$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: hz62kctCUcbFczMP02cyVlm/BzRS/Cq/TRh3X4bOVw8= Subject key identifier: 73:9E:DF:E6:B0:D8:DA:62:4E:1C:FC:08:C3:09:27:2A:5C:C3:2A:95 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 05EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05E5 Signing time: Mon 04 Aug 2025 23:24:51 +0000 Manifest this update: Mon 04 Aug 2025 23:24:50 +0000 Manifest next update: Mon 11 Aug 2025 23:24:50 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: ax7QU3/Ng4szgppc7mjijF6QpYn80m8X++oNXMesbcE=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Aug 4 23:24:50 2025 GMT Not After : Aug 11 23:24:50 2025 GMT Subject: CN=68914142-92ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:44:19:f5:d7:bd:8b:bf:58:57:93:88:1d: bc:80:f1:84:7c:2e:f4:f7:40:d3:f7:61:6d:11:67: 8a:21:d0:18:1c:1a:8e:4d:1b:19:3e:34:57:46:00: cb:76:5c:9f:87:e7:09:3d:96:e7:eb:ff:24:a1:9e: ff:c5:ac:5e:9b:de:dd:45:40:a4:fa:8b:01:a4:cb: a5:d3:c2:02:48:f5:fc:44:0b:98:d8:db:52:44:30: 0f:15:73:c2:e2:44:18:b5:b3:fb:7f:be:9a:8d:1f: 36:28:b8:e9:a6:d8:8f:2c:4d:3a:55:0c:b9:bf:2c: ea:80:a8:c7:ca:32:1d:c5:b2:02:c5:2c:c1:fd:12: cd:f6:15:7d:8a:d5:af:92:bf:ba:7f:f1:57:99:00: 64:48:17:c5:f4:82:eb:40:30:a9:6c:77:78:91:3e: 9d:2a:5f:e6:85:c4:33:ad:3d:72:27:67:3f:77:e9: 96:c3:86:97:41:28:7b:64:22:eb:1f:c3:48:70:a7: 80:13:9c:ba:e6:7b:2d:1b:d6:2a:91:aa:2e:ef:ed: 90:79:a3:6d:53:0a:b3:42:ef:96:f1:0e:ff:c7:9b: ba:e1:11:ed:02:99:72:55:a0:2a:fa:4e:07:19:dd: fc:c2:02:65:ae:5d:b3:b9:cc:2c:93:c4:30:a7:97: bc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9E:DF:E6:B0:D8:DA:62:4E:1C:FC:08:C3:09:27:2A:5C:C3:2A:95 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:26:10:c9:1b:f5:ea:33:ac:af:b7:e2:25:4d:d0:a8:67:6e: 2b:8f:29:da:55:31:fa:8c:40:14:5f:c4:e2:5f:d4:45:9b:75: 02:37:e2:7a:89:5c:99:2d:82:e4:46:7e:73:87:1d:55:2a:e9: 71:58:4b:16:c5:93:c0:1b:e2:fd:86:20:ba:50:fe:d5:2e:e6: b7:85:cb:4f:58:bf:52:15:97:43:fd:8d:be:d3:24:df:25:33: 2e:5f:51:68:01:62:cd:4c:23:3b:f3:89:14:d2:a3:13:45:01: 03:33:af:96:12:c9:47:bd:06:ff:65:93:1e:aa:65:4d:35:fe: 32:28:bb:81:46:05:f5:2b:f5:e5:05:55:4e:5d:5d:96:6a:26: 9c:c6:68:29:5f:92:11:44:7d:aa:44:1e:9c:3e:c4:1f:89:ea: fe:25:4d:69:1d:27:f6:21:c2:13:0f:3e:d4:81:da:64:9f:05: 40:61:c9:88:62:12:2f:04:c5:2e:49:ce:cd:6f:44:cb:6c:3b: be:43:c8:ec:3c:b6:7f:24:de:11:4e:8a:92:c1:29:86:4d:74: c7:59:5a:97:dc:10:48:62:ef:dc:68:3e:be:60:4b:3e:8f:90: 81:bb:61:39:59:cd:4d:73:56:86:83:52:34:a4:42:5d:6d:bf: 18:a7:e4:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwODA0MjMyNDUwWhcNMjUwODExMjMyNDUwWjAYMRYwFAYD VQQDEw02ODkxNDE0Mi05MmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufNEGfXXvYu/WFeTiB28gPGEfC7090DT92FtEWeKIdAYHBqOTRsZPjRXRgDL dlyfh+cJPZbn6/8koZ7/xaxem97dRUCk+osBpMul08ICSPX8RAuY2NtSRDAPFXPC 4kQYtbP7f76ajR82KLjpptiPLE06VQy5vyzqgKjHyjIdxbICxSzB/RLN9hV9itWv kr+6f/FXmQBkSBfF9ILrQDCpbHd4kT6dKl/mhcQzrT1yJ2c/d+mWw4aXQSh7ZCLr H8NIcKeAE5y65nstG9Yqkaou7+2QeaNtUwqzQu+W8Q7/x5u64RHtAplyVaAq+k4H Gd38wgJlrl2zucwsk8Qwp5e8VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOe3+aw 2NpiThz8CMMJJypcwyqVMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJhDJG/XqM6yvt+IlTdCoZ24rjynaVTH6jEAUX8TiX9RFm3UCN+J6 iVyZLYLkRn5zhx1VKulxWEsWxZPAG+L9hiC6UP7VLua3hctPWL9SFZdD/Y2+0yTf JTMuX1FoAWLNTCM784kU0qMTRQEDM6+WEslHvQb/ZZMeqmVNNf4yKLuBRgX1K/Xl BVVOXV2WaiacxmgpX5IRRH2qRB6cPsQfier+JU1pHSf2IcITDz7UgdpknwVAYcmI YhIvBMUuSc7Nb0TLbDu+Q8jsPLZ/JN4RToqSwSmGTXTHWVqX3BBIYu/caD6+YEs+ j5CBu2E5Wc1Nc1aGg1I0pEJdbb8Yp+ST -----END CERTIFICATE-----Generated at Thu Aug 7 00:33:09 2025 by rpki-client