$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: NLFbItr9jOVLEasvnRII/adaCLSbqoJSMUk8gJYb6hE= Subject key identifier: B1:0E:9A:E0:40:01:38:7D:A9:01:12:28:F3:9A:50:45:28:A5:FB:F4 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0534 Signing time: Mon 04 Aug 2025 23:58:29 +0000 Manifest this update: Mon 04 Aug 2025 23:58:28 +0000 Manifest next update: Mon 11 Aug 2025 23:58:28 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: NzkZA9MSBJxORMHP1VWL3eZxOnpkJ/CmU01u5tlb7qQ=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Aug 4 23:58:28 2025 GMT Not After : Aug 11 23:58:28 2025 GMT Subject: CN=68914924-53aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:f6:bd:01:87:7c:2d:3e:7d:1e:45:ab:6c: 6a:73:4f:ae:d0:c2:e5:1b:f6:b5:c7:02:c9:aa:ad: 81:7e:11:53:07:1b:24:a1:39:5e:74:2c:54:79:60: 1e:f9:d7:81:67:27:24:49:da:3b:97:1d:65:c3:c8: 51:63:d9:4f:a6:a2:c5:b8:45:e5:3d:49:c8:44:6e: f5:f9:8b:f9:d4:fa:a0:55:38:55:b1:ab:07:d8:38: ea:9e:3b:f9:d6:8e:d1:dc:f3:fe:9a:13:08:54:d4: f3:b8:9b:b4:6d:3f:71:d6:4a:1c:1b:16:3c:da:b8: 91:6f:ea:cb:54:09:0c:75:ff:e4:21:8e:2f:49:00: f6:cf:8e:de:a4:9b:8d:67:7c:fd:88:c3:8d:51:99: 79:f4:9f:60:45:29:31:2f:87:64:45:9e:8f:4b:54: 81:c8:f2:86:c4:f5:6f:70:fa:63:07:08:c1:84:29: 42:10:65:56:ae:b0:71:3e:8d:81:d4:9c:5a:9e:45: d8:5a:b8:34:ae:bb:9d:2c:56:d2:3c:93:7f:9a:a9: fd:10:b4:60:f7:ad:e9:80:8f:50:da:3f:82:b5:31: 4d:c0:b2:b8:f9:ac:d7:fb:7e:ac:4c:cb:8c:31:cb: 60:72:f7:b2:27:2f:03:93:a5:5e:a3:f6:78:44:e6: 80:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0E:9A:E0:40:01:38:7D:A9:01:12:28:F3:9A:50:45:28:A5:FB:F4 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:00:4a:c0:15:5d:70:38:78:72:6a:ef:88:ed:4b:19:b5:3c: 99:00:e2:c9:ec:9e:57:e2:55:84:e2:be:61:31:c4:51:72:6d: 44:34:fe:30:59:cd:7e:46:61:74:28:25:6d:08:61:ef:e5:1d: cb:9e:a4:87:58:d1:1a:68:bd:83:ed:21:c0:94:26:2f:7b:c9: de:a7:1f:e2:c5:e0:2e:62:aa:ac:09:2f:78:ed:a6:94:39:1e: f7:06:63:be:51:97:9a:62:06:57:6e:98:fb:57:c8:c1:4c:67: f9:31:f5:c6:85:c2:30:26:19:3f:8b:86:28:51:3c:ad:4e:81: 1e:18:c3:bb:c2:a6:2a:56:56:52:98:28:ff:46:88:9e:a9:e5: 0f:6d:99:f6:21:a0:0e:00:fe:15:8f:1e:55:8b:32:76:63:75: 1d:97:35:59:25:47:ef:9e:cb:c4:73:8e:c7:80:5b:77:e4:54: 96:38:21:d3:92:29:01:ab:f8:db:e3:3b:b5:c4:1a:d9:af:0f: 9f:fd:f8:c5:57:4b:b3:c0:07:be:38:99:e7:41:3c:44:a3:18: c5:38:d8:b9:c5:b1:88:c1:82:da:9d:6c:ae:be:9c:2a:9c:c0: 31:23:aa:a1:5d:eb:cb:5e:a6:d0:86:6d:e7:7d:a1:cb:ae:43: ea:5e:2c:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwODA0MjM1ODI4WhcNMjUwODExMjM1ODI4WjAYMRYwFAYD VQQDEw02ODkxNDkyNC01M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xX2vQGHfC0+fR5Fq2xqc0+u0MLlG/a1xwLJqq2BfhFTBxskoTledCxUeWAe +deBZyckSdo7lx1lw8hRY9lPpqLFuEXlPUnIRG71+Yv51PqgVThVsasH2Djqnjv5 1o7R3PP+mhMIVNTzuJu0bT9x1kocGxY82riRb+rLVAkMdf/kIY4vSQD2z47epJuN Z3z9iMONUZl59J9gRSkxL4dkRZ6PS1SByPKGxPVvcPpjBwjBhClCEGVWrrBxPo2B 1JxankXYWrg0rrudLFbSPJN/mqn9ELRg963pgI9Q2j+CtTFNwLK4+azX+36sTMuM MctgcveyJy8Dk6Veo/Z4ROaAewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEOmuBA ATh9qQESKPOaUEUopfv0MB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhAErAFV1wOHhyau+I7UsZtTyZAOLJ7J5X4lWE4r5hMcRRcm1ENP4w Wc1+RmF0KCVtCGHv5R3LnqSHWNEaaL2D7SHAlCYve8nepx/ixeAuYqqsCS947aaU OR73BmO+UZeaYgZXbpj7V8jBTGf5MfXGhcIwJhk/i4YoUTytToEeGMO7wqYqVlZS mCj/RoieqeUPbZn2IaAOAP4Vjx5VizJ2Y3UdlzVZJUfvnsvEc47HgFt35FSWOCHT kikBq/jb4zu1xBrZrw+f/fjFV0uzwAe+OJnnQTxEoxjFONi5xbGIwYLanWyuvpwq nMAxI6qhXevLXqbQhm3nfaHLrkPqXiwT -----END CERTIFICATE-----Generated at Wed Aug 6 14:23:25 2025 by rpki-client