$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft File: iAd3htZlI61ZmNY_aXr0LwOcKqk.mft (raw, json) Hash identifier: NdLMJ0+J4Y94nXbNufzzEh93LsQ3kkdTTxesFADInuA= Subject key identifier: 05:A1:34:60:DA:1D:BC:B1:22:38:05:D7:FE:9E:42:74:1E:EC:C0:D1 Authority key identifier: 88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 Certificate issuer: /CN=A914A4E2/serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Certificate serial: 10A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft Manifest number: 1091 Signing time: Tue 12 Aug 2025 17:27:52 +0000 Manifest this update: Tue 12 Aug 2025 17:27:51 +0000 Manifest next update: Tue 19 Aug 2025 17:27:51 +0000 Files and hashes: 1: iAd3htZlI61ZmNY_aXr0LwOcKqk.crl (hash: J1MkNOlXbfsewWfajEnvCkbm1o9RxD7MfhgjmiDDbvk=) 2: 744CCD5834F911E98AB73628C4F9AE02.roa (hash: Xi30fjCwdu1ys1ihQmxOl+2PGZkizPRtJAwU5and9os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4258 (0x10a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4E2, serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Validity Not Before: Aug 12 17:27:51 2025 GMT Not After : Aug 19 17:27:51 2025 GMT Subject: CN=689b7998-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:56:ed:00:37:77:eb:79:c9:1b:9f:66:3f: d3:a9:89:54:d2:6f:58:89:fe:06:c8:fb:c0:cd:1f: a4:57:b3:a1:b8:80:0e:e3:96:84:8c:51:6f:6e:93: 40:87:f0:85:76:70:2d:27:d5:18:5d:a0:97:0f:23: 4d:31:c3:f1:76:e6:f3:44:d4:3b:40:37:d7:20:b5: e7:d7:7e:f2:c1:6d:ba:4e:17:a2:66:d9:27:a0:58: b7:d3:4f:2a:b9:d7:7b:d5:bf:25:d4:51:3c:95:30: da:e8:be:40:21:c4:e5:29:9b:cb:9a:7d:2b:6a:e8: e3:8d:51:9e:ea:00:34:6c:60:3f:ed:83:7e:5f:91: 30:9e:f9:59:6e:cb:5b:83:df:f8:a7:5b:47:3d:4f: 06:f6:0e:68:e0:26:a6:94:32:3e:0d:b7:8e:c7:23: 6a:2c:a1:9c:be:0c:98:b4:d7:9d:28:96:16:09:60: 17:cd:8f:53:9a:ed:06:0a:e6:fe:d3:18:d8:12:d5: 99:cf:64:15:5c:9e:05:18:c7:c7:91:f4:a5:70:27: 02:26:37:b1:29:69:b8:f4:fb:bf:f4:69:bf:ed:bf: 98:6e:5f:51:85:62:5f:0a:ec:97:69:da:33:cc:1f: f7:05:35:c9:60:42:b7:05:1a:94:92:f9:21:8e:93: 56:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A1:34:60:DA:1D:BC:B1:22:38:05:D7:FE:9E:42:74:1E:EC:C0:D1 X509v3 Authority Key Identifier: keyid:88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:df:c4:ac:1d:12:32:c1:3a:27:04:a8:04:ba:44:5d:ae:a3: f4:74:4c:ac:a4:43:9d:05:f3:34:3e:d0:5b:ab:0e:3a:61:da: a9:b6:6f:33:5c:da:9b:bb:d6:a3:9c:12:2b:92:16:ec:f4:e7: 7f:ea:30:41:14:e2:8d:d3:ed:bc:06:a5:ca:4b:97:5d:27:c0: 35:fc:16:31:7e:b3:39:ee:82:0c:0a:11:57:d4:b2:2d:c4:35: 85:6c:e1:b2:0d:a6:91:92:24:e7:bb:ee:27:be:26:4f:2a:9e: f6:ef:80:eb:11:6e:dc:6a:0f:d4:72:4b:d0:f6:14:6e:28:e7: 87:60:22:ff:c7:b5:89:86:65:24:35:4d:2c:0c:de:27:f9:6b: d2:41:b5:2f:a5:d2:5b:de:d5:b8:9f:ac:0b:52:2f:a8:b0:81: 37:55:c7:59:54:1d:aa:bc:d9:e9:90:51:90:9e:9c:1a:f7:4c: f5:cc:43:e0:9f:c5:9d:ea:8a:21:f4:68:5b:0d:3e:92:9c:db: 1d:95:20:16:86:2f:ff:f4:4b:61:db:05:95:f7:fd:d1:53:f0: 26:dd:f7:95:c4:99:63:e1:b9:f7:2a:1c:db:ff:1b:20:db:54: 3a:b3:b0:f4:99:55:17:3a:88:56:d0:df:6c:10:77:c5:d3:64: ba:fe:7e:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0RTIxMTAvBgNVBAUTKDg4MDc3Nzg2RDY2NTIzQUQ1OTk4RDYzRjY5N0FGNDJG MDM5QzJBQTkwHhcNMjUwODEyMTcyNzUxWhcNMjUwODE5MTcyNzUxWjAYMRYwFAYD VQQDEw02ODliNzk5OC03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JpW7QA3d+t5yRufZj/TqYlU0m9Yif4GyPvAzR+kV7OhuIAO45aEjFFvbpNA h/CFdnAtJ9UYXaCXDyNNMcPxdubzRNQ7QDfXILXn137ywW26TheiZtknoFi3008q udd71b8l1FE8lTDa6L5AIcTlKZvLmn0raujjjVGe6gA0bGA/7YN+X5EwnvlZbstb g9/4p1tHPU8G9g5o4CamlDI+DbeOxyNqLKGcvgyYtNedKJYWCWAXzY9Tmu0GCub+ 0xjYEtWZz2QVXJ4FGMfHkfSlcCcCJjexKWm49Pu/9Gm/7b+Ybl9RhWJfCuyXadoz zB/3BTXJYEK3BRqUkvkhjpNWfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWhNGDa HbyxIjgF1/6eQnQe7MDRMB8GA1UdIwQYMBaAFIgHd4bWZSOtWZjWP2l69C8DnCqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRFMi9CMjU2QjAzMDM0 RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2MVptTllfYVhyMEx3T2NL cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBZDNodFpsSTYxWm1OWV9hWHIwTHdPY0txay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRFMi9CMjU2QjAzMDM0RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2 MVptTllfYVhyMEx3T2NLcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC238SsHRIywTonBKgEukRdrqP0dEyspEOdBfM0PtBbqw46Ydqptm8z XNqbu9ajnBIrkhbs9Od/6jBBFOKN0+28BqXKS5ddJ8A1/BYxfrM57oIMChFX1LIt xDWFbOGyDaaRkiTnu+4nviZPKp7274DrEW7cag/UckvQ9hRuKOeHYCL/x7WJhmUk NU0sDN4n+WvSQbUvpdJb3tW4n6wLUi+osIE3VcdZVB2qvNnpkFGQnpwa90z1zEPg n8Wd6ooh9GhbDT6SnNsdlSAWhi//9Eth2wWV9/3RU/Am3feVxJlj4bn3Khzb/xsg 21Q6s7D0mVUXOohW0N9sEHfF02S6/n7V -----END CERTIFICATE-----Generated at Wed Aug 13 09:49:28 2025 by rpki-client