$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: aailVOSy1+W989KKWC7AYdqgqhb98d5FbWkHsemSrgE= Subject key identifier: E0:87:1B:18:69:CC:3B:C6:79:79:7E:0B:82:EE:32:AD:5D:60:F5:50 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 300F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FEA Signing time: Fri 08 Aug 2025 15:31:28 +0000 Manifest this update: Fri 08 Aug 2025 15:31:27 +0000 Manifest next update: Fri 15 Aug 2025 15:31:27 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: hlKbgiYRcDvtAEXXH45MVH3pm5mF1xqy6l1beIIIUbg=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12303 (0x300f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Aug 8 15:31:27 2025 GMT Not After : Aug 15 15:31:27 2025 GMT Subject: CN=68961850-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bb:e0:e3:e2:b6:39:f1:7c:6a:f0:4b:47:d2: d8:9e:5a:d2:6e:97:d1:12:c9:e6:eb:53:fb:7e:5e: 31:b2:39:66:6b:02:64:a9:b4:a8:c4:e8:26:90:c0: f5:00:a9:a1:65:19:b5:2a:16:1d:1a:76:3f:7b:d7: d1:19:f3:9a:fc:60:bf:b6:63:c4:96:d1:69:7f:be: fc:3a:82:46:b2:49:44:d0:d5:f4:20:1f:7d:c0:fe: 1f:16:1e:a1:fd:83:a3:f9:c4:f1:c1:9e:eb:4d:0e: b9:b4:0f:e1:8c:d6:a3:12:bc:6d:bc:51:1f:f9:25: 26:ea:2f:4d:18:72:6a:f9:89:32:b4:75:51:a1:75: b7:18:c1:d7:3d:15:79:07:28:d7:f6:91:61:87:56: 5f:ab:dd:e9:9a:2e:ce:cb:a7:60:b8:63:f6:bf:ab: ba:f4:dc:8e:a2:6e:e3:44:fd:35:1f:00:0e:b9:fb: ef:1f:63:79:4c:60:1b:ae:eb:96:ae:f7:df:c9:15: f7:13:fb:ba:e7:93:b8:7d:24:97:39:0c:06:22:91: 33:12:ee:f6:a0:b2:76:f1:49:d4:01:35:11:23:a6: 32:88:c6:67:bc:4f:90:ee:d6:c6:fb:5d:e8:14:5e: a2:e3:fa:f8:95:99:72:f8:bc:b7:c4:a5:fd:da:da: 71:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:87:1B:18:69:CC:3B:C6:79:79:7E:0B:82:EE:32:AD:5D:60:F5:50 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a1:67:e0:d5:4b:fe:35:d4:af:a6:55:7e:c1:4e:a8:2c:6a: d2:de:86:b9:53:86:8d:7e:17:68:89:b3:73:f5:14:b4:0b:80: 4c:ad:d5:2f:df:06:6b:72:fa:1a:1c:d3:e4:16:de:4f:26:c0: 74:9e:44:49:2f:01:a6:fe:25:c8:f3:45:db:1f:a4:b7:cf:bb: f6:3e:03:4c:4a:fb:9f:71:fb:94:f9:04:ac:aa:5b:73:a9:45: c7:15:58:ed:68:d3:aa:9c:03:f9:19:ba:46:45:3d:6c:db:8e: 1e:c5:5f:d9:4d:7c:8d:0b:9f:3a:51:14:26:92:de:a2:86:d0: 03:2f:7f:ea:bf:4f:6b:1a:b7:52:69:39:4d:12:e1:7a:da:79: 22:bb:5c:2d:d6:b5:f6:3e:ee:fc:d3:f6:6e:3f:99:47:d7:36: 0e:35:42:e1:f8:37:33:4d:9b:aa:b3:54:4f:21:8d:8d:e5:0d: a8:7f:90:84:06:63:fe:5a:88:31:89:e0:88:12:ef:5e:c5:ee: 50:d6:a6:3b:96:da:e2:d6:ba:ef:28:10:b4:05:c0:92:e8:b9: c3:68:62:11:eb:85:3d:e2:00:cd:48:78:e4:3e:b0:8d:e5:2b: c9:92:ab:eb:a5:59:95:63:9b:34:65:d1:65:cf:f7:f4:fe:a2: b3:6b:16:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwODA4MTUzMTI3WhcNMjUwODE1MTUzMTI3WjAYMRYwFAYD VQQDEw02ODk2MTg1MC0zMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrvg4+K2OfF8avBLR9LYnlrSbpfREsnm61P7fl4xsjlmawJkqbSoxOgmkMD1 AKmhZRm1KhYdGnY/e9fRGfOa/GC/tmPEltFpf778OoJGsklE0NX0IB99wP4fFh6h /YOj+cTxwZ7rTQ65tA/hjNajErxtvFEf+SUm6i9NGHJq+YkytHVRoXW3GMHXPRV5 ByjX9pFhh1Zfq93pmi7Oy6dguGP2v6u69NyOom7jRP01HwAOufvvH2N5TGAbruuW rvffyRX3E/u655O4fSSXOQwGIpEzEu72oLJ28UnUATURI6YyiMZnvE+Q7tbG+13o FF6i4/r4lZly+Ly3xKX92tpxIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCHGxhp zDvGeXl+C4LuMq1dYPVQMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeoWfg1Uv+NdSvplV+wU6oLGrS3oa5U4aNfhdoibNz9RS0C4BMrdUv 3wZrcvoaHNPkFt5PJsB0nkRJLwGm/iXI80XbH6S3z7v2PgNMSvufcfuU+QSsqltz qUXHFVjtaNOqnAP5GbpGRT1s244exV/ZTXyNC586URQmkt6ihtADL3/qv09rGrdS aTlNEuF62nkiu1wt1rX2Pu780/ZuP5lH1zYONULh+DczTZuqs1RPIY2N5Q2of5CE BmP+WogxieCIEu9exe5Q1qY7ltri1rrvKBC0BcCS6LnDaGIR64U94gDNSHjkPrCN 5SvJkqvrpVmVY5s0ZdFlz/f0/qKzaxbj -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:29 2025 by rpki-client