$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: 9uEc6+ES+61M1NAjqNAifF6Hx7lt3UhMFDaBfxwqyFo= Subject key identifier: 8C:B1:E4:B9:44:00:08:2E:88:58:29:FD:03:D5:AA:82:FA:02:76:38 Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: D2 Signing time: Sat 09 Aug 2025 06:03:35 +0000 Manifest this update: Sat 09 Aug 2025 06:03:35 +0000 Manifest next update: Sat 16 Aug 2025 06:03:35 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: Vpfy+3e9SXcu0a1aacZze5wx+BtHJ6mRNyBz2WERdJE=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Aug 9 06:03:35 2025 GMT Not After : Aug 16 06:03:35 2025 GMT Subject: CN=6896e4b7-53f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:33:e1:6b:27:2f:f1:a0:09:fe:41:fc:d6: ea:06:03:22:a5:12:1c:90:97:68:5e:03:b7:c8:8a: a7:15:5e:9a:11:48:08:79:34:25:3d:b5:db:52:dd: 40:8d:68:aa:d9:71:8c:b0:78:8a:33:1f:aa:7a:3d: 8b:d9:48:2b:7e:88:1e:7d:93:de:11:30:b8:46:d9: ed:ff:f2:5b:6b:84:a6:48:21:4e:c1:25:fb:df:d7: 7b:55:ee:42:66:81:cf:67:51:e3:8b:f3:90:97:0f: e0:a3:d1:38:1d:67:d9:f9:ba:1e:3e:24:cb:4d:05: af:c6:18:5d:15:33:f4:5c:7f:95:82:b3:25:ef:21: 04:ba:81:ac:f0:99:d6:41:91:67:d2:e5:c8:c7:cd: 18:d9:83:df:28:4c:18:a1:88:13:6f:05:46:10:79: d4:8f:6b:05:1a:4b:0c:62:ab:a7:b1:b4:b4:b9:29: 7d:01:77:21:25:20:a2:f3:75:39:9b:6e:39:b3:f6: 03:a9:2d:b8:62:f9:bf:71:a0:28:72:b2:5f:a7:e3: 8e:a4:58:14:15:54:32:98:06:3a:cc:1e:ef:3b:5b: 1b:e9:d8:15:99:d0:6b:c2:a2:d7:89:c5:cd:79:3e: 8c:0e:62:07:22:36:30:f9:73:69:55:d4:ec:4d:9d: 7c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B1:E4:B9:44:00:08:2E:88:58:29:FD:03:D5:AA:82:FA:02:76:38 X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9d:34:a7:b4:cd:0f:9b:26:d2:e9:6c:89:51:d5:58:ae:fc: de:a9:1f:36:48:24:d3:62:0e:c4:06:f7:00:18:f4:25:06:66: 61:51:78:da:3d:0e:90:89:fa:33:2e:8f:0f:42:bb:51:47:a0: 08:51:68:48:66:6f:29:50:4e:2d:bf:4f:ee:82:77:b8:ef:b5: 56:79:b3:a5:a8:22:7f:3c:4e:37:51:c6:b3:21:ec:d9:53:78: 44:16:97:a8:cd:c2:ca:e8:6e:e8:9c:4a:d2:b1:72:9e:56:a0: 53:9f:04:29:dc:82:a5:b9:62:28:64:29:c6:c6:03:01:0c:e2: 6a:19:d4:5f:5f:3b:10:28:de:21:33:61:04:1a:27:e9:04:f2: 4a:a6:b0:c3:b2:ce:4a:33:ed:c3:60:08:99:89:eb:58:e2:8a: 4d:71:8a:04:0e:f1:6c:b1:6d:d2:46:e0:dd:dc:82:29:50:a4: b3:1e:32:fa:c0:30:02:52:c2:f6:3f:d2:b2:4d:34:ad:15:23: a3:d6:a8:ae:fb:fb:32:7f:ce:43:4b:c4:3b:c2:c7:48:05:53: 33:1a:68:b5:62:e8:23:b4:36:f9:e0:ad:60:d7:eb:7f:ee:94: c5:ed:3b:11:4e:bd:e7:6e:a2:14:ab:1a:ce:4c:3e:b7:36:47: d9:ee:06:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUwODA5MDYwMzM1WhcNMjUwODE2MDYwMzM1WjAYMRYwFAYD VQQDEw02ODk2ZTRiNy01M2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1cz4WsnL/GgCf5B/NbqBgMipRIckJdoXgO3yIqnFV6aEUgIeTQlPbXbUt1A jWiq2XGMsHiKMx+qej2L2UgrfogefZPeETC4Rtnt//Jba4SmSCFOwSX739d7Ve5C ZoHPZ1Hji/OQlw/go9E4HWfZ+boePiTLTQWvxhhdFTP0XH+VgrMl7yEEuoGs8JnW QZFn0uXIx80Y2YPfKEwYoYgTbwVGEHnUj2sFGksMYqunsbS0uSl9AXchJSCi83U5 m245s/YDqS24Yvm/caAocrJfp+OOpFgUFVQymAY6zB7vO1sb6dgVmdBrwqLXicXN eT6MDmIHIjYw+XNpVdTsTZ186QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyx5LlE AAguiFgp/QPVqoL6AnY4MB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADnTSntM0PmybS6WyJUdVYrvzeqR82SCTTYg7EBvcAGPQlBmZhUXja PQ6QifozLo8PQrtRR6AIUWhIZm8pUE4tv0/ugne477VWebOlqCJ/PE43UcazIezZ U3hEFpeozcLK6G7onErSsXKeVqBTnwQp3IKluWIoZCnGxgMBDOJqGdRfXzsQKN4h M2EEGifpBPJKprDDss5KM+3DYAiZietY4opNcYoEDvFssW3SRuDd3IIpUKSzHjL6 wDACUsL2P9KyTTStFSOj1qiu+/syf85DS8Q7wsdIBVMzGmi1YugjtDb54K1g1+t/ 7pTF7TsRTr3nbqIUqxrOTD63NkfZ7gZa -----END CERTIFICATE-----Generated at Sat Aug 9 15:06:50 2025 by rpki-client