$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: cGOvHPFjio1wUj/0hCY5UHQP2fKKh7U180uZqjfABOc= Subject key identifier: 3E:EA:86:A4:C9:0E:6E:76:A3:2E:96:D8:FF:7B:83:AF:DC:A1:49:10 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0C5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0C52 Signing time: Sun 10 Aug 2025 18:30:35 +0000 Manifest this update: Sun 10 Aug 2025 18:30:35 +0000 Manifest next update: Sun 17 Aug 2025 18:30:35 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: 5m7PTddOu3etLmOp4lqspZdZiX2Y8As5tiroDfLM+n8=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: jTKb6UqoxVKwoNueFvf3BZWhxggm3hq3OfDJsuiV3HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Aug 10 18:30:35 2025 GMT Not After : Aug 17 18:30:35 2025 GMT Subject: CN=6898e54b-2f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:c3:bb:78:fb:0b:ba:bb:90:0c:60:b6:7e: b0:32:12:c5:04:ba:72:38:be:e9:0d:34:11:67:d2: a7:00:7f:71:e2:f4:78:c5:ff:71:d5:79:f5:21:9c: 2a:aa:ee:ad:ce:34:0a:70:09:40:2f:4a:65:5a:85: 00:8e:fe:6e:30:47:e1:3e:21:6a:72:98:fe:e7:10: 9b:e2:42:d6:33:94:45:17:68:1f:7b:4b:e8:c6:c5: 82:2b:c2:89:ba:2a:20:ad:55:aa:19:3b:8b:18:5d: 24:86:fd:c9:e3:b7:5f:e9:a6:a2:99:99:92:b3:d7: 44:c6:73:db:3f:5c:a2:5a:2c:4e:b5:87:c2:3f:2f: 06:66:9a:e1:f6:f8:2b:f3:85:4d:c2:56:fd:4c:76: 26:33:7b:ca:76:70:50:54:d9:27:e7:65:4d:e5:98: 5c:bd:d5:1e:3d:5f:db:72:d1:b1:ec:aa:d2:d0:db: a1:d7:1f:5b:c5:73:8c:91:8f:14:13:9b:45:11:27: 87:6c:c6:54:9e:c5:98:90:be:41:57:c0:4c:fa:45: fd:90:76:56:ea:d2:b1:43:fa:eb:45:1c:f1:a3:77: 5d:c0:4c:d4:30:6a:33:97:1e:37:aa:d4:f2:1d:29: 34:6e:3f:66:de:1b:81:99:00:e7:5e:f6:51:86:26: f0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EA:86:A4:C9:0E:6E:76:A3:2E:96:D8:FF:7B:83:AF:DC:A1:49:10 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:50:11:b0:4c:d4:cf:f9:10:a6:ea:f6:db:27:6c:8c:ca:a7: ab:89:15:af:42:32:39:53:e8:6a:85:2b:2b:d8:1f:93:30:1b: ad:89:9a:14:5a:bd:2f:9c:3d:12:d3:5b:b1:c3:77:76:d9:2b: d2:13:05:2d:3a:95:d1:e2:66:5c:5b:69:47:a4:e6:ba:b1:a9: a6:f9:db:e2:96:dc:aa:4e:75:c8:98:f2:57:e3:ec:a5:f4:fe: 4b:cc:40:f4:ff:ad:37:83:39:aa:7d:31:1e:41:0d:a5:0e:57: 8b:25:fb:61:cd:48:ac:1d:9d:f0:91:30:1f:58:b6:65:60:d1: 61:01:e2:28:55:26:86:16:21:be:08:5d:c4:fc:20:16:fa:64: ef:15:0c:17:42:40:12:6a:b5:1b:ee:56:53:f5:41:a3:fa:78: cb:26:6a:11:5d:3e:79:1e:62:3f:c6:d0:82:bd:17:0e:fe:81: db:fb:c2:18:21:5a:81:03:8e:c1:8f:fb:f2:30:1a:df:c0:d8: 91:eb:67:1f:65:1f:18:89:d7:79:1f:18:e6:d1:e8:0e:f4:60: c5:40:1c:64:f5:bc:4b:44:8f:d1:bd:b6:ee:64:ec:d6:5e:c4: 59:fb:52:f3:c8:a3:fc:d3:a7:2b:ca:d8:55:97:a4:ff:e9:73: fa:0a:c6:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjUwODEwMTgzMDM1WhcNMjUwODE3MTgzMDM1WjAYMRYwFAYD VQQDEw02ODk4ZTU0Yi0yZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtvDu3j7C7q7kAxgtn6wMhLFBLpyOL7pDTQRZ9KnAH9x4vR4xf9x1Xn1IZwq qu6tzjQKcAlAL0plWoUAjv5uMEfhPiFqcpj+5xCb4kLWM5RFF2gfe0voxsWCK8KJ uiogrVWqGTuLGF0khv3J47df6aaimZmSs9dExnPbP1yiWixOtYfCPy8GZprh9vgr 84VNwlb9THYmM3vKdnBQVNkn52VN5ZhcvdUePV/bctGx7KrS0Nuh1x9bxXOMkY8U E5tFESeHbMZUnsWYkL5BV8BM+kX9kHZW6tKxQ/rrRRzxo3ddwEzUMGozlx43qtTy HSk0bj9m3huBmQDnXvZRhibwSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7qhqTJ Dm52oy6W2P97g6/coUkQMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUUBGwTNTP+RCm6vbbJ2yMyqeriRWvQjI5U+hqhSsr2B+TMButiZoU Wr0vnD0S01uxw3d22SvSEwUtOpXR4mZcW2lHpOa6samm+dviltyqTnXImPJX4+yl 9P5LzED0/603gzmqfTEeQQ2lDleLJfthzUisHZ3wkTAfWLZlYNFhAeIoVSaGFiG+ CF3E/CAW+mTvFQwXQkASarUb7lZT9UGj+njLJmoRXT55HmI/xtCCvRcO/oHb+8IY IVqBA47Bj/vyMBrfwNiR62cfZR8Yidd5Hxjm0egO9GDFQBxk9bxLRI/RvbbuZOzW XsRZ+1LzyKP806crythVl6T/6XP6CsaB -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:08 2025 by rpki-client