$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: BrKrP27+L3vMfKQkwBWP1SMaMdK8Gx2YKs38I0Jljww= Subject key identifier: 55:C5:B8:99:BB:61:75:3C:5C:05:8F:46:B1:AD:4E:12:82:27:73:D6 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 054A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0543 Signing time: Sun 10 Aug 2025 23:35:36 +0000 Manifest this update: Sun 10 Aug 2025 23:35:35 +0000 Manifest next update: Sun 17 Aug 2025 23:35:35 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: P3jRFiPBuK+QlrowEalReUR75Vk70jIhKT9BbXYI+Ao=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Aug 10 23:35:35 2025 GMT Not After : Aug 17 23:35:35 2025 GMT Subject: CN=68992cc8-bc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c2:33:d3:f1:b9:9a:14:86:c2:20:fe:34:57: ad:3e:4d:87:28:69:a3:74:9e:a7:13:91:ac:86:1a: 8f:d4:4d:11:2e:26:3c:f0:cc:ca:92:d0:fe:f0:f7: c8:65:42:12:b9:7d:c8:28:36:2c:2b:c0:94:f5:cc: 30:9a:93:ad:e2:bf:55:2c:1a:1e:b3:e5:d6:a9:7f: 5c:67:5d:ef:79:bf:dd:ec:3c:0e:f4:e4:0b:db:e8: 5a:c9:1a:d0:89:7c:b6:81:0d:40:e6:cf:35:ec:e1: 40:f8:ee:71:a9:51:cd:14:60:14:8f:42:98:5c:24: 79:7d:56:9d:4d:6b:12:c5:75:14:08:51:79:82:d1: 0e:5e:74:3f:7d:68:8c:ae:77:3c:9d:8a:37:e7:86: 08:91:f3:2b:8a:84:0f:f0:35:fb:17:85:26:a7:6a: 9c:98:17:d8:62:77:22:02:ce:2c:94:2f:83:99:d3: 88:75:f2:92:43:6e:5f:0f:ad:99:ca:f8:6e:cb:82: 1e:16:da:74:35:b0:e9:51:21:aa:d4:0c:93:9f:4c: 38:3e:70:c1:74:16:df:8f:c1:0a:56:5b:2a:9e:37: e2:76:03:a0:2a:e4:b8:4a:d7:87:ba:6a:35:e2:25: 66:89:51:32:24:2c:89:37:c6:6a:e9:3c:99:c9:5b: b6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C5:B8:99:BB:61:75:3C:5C:05:8F:46:B1:AD:4E:12:82:27:73:D6 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b0:a4:7b:da:1c:9f:d7:17:cd:9b:0b:a5:fe:6b:7e:b5:06: 94:68:8e:bf:d0:74:c7:8e:74:dc:48:43:b9:65:52:ec:18:ea: 72:9a:f3:a1:a2:08:39:d1:38:90:a0:e1:61:40:7d:6a:8b:91: 7e:71:c5:b2:71:ce:9e:a9:b3:40:8b:3c:60:0f:3c:89:be:dc: e7:e0:98:e5:b8:53:34:f8:5f:05:8c:5d:b5:7d:b4:50:4e:74: 0e:b0:ad:3e:cc:01:78:88:07:1b:e7:49:4c:e0:3f:d9:61:e5: 98:07:47:1b:26:27:a3:74:92:40:bd:30:4d:68:8a:82:51:49: b9:ef:28:ea:19:f9:6b:b1:98:e5:75:93:ce:5c:e5:78:52:7a: d7:39:d2:cc:81:1e:4f:22:6e:8a:f4:dd:b3:a5:1f:b7:8b:7a: e4:a6:d4:89:08:f8:47:b2:b0:7a:11:2b:91:f1:21:8b:3f:db: ae:26:27:c1:61:9c:75:6c:96:96:cf:9d:36:f6:9c:b1:f6:4f: 13:3b:dc:79:a3:9c:29:97:16:9a:48:a1:d5:73:70:7b:7c:3d: f6:5a:bb:3a:1e:14:f9:84:58:41:2a:89:78:22:49:c6:b4:4e: 0c:ae:f9:83:22:30:34:4c:12:c6:f8:23:70:c9:75:76:dd:72: 2b:2a:da:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwODEwMjMzNTM1WhcNMjUwODE3MjMzNTM1WjAYMRYwFAYD VQQDEw02ODk5MmNjOC1iYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysIz0/G5mhSGwiD+NFetPk2HKGmjdJ6nE5GshhqP1E0RLiY88MzKktD+8PfI ZUISuX3IKDYsK8CU9cwwmpOt4r9VLBoes+XWqX9cZ13veb/d7DwO9OQL2+hayRrQ iXy2gQ1A5s817OFA+O5xqVHNFGAUj0KYXCR5fVadTWsSxXUUCFF5gtEOXnQ/fWiM rnc8nYo354YIkfMrioQP8DX7F4Ump2qcmBfYYnciAs4slC+DmdOIdfKSQ25fD62Z yvhuy4IeFtp0NbDpUSGq1AyTn0w4PnDBdBbfj8EKVlsqnjfidgOgKuS4SteHumo1 4iVmiVEyJCyJN8Zq6TyZyVu2TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXFuJm7 YXU8XAWPRrGtThKCJ3PWMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWsKR72hyf1xfNmwul/mt+tQaUaI6/0HTHjnTcSEO5ZVLsGOpymvOh ogg50TiQoOFhQH1qi5F+ccWycc6eqbNAizxgDzyJvtzn4JjluFM0+F8FjF21fbRQ TnQOsK0+zAF4iAcb50lM4D/ZYeWYB0cbJiejdJJAvTBNaIqCUUm57yjqGflrsZjl dZPOXOV4UnrXOdLMgR5PIm6K9N2zpR+3i3rkptSJCPhHsrB6ESuR8SGLP9uuJifB YZx1bJaWz5029pyx9k8TO9x5o5wplxaaSKHVc3B7fD32Wrs6HhT5hFhBKol4IknG tE4MrvmDIjA0TBLG+CNwyXV23XIrKtqd -----END CERTIFICATE-----Generated at Mon Aug 11 06:00:54 2025 by rpki-client