$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: uDJt45+zbxMUILLdy3Ne0Nxx2Zjtn/QfZUPO5CL5FYQ= Subject key identifier: F1:47:A1:B4:0C:81:BB:4E:C5:51:78:17:1E:69:03:D7:A7:C1:5C:43 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C21 Signing time: Fri 08 Aug 2025 18:51:08 +0000 Manifest this update: Fri 08 Aug 2025 18:51:08 +0000 Manifest next update: Fri 15 Aug 2025 18:51:08 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: gnhIYWoF4rA+13r/KeFqYAoQru+6TjaNM9pmRsj2LMc=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Aug 8 18:51:08 2025 GMT Not After : Aug 15 18:51:08 2025 GMT Subject: CN=6896471c-1674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:8e:ec:c8:28:24:49:d3:f2:d0:de:d1:5a: 30:d6:73:86:ac:64:17:47:cb:1f:1e:ce:fe:67:97: 00:50:d3:1d:f9:44:3c:da:13:52:53:b4:dc:e1:35: d1:22:c1:84:da:29:41:c9:3a:58:f9:d0:fd:42:78: 2b:b0:f2:86:bb:4c:8d:a1:51:0f:1e:2d:a6:ea:a0: 6c:c1:e3:af:30:bd:25:40:b7:6a:04:6d:a2:8e:d0: 09:24:9c:d2:0e:51:6c:d2:2a:46:ac:fb:55:8b:d0: 26:3b:87:d3:52:15:65:30:cd:4d:e1:81:71:83:96: 45:e4:e8:1e:24:9d:b7:8d:ad:58:cd:26:a7:b2:fd: b6:c2:fd:30:18:b4:16:e3:93:80:49:9b:e9:0d:b1: 86:06:31:71:15:32:35:98:b5:bc:c5:b0:eb:3f:48: 8b:b4:9d:21:4f:ee:a1:ce:9c:e4:23:19:46:b7:35: b4:95:c2:ad:b6:8d:68:7f:e3:69:bb:dc:c2:9a:2d: c6:26:fb:25:c6:34:e3:cf:85:e2:43:7a:01:8b:f2: ce:15:7c:10:75:5a:34:34:0a:50:b6:4d:c3:45:e2: 44:3c:f8:d8:6f:a5:37:1c:b5:04:f3:7f:93:07:5d: 6a:c5:d3:2c:00:ea:bc:2b:a2:06:2b:8f:47:fc:9e: df:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:47:A1:B4:0C:81:BB:4E:C5:51:78:17:1E:69:03:D7:A7:C1:5C:43 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a5:15:66:6e:ba:7c:e3:78:68:81:8d:45:da:3d:f6:de:5d: 55:81:a9:5a:8a:b4:52:c8:a3:32:b7:84:a6:74:df:a6:24:46: f3:12:0d:35:12:4b:ce:54:58:04:a0:71:c7:b1:98:50:87:80: fb:b7:0b:b8:aa:a4:3d:2b:1c:63:c0:ba:f5:cc:59:94:c9:3c: 0b:13:a1:5b:3b:0e:27:f4:bb:30:4c:5a:80:ea:3b:b3:de:34: 65:86:3b:a6:b2:9c:3e:4b:e9:94:a2:7d:35:f6:59:48:7e:a4: cd:38:ac:c7:34:0a:4a:bd:87:20:15:e7:82:10:a8:31:de:7a: 55:3a:b1:f1:4f:72:dc:ea:59:01:3e:10:fc:94:93:0b:59:dd: 8b:ad:dd:38:6a:4a:c9:f7:c2:ec:5c:23:dd:16:db:6f:f5:16: 44:7c:bc:87:3b:8a:5d:53:ce:72:27:d0:a1:e8:47:10:4b:2e: 5c:01:bc:ff:3b:46:16:2e:d7:98:fc:ba:d5:2d:63:89:fb:8e: 23:2e:d7:a8:1b:df:7a:aa:4c:1c:47:6f:61:a7:3b:47:75:c8: 55:d8:bb:e7:cd:b1:48:8a:34:7e:16:51:07:cb:eb:49:da:e8: 65:68:96:b7:63:1d:cb:b0:0b:14:1b:7b:8b:45:33:fd:46:79: 67:50:5b:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwODA4MTg1MTA4WhcNMjUwODE1MTg1MTA4WjAYMRYwFAYD VQQDEw02ODk2NDcxYy0xNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxmO7MgoJEnT8tDe0Vow1nOGrGQXR8sfHs7+Z5cAUNMd+UQ82hNSU7Tc4TXR IsGE2ilByTpY+dD9QngrsPKGu0yNoVEPHi2m6qBsweOvML0lQLdqBG2ijtAJJJzS DlFs0ipGrPtVi9AmO4fTUhVlMM1N4YFxg5ZF5OgeJJ23ja1YzSansv22wv0wGLQW 45OASZvpDbGGBjFxFTI1mLW8xbDrP0iLtJ0hT+6hzpzkIxlGtzW0lcKtto1of+Np u9zCmi3GJvslxjTjz4XiQ3oBi/LOFXwQdVo0NApQtk3DReJEPPjYb6U3HLUE83+T B11qxdMsAOq8K6IGK49H/J7f9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFHobQM gbtOxVF4Fx5pA9enwVxDMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlpRVmbrp843hogY1F2j323l1VgalairRSyKMyt4SmdN+mJEbzEg01 EkvOVFgEoHHHsZhQh4D7twu4qqQ9KxxjwLr1zFmUyTwLE6FbOw4n9LswTFqA6juz 3jRlhjumspw+S+mUon019llIfqTNOKzHNApKvYcgFeeCEKgx3npVOrHxT3Lc6lkB PhD8lJMLWd2Lrd04akrJ98LsXCPdFttv9RZEfLyHO4pdU85yJ9Ch6EcQSy5cAbz/ O0YWLteY/LrVLWOJ+44jLteoG996qkwcR29hpztHdchV2LvnzbFIijR+FlEHy+tJ 2uhlaJa3Yx3LsAsUG3uLRTP9RnlnUFvq -----END CERTIFICATE-----Generated at Sun Aug 10 04:59:50 2025 by rpki-client