$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: ihoTMHfaHhKLQ2dN1ItQnUpuW92OU2ae5wpVxAbGMOk= Subject key identifier: 22:E1:B7:AC:7A:C7:3C:A7:B3:82:24:9F:61:7B:CA:7D:8C:F7:1B:9B Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0AE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0ADF Signing time: Fri 08 Aug 2025 19:40:51 +0000 Manifest this update: Fri 08 Aug 2025 19:40:51 +0000 Manifest next update: Fri 15 Aug 2025 19:40:51 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: 5+XHfK+fz0KtEFeTZUOKJea+DIXQos6oIqazaxfnQDE=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Aug 8 19:40:51 2025 GMT Not After : Aug 15 19:40:51 2025 GMT Subject: CN=689652c3-fa1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:93:63:df:52:4f:bc:c4:83:72:81:e3:01:d0: ff:44:23:c6:b7:d9:c5:97:03:7b:57:db:8d:2c:33: 7e:25:f7:d0:6a:07:74:82:32:c4:4d:14:07:41:71: d1:09:79:9a:c8:f6:75:6e:2b:2f:45:7c:77:c9:fd: d8:1c:9c:b5:3c:db:55:01:d9:56:7b:0e:3f:c0:84: 1d:07:33:5e:55:dc:fe:3f:68:b6:8a:71:f1:8f:a8: f7:19:4a:ea:9b:56:85:f7:de:cc:1a:bd:5a:1b:5a: 56:79:34:2e:d5:a8:0f:6b:06:0f:f7:ec:fb:54:af: b9:22:32:2d:84:d5:75:56:6b:a8:b6:ef:64:42:52: dc:92:b4:94:d6:d1:4d:4f:4d:4d:1d:ca:65:94:81: 35:55:f5:86:11:da:d9:2f:aa:bc:5d:a6:4c:aa:be: 0d:52:5e:21:96:a1:63:fc:37:4d:2d:a6:50:88:18: 77:1c:f7:a8:b7:e8:c7:4a:97:7b:0e:7a:e2:13:08: 9d:a2:43:3e:fc:04:c4:68:fc:99:f7:8a:82:e5:dd: 5a:fd:62:f8:12:d4:62:b3:a5:be:91:7c:dc:53:40: c8:07:a8:0b:3d:e0:51:55:40:26:7f:b0:a3:e5:31: 95:5c:b2:f8:33:26:b1:59:0c:3e:62:c9:ea:09:9a: 1f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E1:B7:AC:7A:C7:3C:A7:B3:82:24:9F:61:7B:CA:7D:8C:F7:1B:9B X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f3:6f:d3:00:55:3f:fa:d2:56:73:78:fa:48:df:77:72:44: 93:2f:87:ef:e7:7f:21:98:2c:45:f6:40:6b:0e:fa:d1:58:4d: 7a:06:c1:1e:4f:06:20:6e:8c:ab:cb:90:82:28:5e:a8:c9:6e: 58:60:ac:70:c9:49:84:59:ef:84:01:89:3b:8d:56:d5:a1:aa: 5e:45:54:82:f6:ce:d5:d5:97:8e:e4:61:d8:f8:d8:61:41:c2: f6:ea:1c:7e:67:3f:4a:72:51:33:84:42:a2:e2:35:23:6c:44: 5d:e4:15:0e:b2:0a:a8:36:ee:5c:61:33:f2:23:17:df:77:8a: 27:14:a7:a4:af:bc:68:89:7d:aa:95:b6:85:80:c8:e4:90:99: 0f:33:aa:59:47:18:d5:47:23:e4:f3:ff:bc:e8:c6:50:2b:62: cf:96:9a:cd:5a:e8:a9:26:9d:ff:b6:b4:ff:ee:23:d5:6b:ed: 8b:81:6e:84:dd:ae:33:2c:ec:18:4e:a7:49:33:c4:62:56:ad: c2:ae:2f:a0:b3:71:b2:4a:25:1f:28:e8:64:30:97:da:ab:c4: bd:8e:c0:74:03:b2:ae:d7:d9:a5:94:d6:76:71:68:39:fe:91: a4:0c:47:56:5b:7f:98:f6:56:4c:d7:fb:27:47:c3:47:39:94: 24:3e:df:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwODA4MTk0MDUxWhcNMjUwODE1MTk0MDUxWjAYMRYwFAYD VQQDEw02ODk2NTJjMy1mYTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJNj31JPvMSDcoHjAdD/RCPGt9nFlwN7V9uNLDN+JffQagd0gjLETRQHQXHR CXmayPZ1bisvRXx3yf3YHJy1PNtVAdlWew4/wIQdBzNeVdz+P2i2inHxj6j3GUrq m1aF997MGr1aG1pWeTQu1agPawYP9+z7VK+5IjIthNV1Vmuotu9kQlLckrSU1tFN T01NHcpllIE1VfWGEdrZL6q8XaZMqr4NUl4hlqFj/DdNLaZQiBh3HPeot+jHSpd7 DnriEwidokM+/ATEaPyZ94qC5d1a/WL4EtRis6W+kXzcU0DIB6gLPeBRVUAmf7Cj 5TGVXLL4MyaxWQw+YsnqCZofFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLht6x6 xzyns4Ikn2F7yn2M9xubMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB982/TAFU/+tJWc3j6SN93ckSTL4fv538hmCxF9kBrDvrRWE16BsEe TwYgboyry5CCKF6oyW5YYKxwyUmEWe+EAYk7jVbVoapeRVSC9s7V1ZeO5GHY+Nhh QcL26hx+Zz9KclEzhEKi4jUjbERd5BUOsgqoNu5cYTPyIxffd4onFKekr7xoiX2q lbaFgMjkkJkPM6pZRxjVRyPk8/+86MZQK2LPlprNWuipJp3/trT/7iPVa+2LgW6E 3a4zLOwYTqdJM8RiVq3Cri+gs3GySiUfKOhkMJfaq8S9jsB0A7Ku19mllNZ2cWg5 /pGkDEdWW3+Y9lZM1/snR8NHOZQkPt+y -----END CERTIFICATE-----Generated at Sat Aug 9 15:07:00 2025 by rpki-client