$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: Dmascu+pl01W4r1qKxLwH9oFlEGDTeVkgokz+4kOTe0= Subject key identifier: 46:56:B7:74:3D:1B:2F:E0:19:31:10:B7:8B:C7:CC:88:C1:13:20:CA Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: DF Signing time: Mon 11 Aug 2025 05:39:51 +0000 Manifest this update: Mon 11 Aug 2025 05:39:51 +0000 Manifest next update: Mon 18 Aug 2025 05:39:51 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: XRzANNc5TAZYqph+WXodKCbeqJnLVy2z45XWCo4vCX4=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: 2DIbbbQohcgsUM76Q6xBDUsyKlfYgqXTFBRbG6OVDKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Aug 11 05:39:51 2025 GMT Not After : Aug 18 05:39:51 2025 GMT Subject: CN=68998227-971c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d0:12:f3:10:69:84:1e:11:85:54:0f:b5:70: 67:09:1a:7d:3e:1d:fc:d4:0b:02:78:b6:b8:59:f3: 06:3c:d6:ee:6c:f9:3d:d6:fb:1d:90:af:b2:22:87: e0:11:54:8c:5f:a7:e5:ed:4f:ac:c5:6e:03:0b:75: e0:bc:a2:c4:f5:54:ca:d4:74:8b:7c:9d:e9:e6:da: ed:06:70:b3:76:6b:14:ee:ef:b7:92:41:bc:de:53: 4b:e9:44:b8:0c:29:f9:95:b0:65:c9:77:db:ae:f6: 2e:8e:13:56:3b:f2:7a:3e:9e:0e:33:b6:19:5d:df: 86:97:51:b7:37:1f:fb:a9:4d:78:ed:ab:04:b2:31: 80:6e:d5:3c:1c:ac:7d:fc:0c:04:12:30:98:ba:30: 54:ed:7e:cb:9f:d2:39:4b:69:d5:de:73:42:4f:cd: d8:2d:44:6f:a0:4f:b0:d7:f9:99:54:87:3e:80:63: ee:fe:5b:de:7e:1b:ce:5a:fa:4d:03:78:24:30:ad: 23:87:61:b7:5c:94:f3:b7:b8:0b:e8:dc:b8:5f:51: 23:45:a2:37:12:a6:c2:02:e2:fb:bf:89:e6:f6:35: 4c:d4:cf:59:2b:d9:5d:40:4b:58:66:c4:b4:8e:aa: 54:d2:41:a2:2f:2f:40:4a:bf:48:5d:38:e3:dc:66: e5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:56:B7:74:3D:1B:2F:E0:19:31:10:B7:8B:C7:CC:88:C1:13:20:CA X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:26:25:62:76:c4:62:b4:51:3d:40:73:13:54:e1:25:c9:fa: 49:09:4d:a6:c0:29:81:db:07:cc:7d:16:b7:0f:ab:f6:a4:03: 5c:84:83:e0:4b:30:e2:22:1c:27:74:70:ad:80:88:a6:d9:58: 25:86:f2:c5:6d:ff:33:f5:70:3e:4d:cd:df:03:2b:61:f0:8f: 8f:87:d3:df:58:f5:e3:dc:3e:d4:50:00:e0:96:e8:34:d7:df: c1:a8:17:81:66:3c:a1:3a:91:9e:6d:1c:4f:e4:ca:f6:fc:97: 76:18:0e:eb:0b:32:a0:5f:af:ed:6b:31:e4:a6:c5:92:79:9f: 17:ad:70:e0:8e:bb:aa:45:a4:6b:69:97:ed:fa:3f:6e:fb:a0: ab:00:97:0a:9b:6c:a0:6c:96:58:d9:41:fd:72:37:0b:5a:ce: 11:78:09:39:ea:bb:db:0c:1b:5d:70:cf:d6:11:63:27:a0:56: 90:58:23:02:15:db:ac:23:7d:c1:1c:c8:33:42:b8:5e:df:04: a3:43:6c:35:9f:4a:20:66:3c:17:ab:98:5a:13:d9:89:d5:7c: a6:af:cb:36:a8:95:96:a9:38:96:d5:5e:a7:43:21:4a:0c:1a: 32:3b:eb:2d:ce:74:21:28:c9:95:dc:9c:6f:af:f0:6c:4a:67: 7f:6e:8b:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwODExMDUzOTUxWhcNMjUwODE4MDUzOTUxWjAYMRYwFAYD VQQDEw02ODk5ODIyNy05NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NAS8xBphB4RhVQPtXBnCRp9Ph381AsCeLa4WfMGPNbubPk91vsdkK+yIofg EVSMX6fl7U+sxW4DC3XgvKLE9VTK1HSLfJ3p5trtBnCzdmsU7u+3kkG83lNL6US4 DCn5lbBlyXfbrvYujhNWO/J6Pp4OM7YZXd+Gl1G3Nx/7qU147asEsjGAbtU8HKx9 /AwEEjCYujBU7X7Ln9I5S2nV3nNCT83YLURvoE+w1/mZVIc+gGPu/lvefhvOWvpN A3gkMK0jh2G3XJTzt7gL6Ny4X1EjRaI3EqbCAuL7v4nm9jVM1M9ZK9ldQEtYZsS0 jqpU0kGiLy9ASr9IXTjj3Gbl5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZWt3Q9 Gy/gGTEQt4vHzIjBEyDKMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYJiVidsRitFE9QHMTVOElyfpJCU2mwCmB2wfMfRa3D6v2pANchIPg SzDiIhwndHCtgIim2VglhvLFbf8z9XA+Tc3fAyth8I+Ph9PfWPXj3D7UUADglug0 19/BqBeBZjyhOpGebRxP5Mr2/Jd2GA7rCzKgX6/tazHkpsWSeZ8XrXDgjruqRaRr aZft+j9u+6CrAJcKm2ygbJZY2UH9cjcLWs4ReAk56rvbDBtdcM/WEWMnoFaQWCMC FdusI33BHMgzQrhe3wSjQ2w1n0ogZjwXq5haE9mJ1Xymr8s2qJWWqTiW1V6nQyFK DBoyO+stznQhKMmV3Jxvr/BsSmd/bouu -----END CERTIFICATE-----Generated at Wed Aug 13 02:50:16 2025 by rpki-client