$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: QKDTyK0DmqQaLARBXd3t+NuQTIjAV/epjsNEC7nm41I= Subject key identifier: 1D:AB:89:9F:F3:F6:44:44:59:2C:5A:C0:2B:F3:41:31:70:5E:4C:5B Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 34F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 34C6 Signing time: Tue 12 Aug 2025 14:20:00 +0000 Manifest this update: Tue 12 Aug 2025 14:20:00 +0000 Manifest next update: Tue 19 Aug 2025 14:20:00 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: mZewiDU2S2scAY26HSOuBb26pqubPQoha85BcJfMreY=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Aug 12 14:20:00 2025 GMT Not After : Aug 19 14:20:00 2025 GMT Subject: CN=689b4d90-5ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:05:2a:ab:21:f6:31:d9:4f:1b:65:1e:63:84: 7f:98:53:40:a7:9e:54:5b:85:de:c1:0d:9c:98:03: c1:3a:17:65:d8:4d:af:66:cf:52:c3:a6:d2:a0:76: c7:75:21:7c:fc:9a:f8:d0:51:74:29:5c:2b:3d:f8: 6c:81:1c:7d:8d:c3:e7:fb:fb:ba:87:80:49:0a:7b: 52:44:e1:9a:21:d7:be:35:69:53:26:7c:b2:34:dc: 4c:9a:ff:01:bd:85:88:a2:60:97:e2:d9:ad:1b:bb: 0b:3d:56:23:eb:3e:95:4e:7e:f8:72:b9:62:07:ff: 9f:06:de:b6:af:0d:b0:92:58:65:24:4e:e5:89:68: b9:b6:fb:2c:4a:d7:70:45:62:51:b9:78:87:69:86: 01:f9:50:19:15:b3:1f:f1:45:50:44:dd:10:8e:3b: 4b:af:d3:26:7d:66:e8:3d:5a:4c:9d:75:07:d9:96: 3a:b8:45:69:b2:3f:f4:43:bf:aa:94:ab:a5:55:61: 16:40:76:e8:37:a9:07:9b:e6:bd:85:86:86:74:6f: 42:76:bc:cb:f0:e2:6c:6a:7e:45:b8:ef:88:0f:d8: f7:21:b5:f0:81:c6:d0:0e:5d:da:f5:ea:34:22:e8: 43:3b:6a:ab:ad:b2:40:ba:6e:19:0c:b0:49:a0:5b: 42:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AB:89:9F:F3:F6:44:44:59:2C:5A:C0:2B:F3:41:31:70:5E:4C:5B X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:8f:4f:8a:e1:bd:ec:c6:60:61:f9:d5:eb:8e:c2:5e:06:48: 9d:70:55:8e:05:fc:29:cb:03:34:fa:cf:98:74:55:30:2f:b0: 46:42:ab:e2:25:7e:0c:53:04:5d:40:01:1c:6e:d9:d8:ca:87: 9b:7a:28:16:6c:71:35:49:bd:dc:b7:9d:59:d8:2d:d5:f7:8d: 58:ab:80:3d:9b:96:0d:ae:4a:05:dc:41:fe:59:1a:7b:44:63: 7c:fc:ef:6c:5a:3c:6c:d3:25:70:66:af:97:2d:72:13:6d:4c: ed:59:a7:3f:4a:b3:14:f5:8d:18:3b:b8:fb:f8:6c:7a:72:8a: f8:54:47:42:67:ef:e7:7a:00:4a:f8:93:48:76:2e:2e:3e:9f: 33:06:31:62:f7:73:d3:02:55:00:a0:5e:95:fc:f9:19:b9:ef: c7:ba:6a:2f:03:d9:46:a6:3f:42:d3:30:61:ff:ab:b0:03:d5: e8:26:ea:12:fc:ef:74:cd:76:0a:06:97:a6:83:40:16:52:27: 08:1e:40:7a:8d:c7:b3:96:72:1a:41:44:09:ca:ac:f9:ea:49: a0:e4:85:81:9c:73:da:30:23:f4:12:42:eb:8c:40:8c:52:e4: 04:4f:80:56:aa:3d:5d:64:82:dc:56:1d:56:b8:e4:d0:29:42: 8d:51:4a:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUwODEyMTQyMDAwWhcNMjUwODE5MTQyMDAwWjAYMRYwFAYD VQQDEw02ODliNGQ5MC01ZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wUqqyH2MdlPG2UeY4R/mFNAp55UW4XewQ2cmAPBOhdl2E2vZs9Sw6bSoHbH dSF8/Jr40FF0KVwrPfhsgRx9jcPn+/u6h4BJCntSROGaIde+NWlTJnyyNNxMmv8B vYWIomCX4tmtG7sLPVYj6z6VTn74crliB/+fBt62rw2wklhlJE7liWi5tvssStdw RWJRuXiHaYYB+VAZFbMf8UVQRN0QjjtLr9MmfWboPVpMnXUH2ZY6uEVpsj/0Q7+q lKulVWEWQHboN6kHm+a9hYaGdG9CdrzL8OJsan5FuO+ID9j3IbXwgcbQDl3a9eo0 IuhDO2qrrbJAum4ZDLBJoFtC7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2riZ/z 9kREWSxawCvzQTFwXkxbMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8j0+K4b3sxmBh+dXrjsJeBkidcFWOBfwpywM0+s+YdFUwL7BGQqvi JX4MUwRdQAEcbtnYyoebeigWbHE1Sb3ct51Z2C3V941Yq4A9m5YNrkoF3EH+WRp7 RGN8/O9sWjxs0yVwZq+XLXITbUztWac/SrMU9Y0YO7j7+Gx6cor4VEdCZ+/negBK +JNIdi4uPp8zBjFi93PTAlUAoF6V/PkZue/HumovA9lGpj9C0zBh/6uwA9XoJuoS /O90zXYKBpemg0AWUicIHkB6jcezlnIaQUQJyqz56kmg5IWBnHPaMCP0EkLrjECM UuQET4BWqj1dZILcVh1WuOTQKUKNUUq2 -----END CERTIFICATE-----Generated at Wed Aug 13 02:50:32 2025 by rpki-client