:b9:34:98:c7:3e:35: 3e:bb:36:4c:fb:34:25:0f:bb:92:68:a1:cf:c6:ac: b4:40:2f:0d:74:a2:a4:3e:d3:7d:10:7b:59:5c:20: 9b:8b:d2:4f:89:74:23:05:d8:fb:af:cd:dc:45:80: 58:3f:27:25:3e:6e:c9:57:4c:03:79:5a:26:59:df: 6b:ea:92:19:ad:9b:f4:99:d9:0d:3d:a9:bc:51:c6: 61:e3:87:78:d0:31:f9:c9:6b:87:38:7c:01:8a:30: c3:0e:35:60:59:d9:0e:b8:ec:0f:8b:f9:93:1c:4d: c2:d3:fa:f4:f4:13:82:6e:0a:f8:3d:ae:6f:37:21: 70:e0:e6:63:a8:4d:5d:10:ca:1f:ed:c8:c4:6f:6a: 3d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E6:01:92:70:E2:51:0E:60:7E:41:54:34:0D:91:97:E0:88:AD:ED X509v3 Authority Key Identifier: keyid:21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:04:2e:be:67:6b:7e:36:26:ea:5b:95:22:1a:ed:0e:14:28: 25:b3:2d:87:f3:8d:51:46:df:1b:65:f0:41:b9:29:40:ec:ee: ec:0e:07:80:68:8f:31:77:87:12:3c:d1:dc:35:f4:41:3d:a6: c5:3e:ef:f9:29:67:de:c6:bc:a9:52:14:b5:b8:8c:5a:7c:56: 17:31:38:8d:3a:41:31:cf:d7:0d:88:2c:d9:f5:2b:2e:a9:4b: 3e:0d:2a:27:d9:24:a1:e5:46:34:71:62:c5:54:c8:ed:97:1b: da:2c:e4:31:76:59:97:fa:67:3e:70:41:47:10:85:0c:57:c3: 6d:21:6d:15:2b:99:e6:a0:51:67:d7:06:e6:53:7a:b7:a1:df: 63:a2:bd:a0:d3:f3:11:12:36:26:40:54:59:1d:d9:4a:cc:1b: f5:d9:eb:e2:13:a7:62:4d:34:31:d8:1e:86:6a:3d:1d:12:fe: f8:df:e4:ab:3c:65:b1:2b:7b:84:1b:f7:49:18:6e:5c:78:64: 12:7d:4a:7b:99:35:21:b0:5a:e6:39:4a:8b:0a:b3:10:57:1e: fa:c1:8a:d1:c8:93:a0:ba:a8:de:80:49:f8:92:54:3b:2b:3b: 9d:01:54:57:dc:5b:5a:98:90:d5:a6:63:74:df:cd:b3:83:99: e3:2b:c0:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5QjcxMTAvBgNVBAUTKDIxRjIwMjI3NTU5REIxRjg2Mzg0OUFCNjQzMjMzQzNF OTM1Nzc2QTYwHhcNMjUwODEyMTgxMzM0WhcNMjUwODE5MTgxMzM0WjAYMRYwFAYD VQQDEw02ODliODQ0ZS1mMzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc9pPIlpTdX7+c3a+QR3YUMvetYc8p6YpyeDwLXk68U2VyboGwWLMDIhS5S1 ZXaxaaF6aKyg1NYSdIoIxW4kpLOWKN7nEd4vx8T5663a+l9ZoBllh37UHdbC1d40 upjWj4qmo76wVW+2V6LmHsMrI/S5NJjHPjU+uzZM+zQlD7uSaKHPxqy0QC8NdKKk PtN9EHtZXCCbi9JPiXQjBdj7r83cRYBYPyclPm7JV0wDeVomWd9r6pIZrZv0mdkN Pam8UcZh44d40DH5yWuHOHwBijDDDjVgWdkOuOwPi/mTHE3C0/r09BOCbgr4Pa5v NyFw4OZjqE1dEMof7cjEb2o9DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbmAZJw 4lEOYH5BVDQNkZfgiK3tMB8GA1UdIwQYMBaAFCHyAidVnbH4Y4SatkMjPD6TV3am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTlCNy9BNEVDNTNGNkUy QjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNmaGpoSnEyUXlNOFBwTlhk cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmSUNKMVdkc2ZoamhKcTJReU04UHBOWGRxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTlCNy9BNEVDNTNGNkUyQjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNm aGpoSnEyUXlNOFBwTlhkcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPBC6+Z2t+NibqW5UiGu0OFCglsy2H841RRt8bZfBBuSlA7O7sDgeA aI8xd4cSPNHcNfRBPabFPu/5KWfexrypUhS1uIxafFYXMTiNOkExz9cNiCzZ9Ssu qUs+DSon2SSh5UY0cWLFVMjtlxvaLOQxdlmX+mc+cEFHEIUMV8NtIW0VK5nmoFFn 1wbmU3q3od9jor2g0/MREjYmQFRZHdlKzBv12eviE6diTTQx2B6Gaj0dEv743+Sr PGWxK3uEG/dJGG5ceGQSfUp7mTUhsFrmOUqLCrMQVx76wYrRyJOguqjegEn4klQ7 KzudAVRX3FtamJDVpmN0382zg5njK8CV -----END CERTIFICATE-----Generated at Wed Aug 13 02:45:19 2025 by rpki-client