$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft File: sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft (raw, json) Hash identifier: J8ZiaD0uDaRkJ9U3bGhxz7Bb654F46TgjKCDTUruZlY= Subject key identifier: 64:BC:E2:D6:7C:7A:DB:4E:E8:61:4B:13:C2:5B:9D:02:00:D6:C2:50 Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft Manifest number: 23 Signing time: Sat 09 Aug 2025 08:21:33 +0000 Manifest this update: Sat 09 Aug 2025 08:21:32 +0000 Manifest next update: Sat 16 Aug 2025 08:21:32 +0000 Files and hashes: 1: sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl (hash: 5dm5XQfyqyFrpe6/Ky4n0IX/LbNDUUQs6kdPcy1Y/k8=) 2: BDF659C4445111F0945A7E49C4F9AE02.roa (hash: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Aug 9 08:21:32 2025 GMT Not After : Aug 16 08:21:32 2025 GMT Subject: CN=6897050c-4833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:75:38:e5:87:eb:6b:2c:e4:b0:b8:78:90:3c: aa:4c:4f:3a:06:7c:7f:5f:9c:cb:c4:86:35:b0:ab: bd:7d:87:91:0b:83:7e:db:3a:a7:0d:70:50:ac:63: 5c:7e:73:6d:fe:e5:01:14:0c:1e:67:21:86:f5:49: d8:ac:39:cd:bc:00:59:91:c7:c5:4d:f9:f6:c2:c0: 34:21:eb:e3:64:81:c7:f6:a2:23:70:b4:ce:67:94: 11:56:d2:90:46:22:63:bd:ea:ab:71:2b:f4:b9:ab: f5:1d:d4:df:72:3c:e5:28:e9:99:cf:48:e1:a0:88: ae:5e:b4:d5:ab:e5:9b:5e:b7:89:b8:3a:24:24:84: 9b:63:93:2d:12:05:27:a2:50:0c:a4:13:4e:ff:37: bd:84:57:1b:f6:79:0b:b5:89:c3:f9:8a:d5:5c:e8: 85:28:2a:64:78:d6:55:e2:5e:40:b4:c8:ac:78:bd: 82:b5:74:d0:d1:e9:67:9d:02:fc:97:94:89:a5:cd: c6:6e:dd:9b:d3:32:e1:27:e6:99:2d:0f:30:99:81: 2c:cf:15:c1:e5:e3:e3:9c:63:d3:12:9c:8f:c7:34: 43:f8:78:ba:ba:0a:a6:4a:0e:0c:1c:1b:ca:54:ae: f9:28:32:d9:84:66:c6:34:3c:5f:ef:4a:16:28:53: 50:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:BC:E2:D6:7C:7A:DB:4E:E8:61:4B:13:C2:5B:9D:02:00:D6:C2:50 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b0:f1:a7:ce:d6:fd:8a:62:58:32:76:fa:da:be:7d:94:a0: 45:5b:4f:f5:ae:aa:0b:10:b1:ae:97:87:c5:af:32:51:da:7d: 5f:8c:fa:32:d2:35:65:a6:d1:b0:69:f5:67:0d:4c:34:b2:2d: 77:b0:8c:30:53:a1:ee:89:d4:60:06:87:1c:51:bd:af:81:bf: 29:cd:60:f8:57:ef:13:3d:33:98:39:e4:78:15:d0:aa:0f:c8: 9f:3d:c3:86:bc:b4:d5:6b:22:be:7e:cd:54:34:4e:00:a3:ba: ec:de:fc:bb:28:ba:1d:09:47:6b:fa:16:dc:46:da:4a:f8:34: 76:51:17:36:3c:2b:d2:1a:ec:bd:4d:70:d0:cc:b2:f7:43:b1: 17:00:71:f1:94:5b:a0:91:43:aa:25:0b:14:30:1f:14:39:a9: d8:39:d2:eb:bb:0d:26:88:df:24:47:95:7f:c5:fe:5b:9a:78: a1:6c:ac:4b:90:f3:22:85:c3:1c:2d:98:88:24:de:26:23:f3: bc:5a:8b:2d:6c:85:13:6b:88:cc:7a:c2:31:2e:55:54:e5:31: e2:6a:2d:cb:73:7a:68:fc:2b:48:52:86:c7:b0:0a:89:8b:1a: 72:63:93:63:d5:e6:4e:11:20:f8:8e:61:81:60:b9:8a:91:02: 57:7e:2b:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTA4MDkwODIxMzJaFw0yNTA4MTYwODIxMzJaMBgxFjAUBgNV BAMTDTY4OTcwNTBjLTQ4MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCidTjlh+trLOSwuHiQPKpMTzoGfH9fnMvEhjWwq719h5ELg37bOqcNcFCsY1x+ c23+5QEUDB5nIYb1SdisOc28AFmRx8VN+fbCwDQh6+Nkgcf2oiNwtM5nlBFW0pBG ImO96qtxK/S5q/Ud1N9yPOUo6ZnPSOGgiK5etNWr5Ztet4m4OiQkhJtjky0SBSei UAykE07/N72EVxv2eQu1icP5itVc6IUoKmR41lXiXkC0yKx4vYK1dNDR6WedAvyX lImlzcZu3ZvTMuEn5pktDzCZgSzPFcHl4+OcY9MSnI/HNEP4eLq6CqZKDgwcG8pU rvkoMtmEZsY0PF/vShYoU1BxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZLzi1nx6 207oYUsTwludAgDWwlAwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD NTNBLzQ3NDUwNTZFNDQ1MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNY TExUemJoV1d6S05VQzlWQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFSw8afO1v2KYlgydvravn2UoEVbT/WuqgsQsa6Xh8WvMlHafV+M+jLS NWWm0bBp9WcNTDSyLXewjDBToe6J1GAGhxxRva+BvynNYPhX7xM9M5g55HgV0KoP yJ89w4a8tNVrIr5+zVQ0TgCjuuze/Lsouh0JR2v6FtxG2kr4NHZRFzY8K9Ia7L1N cNDMsvdDsRcAcfGUW6CRQ6olCxQwHxQ5qdg50uu7DSaI3yRHlX/F/luaeKFsrEuQ 8yKFwxwtmIgk3iYj87xaiy1shRNriMx6wjEuVVTlMeJqLctzemj8K0hShsewComL GnJjk2PV5k4RIPiOYYFguYqRAld+K2I= -----END CERTIFICATE-----Generated at Sun Aug 10 21:10:09 2025 by rpki-client