$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: UCCOH0gP02YaNO/NHe5PXb5hfjGb70jQvvYoZUhhp7w= Subject key identifier: D6:42:BD:F6:1B:DA:20:61:88:BA:A2:63:81:B1:89:DB:D6:65:92:73 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 036B Signing time: Sat 09 Aug 2025 01:26:59 +0000 Manifest this update: Sat 09 Aug 2025 01:26:58 +0000 Manifest next update: Sat 16 Aug 2025 01:26:58 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: LeKxKeYg20v0fttB2MZixAhTZd+kI6U09o6peQLIMRY=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Aug 9 01:26:58 2025 GMT Not After : Aug 16 01:26:58 2025 GMT Subject: CN=6896a3e2-14b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:3e:f6:59:b6:e9:21:82:70:35:30:e2:06: ef:b2:7a:28:ca:af:82:be:f4:44:03:0b:82:ea:61: 9c:07:86:78:28:ea:de:a6:0b:4b:e4:dd:03:59:83: c2:52:77:31:01:c1:26:d7:e3:fc:81:66:b5:0b:f9: 3d:5c:81:47:27:16:ae:e8:d2:a2:9a:2d:66:d1:bf: 5f:0f:9e:76:4e:8f:a8:7c:b7:b4:05:2f:dd:85:30: 7f:06:47:92:05:4a:0f:75:ec:8b:ba:86:78:8a:3e: fa:91:3e:f9:35:6f:f3:b0:0f:09:6b:dc:ac:b5:68: cf:86:d3:a1:db:96:54:06:4d:6e:02:47:de:67:81: 12:8e:56:5c:ff:41:3a:ae:db:8d:e4:b9:69:4e:6f: f7:ff:ce:ad:6f:46:d6:1e:44:02:4b:b0:bc:18:6e: d4:46:00:95:60:78:6f:6a:51:d6:ad:0d:c7:33:ae: 5e:02:53:a0:33:f1:04:d4:e8:32:11:0c:47:3d:51: fe:3d:d6:37:31:b6:b6:9b:26:9c:1a:9e:40:2d:c5: 75:0e:68:8a:ec:4f:8c:7b:fc:bf:88:62:fd:f4:29: aa:44:e7:a0:6b:e3:64:64:28:1d:a7:30:ab:35:a8: 21:1b:b5:aa:6d:67:d3:4e:35:1d:c9:d2:7f:29:3b: 41:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:42:BD:F6:1B:DA:20:61:88:BA:A2:63:81:B1:89:DB:D6:65:92:73 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:f6:f3:7a:6f:15:6d:c2:28:b2:52:e9:a7:ba:26:b2:f4:30: ca:7b:37:46:32:e9:6d:7d:3c:75:4f:a1:a8:92:ff:7a:03:96: bc:db:c7:d9:f2:bc:cf:3a:eb:43:90:1f:15:03:64:ae:98:53: de:e9:20:5a:00:10:1f:58:4d:fb:d2:67:7f:77:40:e2:28:88: ae:4d:a7:2c:8f:31:be:bf:12:87:62:06:97:b7:57:10:03:0b: df:12:b8:78:24:13:2a:24:ea:d4:fe:a7:a4:0f:9f:d3:d4:11: 01:7d:71:3f:a7:cd:9f:12:e4:c8:f1:1f:8f:5b:1f:34:6b:07: af:2d:b4:67:60:23:93:75:ae:2d:6d:f5:ec:cb:85:94:ab:be: 4d:86:02:0a:ce:7b:cb:2f:eb:3e:90:5a:cf:96:e8:b5:0b:2b: fb:33:7a:39:34:c6:89:c5:35:2e:86:f4:f0:de:48:4c:b4:3a: 44:6d:a8:93:fe:84:d2:60:7b:60:8e:49:d7:5c:07:2d:0d:8a: d6:49:bb:87:85:8d:37:c3:38:e7:0d:70:29:8e:d0:fa:ad:44: 25:21:51:2b:0d:49:de:32:5d:51:a9:43:c6:e4:2a:08:09:de: a1:d6:79:ca:80:f6:ca:0c:c0:b3:2a:5a:a2:7d:d7:3a:5b:61: 1d:3c:dd:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwODA5MDEyNjU4WhcNMjUwODE2MDEyNjU4WjAYMRYwFAYD VQQDEw02ODk2YTNlMi0xNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIg+9lm26SGCcDUw4gbvsnooyq+CvvREAwuC6mGcB4Z4KOrepgtL5N0DWYPC UncxAcEm1+P8gWa1C/k9XIFHJxau6NKimi1m0b9fD552To+ofLe0BS/dhTB/BkeS BUoPdeyLuoZ4ij76kT75NW/zsA8Ja9ystWjPhtOh25ZUBk1uAkfeZ4ESjlZc/0E6 rtuN5LlpTm/3/86tb0bWHkQCS7C8GG7URgCVYHhvalHWrQ3HM65eAlOgM/EE1Ogy EQxHPVH+PdY3Mba2myacGp5ALcV1DmiK7E+Me/y/iGL99CmqROega+NkZCgdpzCr NaghG7WqbWfTTjUdydJ/KTtBCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZCvfYb 2iBhiLqiY4GxidvWZZJzMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb9vN6bxVtwiiyUumnuiay9DDKezdGMultfTx1T6Gokv96A5a828fZ 8rzPOutDkB8VA2SumFPe6SBaABAfWE370md/d0DiKIiuTacsjzG+vxKHYgaXt1cQ AwvfErh4JBMqJOrU/qekD5/T1BEBfXE/p82fEuTI8R+PWx80awevLbRnYCOTda4t bfXsy4WUq75NhgIKznvLL+s+kFrPlui1Cyv7M3o5NMaJxTUuhvTw3khMtDpEbaiT /oTSYHtgjknXXActDYrWSbuHhY03wzjnDXApjtD6rUQlIVErDUneMl1RqUPG5CoI Cd6h1nnKgPbKDMCzKlqifdc6W2EdPN1i -----END CERTIFICATE-----Generated at Sat Aug 9 20:52:25 2025 by rpki-client