$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: b5slQTryPE9ARR7uKxSNEvKxOV4e1YclAf4muIurtMs= Subject key identifier: 6F:CB:DE:DE:E4:55:80:17:16:03:32:08:7C:F6:4D:82:74:78:8E:71 Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 04B5 Signing time: Sat 09 Aug 2025 00:23:08 +0000 Manifest this update: Sat 09 Aug 2025 00:23:07 +0000 Manifest next update: Sat 16 Aug 2025 00:23:07 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: 5OOlfxIvbkauDkH8pVN3w3KDIueqPUPyH2OYIqMTLPI=) 2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: pIsS/aAz3NlTfiRznLCHJWwJfZnRVJbtBleuPSnoEO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Aug 9 00:23:07 2025 GMT Not After : Aug 16 00:23:07 2025 GMT Subject: CN=689694ec-f838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:84:0e:40:a4:c2:02:d6:5c:bf:8a:8e:ee:05: 70:2a:81:68:e2:77:59:68:2f:93:d8:9e:e6:84:ef: 3b:16:33:1b:48:0c:d0:05:3f:fc:2a:2f:4d:0b:b7: bd:f6:52:21:e6:0d:44:81:57:a4:65:e2:42:81:0f: 44:8d:fb:e7:fc:62:4b:28:94:99:7e:47:7c:10:c6: fa:31:0c:4c:51:13:7d:ed:bf:b4:70:a1:ab:be:bb: c6:13:d3:15:40:9e:c2:59:cf:8d:e5:15:62:fa:8a: 9c:43:a7:64:10:7d:dd:49:3f:a7:49:96:23:69:c1: 3f:2a:9e:5a:6e:3a:22:e4:08:56:89:7f:2d:eb:5c: c8:12:b4:89:17:90:54:6b:e7:37:78:43:e9:9f:eb: 96:75:d0:d5:a3:56:1c:ad:ac:f2:43:2f:7e:c3:c1: fe:3d:89:a2:d5:9e:a6:82:fc:87:ed:15:1c:34:cc: fb:3a:9b:70:bf:ef:75:e0:94:52:47:38:6e:e0:68: 2a:fa:3c:60:c8:7f:1b:e8:86:28:0d:02:19:0e:bd: 77:d6:a5:c9:c7:b1:35:b9:a4:4d:7d:3f:d9:b3:fa: 56:72:1b:d6:e3:0a:a2:2b:2d:d5:7f:69:78:6e:46: 7e:24:4c:5f:70:9e:60:d5:64:13:2e:f5:b5:98:fa: e8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CB:DE:DE:E4:55:80:17:16:03:32:08:7C:F6:4D:82:74:78:8E:71 X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:41:c5:af:9b:c1:8e:c5:a2:20:59:5b:26:28:54:25:dc:1f: e5:76:27:8c:96:9f:69:af:f3:d9:2c:22:61:2e:82:13:ed:d5: eb:37:d9:80:8d:5f:c6:67:e8:32:2a:2a:a7:32:0b:31:23:b4: 2b:7f:38:93:24:4b:67:3e:f2:02:02:14:d6:3a:b1:e5:32:c8: 73:93:fa:31:9b:c0:b0:3c:f8:a5:99:8d:04:44:f2:2c:f9:cc: 35:87:8f:2d:6f:66:d3:d7:3c:01:f9:84:ae:9b:0a:86:b4:70: 21:4d:82:81:33:5f:f8:42:81:f3:6e:29:68:91:99:10:f0:e5: b0:b1:0c:69:4d:f6:9c:01:b9:a3:6b:f7:a7:cb:e7:95:92:58: 5c:f1:6c:36:9d:6d:20:5c:11:4f:ff:19:b7:6b:0f:49:47:05: 4e:de:6c:16:19:6d:a0:70:4b:e4:53:76:c2:90:95:37:aa:7b: ed:4f:27:19:8f:72:39:3e:68:5c:9c:95:95:d3:93:16:49:5a: b7:f5:59:b0:74:a3:55:77:20:ff:d6:c6:80:0a:ca:67:70:17: 00:0f:11:90:a3:d5:2e:54:cf:45:3a:5a:0e:13:de:af:b6:3b: a9:dd:8d:91:f9:1c:23:26:12:4e:95:da:fb:cf:a6:b4:2b:6e: d0:39:0f:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjUwODA5MDAyMzA3WhcNMjUwODE2MDAyMzA3WjAYMRYwFAYD VQQDEw02ODk2OTRlYy1mODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IQOQKTCAtZcv4qO7gVwKoFo4ndZaC+T2J7mhO87FjMbSAzQBT/8Ki9NC7e9 9lIh5g1EgVekZeJCgQ9Ejfvn/GJLKJSZfkd8EMb6MQxMURN97b+0cKGrvrvGE9MV QJ7CWc+N5RVi+oqcQ6dkEH3dST+nSZYjacE/Kp5abjoi5AhWiX8t61zIErSJF5BU a+c3eEPpn+uWddDVo1YcrazyQy9+w8H+PYmi1Z6mgvyH7RUcNMz7Optwv+914JRS Rzhu4Ggq+jxgyH8b6IYoDQIZDr131qXJx7E1uaRNfT/Zs/pWchvW4wqiKy3Vf2l4 bkZ+JExfcJ5g1WQTLvW1mProVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/L3t7k VYAXFgMyCHz2TYJ0eI5xMB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrQcWvm8GOxaIgWVsmKFQl3B/ldieMlp9pr/PZLCJhLoIT7dXrN9mA jV/GZ+gyKiqnMgsxI7QrfziTJEtnPvICAhTWOrHlMshzk/oxm8CwPPilmY0ERPIs +cw1h48tb2bT1zwB+YSumwqGtHAhTYKBM1/4QoHzbilokZkQ8OWwsQxpTfacAbmj a/eny+eVklhc8Ww2nW0gXBFP/xm3aw9JRwVO3mwWGW2gcEvkU3bCkJU3qnvtTycZ j3I5PmhcnJWV05MWSVq39VmwdKNVdyD/1saACspncBcADxGQo9UuVM9FOloOE96v tjup3Y2R+RwjJhJOldr7z6a0K27QOQ8O -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:08 2025 by rpki-client