$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: rBz2nwn8550uH7tBza5NdFrYy229SR0jySu0doELsY0= Subject key identifier: D2:D3:A7:12:7F:ED:C4:1C:39:C1:9F:47:F6:F0:53:B5:7C:6F:43:C8 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 18C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 18C0 Signing time: Fri 08 Aug 2025 16:38:08 +0000 Manifest this update: Fri 08 Aug 2025 16:38:08 +0000 Manifest next update: Fri 15 Aug 2025 16:38:08 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: UQAmz7oUsT1pu+jTwAira2ANH/09PFdYIhl0pT31IWk=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6345 (0x18c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Aug 8 16:38:08 2025 GMT Not After : Aug 15 16:38:08 2025 GMT Subject: CN=689627f0-2d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:99:45:ff:c0:8a:7f:3e:05:6c:cf:a5:db: 85:fd:62:7f:74:aa:94:37:c6:c8:39:b0:64:9a:74: 4a:18:25:aa:cb:fe:9c:e4:dc:7c:1c:45:19:3e:c2: 02:91:18:07:e9:15:cb:de:c8:aa:85:c9:ec:c1:6e: 50:e6:e9:07:d7:67:22:83:60:2f:11:6e:f6:52:38: 6b:b5:56:af:15:28:50:3f:be:5f:d7:71:4a:73:12: 90:0a:97:b7:e7:65:cd:c1:18:c2:e2:ca:16:8b:e8: cb:f0:0f:f9:52:3b:c8:e9:db:27:76:3a:b3:4a:8f: 8c:d6:f8:27:67:aa:f1:ca:9d:f7:09:39:95:f8:e5: ce:be:f6:47:88:27:73:dc:55:fc:6f:6c:25:cc:a1: 0d:84:3b:4e:a6:cc:16:a9:19:fb:16:12:61:ea:bf: 41:29:14:e5:e8:fb:af:f6:da:4b:2a:a3:6e:68:35: fd:9f:95:23:ad:9e:2d:11:99:7a:8f:6e:f9:fb:2f: ae:45:76:4f:fe:34:98:86:1f:e0:aa:bb:66:0c:2a: 8d:b2:9e:8b:8a:8d:63:a3:96:4e:2f:62:67:17:2a: ad:7f:96:de:6c:2a:49:2b:ca:b0:1c:33:e7:59:d3: c6:5b:0c:11:0f:2f:77:41:73:59:bc:fe:9b:b8:62: 3e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D3:A7:12:7F:ED:C4:1C:39:C1:9F:47:F6:F0:53:B5:7C:6F:43:C8 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:51:f9:fd:29:7d:d7:ac:85:e9:7a:e7:cc:d0:9a:42:7f:8d: 73:39:a7:0a:9b:56:f3:b6:d2:38:e5:96:82:00:d8:ea:ef:7b: 50:ca:af:73:59:0a:75:4b:27:cc:fa:22:78:b8:43:a6:93:22: f2:71:d4:7c:97:46:3b:42:40:5a:dc:c1:17:c4:b5:86:dc:80: 27:7c:7b:99:69:53:ed:0e:cf:3c:d0:21:4c:34:cb:37:a0:65: e4:ff:02:04:7f:c0:9c:32:92:48:6e:01:8f:fb:c2:f6:8f:cf: 0e:1f:fa:60:31:df:2c:93:9a:57:58:6f:34:4a:c7:30:0f:dd: 42:05:b2:07:47:fb:65:53:8c:1f:15:b5:7f:69:73:b4:f9:24: 26:d7:68:bc:6e:60:49:36:d6:6a:ea:4e:c6:9b:b8:c8:bf:89: c4:5d:56:7c:cf:85:18:28:63:44:d0:82:12:69:82:ef:93:60: af:b7:35:1f:77:c0:b7:05:7c:49:e3:4e:e0:ca:21:bc:03:42: 95:08:51:bb:dd:63:2b:b7:f2:b8:84:50:93:30:b3:3d:dc:8a: e4:5f:33:e8:3b:b1:d5:1a:f1:28:31:7f:d5:9e:22:32:84:86: a1:a8:41:e8:6c:e1:c7:7c:b1:f4:13:c4:97:69:d9:16:87:44: 17:8b:28:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUwODA4MTYzODA4WhcNMjUwODE1MTYzODA4WjAYMRYwFAYD VQQDEw02ODk2MjdmMC0yZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvOZRf/Ain8+BWzPpduF/WJ/dKqUN8bIObBkmnRKGCWqy/6c5Nx8HEUZPsIC kRgH6RXL3siqhcnswW5Q5ukH12cig2AvEW72UjhrtVavFShQP75f13FKcxKQCpe3 52XNwRjC4soWi+jL8A/5UjvI6dsndjqzSo+M1vgnZ6rxyp33CTmV+OXOvvZHiCdz 3FX8b2wlzKENhDtOpswWqRn7FhJh6r9BKRTl6Puv9tpLKqNuaDX9n5UjrZ4tEZl6 j275+y+uRXZP/jSYhh/gqrtmDCqNsp6Lio1jo5ZOL2JnFyqtf5bebCpJK8qwHDPn WdPGWwwRDy93QXNZvP6buGI+zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLTpxJ/ 7cQcOcGfR/bwU7V8b0PIMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXUfn9KX3XrIXpeufM0JpCf41zOacKm1bzttI45ZaCANjq73tQyq9z WQp1SyfM+iJ4uEOmkyLycdR8l0Y7QkBa3MEXxLWG3IAnfHuZaVPtDs880CFMNMs3 oGXk/wIEf8CcMpJIbgGP+8L2j88OH/pgMd8sk5pXWG80SscwD91CBbIHR/tlU4wf FbV/aXO0+SQm12i8bmBJNtZq6k7Gm7jIv4nEXVZ8z4UYKGNE0IISaYLvk2CvtzUf d8C3BXxJ407gyiG8A0KVCFG73WMrt/K4hFCTMLM93IrkXzPoO7HVGvEoMX/VniIy hIahqEHobOHHfLH0E8SXadkWh0QXiyi3 -----END CERTIFICATE-----Generated at Sun Aug 10 05:47:09 2025 by rpki-client