$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: 4gZwgmj5c0DacJxsYfJs8PeuV7nNLO7vd5ssHqZj60E= Subject key identifier: 78:F3:BB:F5:9D:AA:37:6D:1E:04:AD:44:CF:A5:2D:5A:95:EB:85:05 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 072A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 072A Signing time: Tue 12 Aug 2025 22:08:16 +0000 Manifest this update: Tue 12 Aug 2025 22:08:16 +0000 Manifest next update: Tue 19 Aug 2025 22:08:16 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: MHLNXSOB4PYOhtJYSxH1MS1brMA8VLN9PclUriKxhY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Aug 12 22:08:16 2025 GMT Not After : Aug 19 22:08:16 2025 GMT Subject: CN=689bbb50-3ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:38:56:e2:6f:cb:36:4a:c7:29:68:e2:2f:77: d7:69:28:bd:23:2c:14:61:d4:40:d8:93:84:75:e3: a7:a8:d8:df:85:5a:0d:58:62:7a:42:dd:a0:73:ee: 41:e6:ca:7c:8a:fa:e8:97:cb:6b:93:5b:5d:e5:4e: 21:33:71:f5:6d:19:12:2c:78:72:eb:9f:62:c2:9a: d2:be:a4:b2:81:6f:84:f5:0f:cb:9c:51:7d:d7:4b: de:01:27:15:59:25:d0:78:cd:25:d9:cd:da:95:40: b7:21:a8:c1:c6:c7:9e:b0:f2:76:b5:8e:c5:cd:5a: 5a:08:52:56:ec:df:d0:dc:1e:09:08:70:de:7e:8f: db:a2:2e:d7:9f:41:81:d1:e7:6b:37:0c:f3:41:6d: 28:da:75:e8:ee:47:ff:2d:95:d8:8a:65:ad:dc:8e: b7:4b:a0:f2:dc:7e:32:4c:b4:35:92:11:c3:d7:f7: 2c:34:cb:b2:73:a9:a6:04:47:fa:42:6b:b6:06:b7: fc:38:98:71:01:ff:93:7d:a3:b9:44:11:fc:e9:96: 84:ae:05:0d:6b:99:24:ec:5a:93:fc:13:54:46:bb: 8a:25:e5:3e:4a:c8:4a:b1:9f:20:e6:33:73:02:50: 12:ef:7b:e5:7c:03:5a:c0:e0:e8:35:02:62:0b:fd: 1e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F3:BB:F5:9D:AA:37:6D:1E:04:AD:44:CF:A5:2D:5A:95:EB:85:05 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:a0:a7:78:a3:c9:7a:4c:ea:a6:ad:77:48:a5:67:97:c0:8d: 3d:e6:be:43:28:34:d0:15:b9:b9:0c:0f:7b:48:d6:6d:89:03: e4:70:e3:cf:b5:57:24:f1:c6:ab:b5:ea:1f:2a:c3:3f:f4:de: d4:b6:cb:df:fc:5b:58:1b:06:95:b6:80:11:71:44:8f:54:37: 2e:a0:81:a6:fa:9e:bd:1c:8c:a3:ce:af:ee:71:84:ff:6c:c8: 2f:fa:74:19:ff:9f:b3:02:71:4f:b6:46:50:8a:de:c7:37:be: 7f:0b:dd:e9:b1:1c:d1:85:72:28:af:3a:da:4f:d6:cd:8f:90: 88:01:8a:32:82:83:ad:7c:2d:66:73:5c:db:f4:32:0e:cf:2b: aa:38:a7:a0:66:9a:16:5c:4c:84:37:2a:98:fc:4b:d3:90:63: c8:af:9b:d6:a7:f7:14:83:ab:64:b2:4a:5b:b6:95:05:a9:2f: 8b:28:a8:df:84:cf:93:1d:bc:b3:2f:80:a3:c9:04:8c:e6:73: bb:03:cb:59:f1:3c:ff:e5:90:d9:41:41:e6:ec:c4:79:57:01: 4d:6e:3d:f7:0e:ff:8a:24:48:cf:ab:e0:a6:dc:b4:36:99:f3: 94:7c:1c:fe:9f:f7:15:ba:4a:cb:37:9a:3c:7a:f9:66:67:ea: 9c:7e:26:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwODEyMjIwODE2WhcNMjUwODE5MjIwODE2WjAYMRYwFAYD VQQDEw02ODliYmI1MC0zY2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zhW4m/LNkrHKWjiL3fXaSi9IywUYdRA2JOEdeOnqNjfhVoNWGJ6Qt2gc+5B 5sp8ivrol8trk1td5U4hM3H1bRkSLHhy659iwprSvqSygW+E9Q/LnFF910veAScV WSXQeM0l2c3alUC3IajBxseesPJ2tY7FzVpaCFJW7N/Q3B4JCHDefo/boi7Xn0GB 0edrNwzzQW0o2nXo7kf/LZXYimWt3I63S6Dy3H4yTLQ1khHD1/csNMuyc6mmBEf6 Qmu2Brf8OJhxAf+TfaO5RBH86ZaErgUNa5kk7FqT/BNURruKJeU+SshKsZ8g5jNz AlAS73vlfANawODoNQJiC/0eNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjzu/Wd qjdtHgStRM+lLVqV64UFMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDoKd4o8l6TOqmrXdIpWeXwI095r5DKDTQFbm5DA97SNZtiQPkcOPP tVck8carteofKsM/9N7Utsvf/FtYGwaVtoARcUSPVDcuoIGm+p69HIyjzq/ucYT/ bMgv+nQZ/5+zAnFPtkZQit7HN75/C93psRzRhXIorzraT9bNj5CIAYoygoOtfC1m c1zb9DIOzyuqOKegZpoWXEyENyqY/EvTkGPIr5vWp/cUg6tkskpbtpUFqS+LKKjf hM+THbyzL4CjyQSM5nO7A8tZ8Tz/5ZDZQUHm7MR5VwFNbj33Dv+KJEjPq+Cm3LQ2 mfOUfBz+n/cVukrLN5o8evlmZ+qcfian -----END CERTIFICATE-----Generated at Wed Aug 13 05:54:04 2025 by rpki-client