$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft File: Ixupmdjogk9iIrhWhdB91HpwRts.mft (raw, json) Hash identifier: hGJpJUBsLdAXZbttfu4ttujQPi3t5ugFeP68HO6ZXeg= Subject key identifier: 39:BA:BA:0A:A9:B5:DA:4E:81:19:E0:6E:0F:6D:9C:7A:A9:AF:DB:F5 Authority key identifier: 23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB Certificate issuer: /CN=A916B95A/serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft Manifest number: CF Signing time: Sat 09 Aug 2025 06:03:17 +0000 Manifest this update: Sat 09 Aug 2025 06:03:16 +0000 Manifest next update: Sat 16 Aug 2025 06:03:16 +0000 Files and hashes: 1: Ixupmdjogk9iIrhWhdB91HpwRts.crl (hash: q368y5gjzZmx13qTmXRO4Nma6HHn169DHNt7R8sNyLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Validity Not Before: Aug 9 06:03:16 2025 GMT Not After : Aug 16 06:03:16 2025 GMT Subject: CN=6896e4a4-f221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:be:07:16:0c:f1:b6:e5:69:49:2b:00:96:ec: 7b:89:72:15:a5:bd:df:5f:7c:99:f1:c5:a2:66:61: 56:f0:7f:65:15:b3:8b:e6:57:d8:6b:05:5d:51:aa: 74:00:b1:8a:d2:d1:f3:f3:fb:05:0b:ef:a8:cb:59: bd:14:53:8f:f1:99:d4:eb:cb:5e:40:3a:83:e5:e4: 4d:d2:21:6c:1b:2c:95:19:71:b4:62:03:5c:fe:11: 72:cf:35:e1:07:7e:92:bc:26:c0:9e:55:24:f0:38: 23:87:94:a3:dd:98:c1:a9:d9:7b:c5:92:a0:b0:dc: 5b:be:35:0d:1a:e1:e3:c6:7e:6d:f0:d9:e6:d0:48: ff:cb:a5:17:f3:bc:db:50:ac:e8:30:1e:8e:5c:60: e1:04:e8:77:ad:4e:87:10:58:c1:d7:74:99:1f:44: 01:7a:06:fa:9c:a8:e3:7a:ac:7d:dd:c8:18:99:5e: ee:80:98:77:32:26:78:b6:19:59:54:1d:af:5d:e2: ea:85:3c:d8:0f:c7:61:a6:dc:3f:84:80:48:65:a2: d5:9f:f2:6a:06:2f:dd:05:b5:1e:83:13:ff:87:09: 30:dd:06:a6:39:df:0c:5c:25:3a:16:01:cc:a1:e8: 5b:6a:b2:d2:00:2f:bf:75:68:3e:f0:ba:f9:79:aa: a1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BA:BA:0A:A9:B5:DA:4E:81:19:E0:6E:0F:6D:9C:7A:A9:AF:DB:F5 X509v3 Authority Key Identifier: keyid:23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:e2:b5:43:5a:80:8f:e5:b6:00:1b:b7:8b:0e:9e:03:9a:8b: 57:fd:37:01:22:aa:9d:23:6e:f4:a7:68:15:25:14:97:90:52: e0:ba:f2:8e:c3:0f:fc:ff:5e:77:bf:dd:54:a4:e1:2e:31:dd: f3:6a:1a:a1:29:97:ec:7f:33:30:32:da:91:60:97:0d:5d:91: 02:5d:27:eb:a4:1f:f4:56:eb:93:46:97:0c:72:ae:a5:cc:a4: 84:6d:42:30:1f:a0:83:29:6e:f4:e0:f4:a3:bd:00:fa:ef:27: be:70:cd:72:ad:a0:f9:76:fe:29:77:bb:78:5d:23:ca:c7:8d: 29:fe:0e:6a:2e:7a:80:09:e9:cf:5e:7a:9a:a8:11:c4:bb:c1: f9:d1:37:e8:88:a5:a0:bd:2d:be:3a:e4:4f:51:4a:2e:4a:14: 1b:fa:3b:ad:04:df:87:05:3a:f1:4e:ec:7e:90:8f:1c:b2:75: 7a:6c:3e:1a:3e:43:82:20:ac:71:53:0a:52:c7:db:91:24:3a: d7:26:cd:4e:81:f9:6d:12:9d:98:44:21:dd:f0:8c:83:04:e2: e9:a9:ad:74:03:86:17:49:0a:b4:cc:07:e9:93:37:f9:3e:e6: 51:e1:0d:2a:02:64:62:a7:e3:a1:8a:26:e2:ee:ae:c6:1e:62: 21:e5:4e:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKDIzMUJBOTk5RDhFODgyNEY2MjIyQjg1Njg1RDA3REQ0 N0E3MDQ2REIwHhcNMjUwODA5MDYwMzE2WhcNMjUwODE2MDYwMzE2WjAYMRYwFAYD VQQDEw02ODk2ZTRhNC1mMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr4HFgzxtuVpSSsAlux7iXIVpb3fX3yZ8cWiZmFW8H9lFbOL5lfYawVdUap0 ALGK0tHz8/sFC++oy1m9FFOP8ZnU68teQDqD5eRN0iFsGyyVGXG0YgNc/hFyzzXh B36SvCbAnlUk8Dgjh5Sj3ZjBqdl7xZKgsNxbvjUNGuHjxn5t8Nnm0Ej/y6UX87zb UKzoMB6OXGDhBOh3rU6HEFjB13SZH0QBegb6nKjjeqx93cgYmV7ugJh3MiZ4thlZ VB2vXeLqhTzYD8dhptw/hIBIZaLVn/JqBi/dBbUegxP/hwkw3QamOd8MXCU6FgHM oehbarLSAC+/dWg+8Lr5eaqhlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm6ugqp tdpOgRngbg9tnHqpr9v1MB8GA1UdIwQYMBaAFCMbqZnY6IJPYiK4VoXQfdR6cEbb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81QTE5QkRDQTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2drOWlJcmhXaGRCOTFIcHdS dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l4dXBtZGpvZ2s5aUlyaFdoZEI5MUhwd1J0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81QTE5QkRDQTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2dr OWlJcmhXaGRCOTFIcHdSdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs4rVDWoCP5bYAG7eLDp4DmotX/TcBIqqdI270p2gVJRSXkFLguvKO ww/8/153v91UpOEuMd3zahqhKZfsfzMwMtqRYJcNXZECXSfrpB/0VuuTRpcMcq6l zKSEbUIwH6CDKW704PSjvQD67ye+cM1yraD5dv4pd7t4XSPKx40p/g5qLnqACenP XnqaqBHEu8H50TfoiKWgvS2+OuRPUUouShQb+jutBN+HBTrxTux+kI8csnV6bD4a PkOCIKxxUwpSx9uRJDrXJs1OgfltEp2YRCHd8IyDBOLpqa10A4YXSQq0zAfpkzf5 PuZR4Q0qAmRip+Ohiibi7q7GHmIh5U4u -----END CERTIFICATE-----Generated at Sun Aug 10 18:28:56 2025 by rpki-client