$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: vzYSTVAA9bjUHNgPg27mYQb2VVewgJP8LNS1tbkdakI= Subject key identifier: 95:D1:DE:16:9A:AA:D8:F4:81:A8:0B:CF:79:EB:D4:F6:8D:2F:07:7D Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 052D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0524 Signing time: Sat 09 Aug 2025 00:02:50 +0000 Manifest this update: Sat 09 Aug 2025 00:02:50 +0000 Manifest next update: Sat 16 Aug 2025 00:02:50 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: 8mQXDp6mfRGM2PFMsKHxItf93eSF8ypLDNMnx3RHKjk=) 2: 47B1CB6E460D11F091179886C4F9AE02.roa (hash: UJrloLrvsoge3wfmese2Zva7x1vRvjjKxNvEsNCfNYE=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Aug 9 00:02:50 2025 GMT Not After : Aug 16 00:02:50 2025 GMT Subject: CN=6896902a-87e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:23:88:ed:74:55:08:58:da:54:0e:3f:4e: d1:e7:12:79:73:2b:9d:da:97:11:0e:11:5c:88:6e: 6a:f8:d8:5e:4c:3c:af:c2:d7:7c:41:11:c5:2b:e7: 11:02:17:52:8c:70:fc:ad:98:f4:4c:66:05:15:56: 59:8f:5d:46:67:60:6b:c7:39:5f:29:ca:ec:a0:1c: 2a:65:3a:e8:77:3a:f0:fc:af:45:59:d8:0d:82:37: 12:a2:13:eb:ae:d7:58:cc:7e:7b:c0:ea:04:18:18: f6:8c:37:c8:57:b4:7d:2e:74:bb:e7:02:8a:1e:04: 2c:0c:e6:4e:84:4e:08:39:41:25:5d:65:61:65:6d: 5a:e9:12:0d:55:9a:01:df:3c:b1:05:e2:b5:3a:9f: 89:00:db:a6:3b:f4:a8:7b:b0:6e:bf:e4:72:b8:e7: cd:5d:d1:de:ab:99:d9:21:66:81:32:c3:68:b0:b1: 79:60:b2:f2:00:e6:40:ef:97:65:68:f5:a3:c4:5c: ae:ab:65:60:bd:1a:76:96:af:0a:c7:57:32:9b:33: 01:d2:60:bc:23:c6:eb:e3:d0:65:d1:4b:a5:f2:da: 7b:ad:36:47:6b:3c:a6:2f:09:df:86:6e:e0:5c:e3: 08:d1:77:98:cf:fc:82:a5:4f:ae:b3:70:75:75:f8: 13:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D1:DE:16:9A:AA:D8:F4:81:A8:0B:CF:79:EB:D4:F6:8D:2F:07:7D X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:43:44:d0:db:80:60:bd:d7:3c:47:7c:ba:f0:40:5c:3b:2b: 6e:50:69:99:13:f6:ac:46:f6:e4:c4:86:9d:de:7a:a2:1b:e7: 96:65:d7:bd:43:be:be:ac:4f:b7:c9:4d:f7:ff:64:83:04:8d: f3:1b:38:61:3e:44:82:8c:82:89:f0:ed:08:1c:c6:73:1d:af: 2c:ab:81:5a:92:45:38:e6:b0:b7:6f:ef:8d:5b:90:a5:a9:06: 92:11:1d:23:bf:0b:14:ed:4c:c7:85:3a:f9:48:88:54:c7:c4: 8c:d9:f8:3c:b4:08:87:be:bb:b5:43:87:d6:5e:2f:64:6e:3f: 2b:75:03:d4:d8:39:3f:6f:a5:71:fe:12:aa:ab:74:cc:e2:b6: 5a:6b:48:18:8c:76:e6:13:0a:09:6e:d8:65:0a:79:d9:a6:86: 06:4c:ee:f4:2c:5f:06:b1:e0:05:3c:ac:a0:af:41:4e:c1:24: 10:eb:c8:a4:76:52:f3:31:05:af:6d:e3:8e:aa:f7:3f:39:1c: a9:09:01:18:49:a2:e7:9a:e1:e0:2d:00:25:76:63:19:53:2e: 56:80:da:f8:80:2f:36:57:56:cc:7b:0c:ea:24:49:90:85:73: 81:74:ce:99:eb:12:bb:69:6a:ad:7a:2e:d2:76:57:c0:02:9a: f0:f0:08:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwODA5MDAwMjUwWhcNMjUwODE2MDAwMjUwWjAYMRYwFAYD VQQDEw02ODk2OTAyYS04N2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyQjiO10VQhY2lQOP07R5xJ5cyud2pcRDhFciG5q+NheTDyvwtd8QRHFK+cR AhdSjHD8rZj0TGYFFVZZj11GZ2BrxzlfKcrsoBwqZTrodzrw/K9FWdgNgjcSohPr rtdYzH57wOoEGBj2jDfIV7R9LnS75wKKHgQsDOZOhE4IOUElXWVhZW1a6RINVZoB 3zyxBeK1Op+JANumO/Soe7Buv+RyuOfNXdHeq5nZIWaBMsNosLF5YLLyAOZA75dl aPWjxFyuq2VgvRp2lq8Kx1cymzMB0mC8I8br49Bl0Uul8tp7rTZHazymLwnfhm7g XOMI0XeYz/yCpU+us3B1dfgT8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXR3haa qtj0gagLz3nr1PaNLwd9MB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPQ0TQ24Bgvdc8R3y68EBcOytuUGmZE/asRvbkxIad3nqiG+eWZde9 Q76+rE+3yU33/2SDBI3zGzhhPkSCjIKJ8O0IHMZzHa8sq4FakkU45rC3b++NW5Cl qQaSER0jvwsU7UzHhTr5SIhUx8SM2fg8tAiHvru1Q4fWXi9kbj8rdQPU2Dk/b6Vx /hKqq3TM4rZaa0gYjHbmEwoJbthlCnnZpoYGTO70LF8GseAFPKygr0FOwSQQ68ik dlLzMQWvbeOOqvc/ORypCQEYSaLnmuHgLQAldmMZUy5WgNr4gC82V1bMewzqJEmQ hXOBdM6Z6xK7aWqtei7SdlfAAprw8Ahi -----END CERTIFICATE-----Generated at Sat Aug 9 23:11:03 2025 by rpki-client