$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: +U2/16FsbF7lrjqUP/UHBwG8wZoRrFga7zK5bnglm/E= Subject key identifier: D0:19:EE:46:6A:75:89:89:26:02:39:EE:F2:17:C9:21:C1:2E:61:4E Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04D1 Signing time: Sun 10 Aug 2025 23:57:06 +0000 Manifest this update: Sun 10 Aug 2025 23:57:05 +0000 Manifest next update: Sun 17 Aug 2025 23:57:05 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: qppPqOuSRilM/TE18zjM3TkkVQka6LV/HwQRvYBBUD0=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Aug 10 23:57:05 2025 GMT Not After : Aug 17 23:57:05 2025 GMT Subject: CN=689931d1-f957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f9:6d:26:ef:df:79:b5:47:6b:a9:d8:14:20: af:e9:28:88:b4:4b:0f:fd:63:2f:af:3f:43:3a:00: e5:60:48:a2:e5:47:ea:47:25:42:48:28:85:89:58: ae:e3:24:b0:ad:28:ff:98:21:10:fa:70:0a:6e:38: c2:63:ab:37:67:56:cc:c2:0b:5e:cb:dc:80:d5:6c: 8c:14:98:24:55:4d:1f:c1:c5:20:40:9e:9d:34:d2: ac:9c:dc:6f:30:c7:b5:ab:93:b6:49:4a:7d:cb:fd: 38:bb:e5:a5:11:24:dc:26:80:18:ab:5d:89:ef:f4: 5b:ea:3d:41:28:f4:7c:59:98:58:ad:5f:11:ed:ac: fd:22:f6:02:d0:2e:4c:92:0f:96:3a:de:9a:0f:f2: a9:6d:04:8c:37:61:fc:27:d7:ed:ef:88:d5:7e:5b: 2d:41:e1:f4:91:df:d1:c2:70:6e:4c:74:3f:25:e6: 9f:c1:71:8d:82:ed:43:eb:33:1a:67:48:1b:31:f0: cb:05:85:ff:8e:f3:a8:b7:31:16:a6:1c:ad:d7:59: 9a:d2:db:e9:b4:e6:64:4f:40:03:15:c9:b8:f9:8c: 03:69:24:c4:62:a4:56:90:cd:da:a3:0a:b4:05:95: cc:9f:75:41:16:7c:97:c5:12:84:a2:16:1f:b0:58: d4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:19:EE:46:6A:75:89:89:26:02:39:EE:F2:17:C9:21:C1:2E:61:4E X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9b:78:82:85:9e:fc:e1:6c:17:61:1e:0e:11:a8:03:78:1e: 5c:59:8e:6a:4c:28:ad:ef:2e:da:5d:81:79:12:93:19:a0:2e: 8b:b6:61:ed:82:77:28:f0:d8:e5:c4:44:6a:85:9e:52:3d:d2: 71:b7:bb:65:fc:d6:73:5d:09:f5:8b:19:09:44:84:89:85:8b: 38:23:93:01:eb:6f:f6:8d:c5:f5:51:d2:80:f5:7a:70:cb:46: 84:ba:01:e4:b6:15:c0:58:8b:25:37:37:c1:35:48:32:d2:69: a2:da:f2:f6:3d:4e:d0:c9:c5:eb:05:67:6d:d5:d0:eb:23:1b: 38:8f:b6:04:7e:3d:89:8f:64:58:fe:79:c3:a6:c0:49:d9:e2: 0e:c4:cf:e2:cc:01:37:18:4d:13:bc:64:bf:e4:80:5b:07:e6: 92:23:ae:f1:0e:1e:02:24:fc:bb:8b:29:25:8f:9b:bf:16:20: 32:05:73:da:2a:77:80:48:64:6e:bc:27:1e:86:a9:1d:1d:62: 0c:fd:48:15:71:8e:04:ed:0f:8d:06:ef:da:44:55:54:ca:20: 36:03:14:ca:41:61:e4:ea:b4:58:93:96:d0:d3:6a:fa:82:8c: 9d:84:73:1c:a7:d1:df:46:7f:d5:75:9f:99:a6:b4:74:a4:bb: 39:be:a6:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwODEwMjM1NzA1WhcNMjUwODE3MjM1NzA1WjAYMRYwFAYD VQQDEw02ODk5MzFkMS1mOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/ltJu/febVHa6nYFCCv6SiItEsP/WMvrz9DOgDlYEii5UfqRyVCSCiFiViu 4ySwrSj/mCEQ+nAKbjjCY6s3Z1bMwgtey9yA1WyMFJgkVU0fwcUgQJ6dNNKsnNxv MMe1q5O2SUp9y/04u+WlESTcJoAYq12J7/Rb6j1BKPR8WZhYrV8R7az9IvYC0C5M kg+WOt6aD/KpbQSMN2H8J9ft74jVflstQeH0kd/RwnBuTHQ/JeafwXGNgu1D6zMa Z0gbMfDLBYX/jvOotzEWphyt11ma0tvptOZkT0ADFcm4+YwDaSTEYqRWkM3aowq0 BZXMn3VBFnyXxRKEohYfsFjUpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAZ7kZq dYmJJgI57vIXySHBLmFOMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPm3iChZ784WwXYR4OEagDeB5cWY5qTCit7y7aXYF5EpMZoC6LtmHt gnco8NjlxERqhZ5SPdJxt7tl/NZzXQn1ixkJRISJhYs4I5MB62/2jcX1UdKA9Xpw y0aEugHkthXAWIslNzfBNUgy0mmi2vL2PU7QycXrBWdt1dDrIxs4j7YEfj2Jj2RY /nnDpsBJ2eIOxM/izAE3GE0TvGS/5IBbB+aSI67xDh4CJPy7iyklj5u/FiAyBXPa KneASGRuvCcehqkdHWIM/UgVcY4E7Q+NBu/aRFVUyiA2AxTKQWHk6rRYk5bQ02r6 goydhHMcp9HfRn/VdZ+ZprR0pLs5vqZY -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:09 2025 by rpki-client