$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: 1hg5lkUVTxBPs0T78CL8UkqjHbDWdDfUdS+g32NthIU= Subject key identifier: 44:F4:8C:FA:8A:1C:28:CE:33:05:73:FB:BE:E2:28:EF:FF:69:2B:EA Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07B0 Signing time: Fri 08 Aug 2025 21:39:49 +0000 Manifest this update: Fri 08 Aug 2025 21:39:48 +0000 Manifest next update: Fri 15 Aug 2025 21:39:48 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: ZTtsgWgi8TBfK06TJcIyYMbX1oHXi3rzv2WZu/SRqbs=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1981 (0x7bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Aug 8 21:39:48 2025 GMT Not After : Aug 15 21:39:48 2025 GMT Subject: CN=68966ea4-3a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d6:7c:46:fd:97:3a:94:34:88:a1:57:df:0b: 06:f4:3f:14:31:dc:fd:f3:ca:f3:0b:67:ff:84:94: 3e:39:79:16:34:c6:b6:6b:df:80:3a:50:b7:f1:db: c3:0d:14:ab:b0:46:4d:00:cd:a1:f4:cd:58:f0:a0: d4:9e:c0:ca:15:fe:8d:16:bd:5c:f7:70:cb:96:73: 90:8b:8c:31:7d:15:13:35:1f:fb:81:17:e5:93:22: 0a:32:e7:4d:b8:33:30:62:55:91:3b:52:4d:24:be: a9:3b:37:74:09:21:3b:ea:ea:96:39:ad:b4:a0:ab: f9:79:4b:3c:ae:6c:db:f5:94:34:4c:52:5f:47:c8: cb:39:ea:73:15:6d:67:49:9d:e5:14:ac:68:f9:7f: 2c:09:1f:f6:57:11:ab:08:c5:1f:a6:4d:bd:3d:8d: 45:b9:8c:d0:ae:85:33:af:da:4c:e8:48:67:7a:ed: 31:43:7c:89:46:34:8c:3f:f6:3b:ad:70:f0:65:93: 83:f7:6f:18:79:d3:b8:83:71:88:85:56:d4:8e:da: 27:c5:7e:87:6e:bd:b4:57:00:90:3b:95:8f:08:ce: 97:25:55:27:c4:58:3d:ee:63:10:6b:d7:d5:44:e9: b6:17:2e:5c:24:6c:0b:1b:5a:aa:b8:95:f9:f4:24: ae:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F4:8C:FA:8A:1C:28:CE:33:05:73:FB:BE:E2:28:EF:FF:69:2B:EA X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:1f:d5:63:89:5c:64:72:49:76:21:52:54:4e:a5:b9:ea:ef: fb:b5:00:30:dc:05:c3:d2:ee:17:e6:9a:fd:39:a5:3c:2f:9d: 75:d0:55:43:7c:fb:a7:ba:a0:26:51:72:02:ee:2f:4e:a7:c2: f5:37:63:4a:67:e8:66:a4:b3:ac:41:05:d5:d1:5b:f7:b2:3e: c4:d9:62:44:e5:99:a1:36:fe:c6:77:eb:07:81:a4:bd:a0:8b: 66:5b:c8:14:62:1f:e6:db:6f:c4:3a:18:a6:05:e9:61:d3:db: 6f:1a:77:65:4b:64:9b:e4:a1:7b:67:75:00:24:96:00:a9:bd: bb:72:84:fb:a2:6c:c1:fc:47:f7:42:0b:99:e0:fc:78:84:fb: c7:a8:2f:d7:0f:cf:ba:77:ef:f4:47:c5:ab:48:12:9f:bb:cd: 27:35:f4:b6:6a:07:63:65:ce:58:e6:c0:df:1d:0a:df:bf:e7: 60:de:61:69:b9:aa:41:bc:7c:8b:45:15:d3:87:61:b2:bd:3d: b5:67:5f:b1:b9:59:9f:95:b2:5c:6e:70:90:d9:3d:7b:6b:6d: 6f:25:85:18:39:d9:57:76:9c:88:37:9e:49:dc:e8:d8:37:63: 9a:ce:ed:33:3a:95:a6:a2:12:87:71:a5:de:57:97:76:bb:93: 19:12:fd:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwODA4MjEzOTQ4WhcNMjUwODE1MjEzOTQ4WjAYMRYwFAYD VQQDEw02ODk2NmVhNC0zYTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tZ8Rv2XOpQ0iKFX3wsG9D8UMdz988rzC2f/hJQ+OXkWNMa2a9+AOlC38dvD DRSrsEZNAM2h9M1Y8KDUnsDKFf6NFr1c93DLlnOQi4wxfRUTNR/7gRflkyIKMudN uDMwYlWRO1JNJL6pOzd0CSE76uqWOa20oKv5eUs8rmzb9ZQ0TFJfR8jLOepzFW1n SZ3lFKxo+X8sCR/2VxGrCMUfpk29PY1FuYzQroUzr9pM6Ehneu0xQ3yJRjSMP/Y7 rXDwZZOD928YedO4g3GIhVbUjtonxX6Hbr20VwCQO5WPCM6XJVUnxFg97mMQa9fV ROm2Fy5cJGwLG1qquJX59CSu/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET0jPqK HCjOMwVz+77iKO//aSvqMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOH9VjiVxkckl2IVJUTqW56u/7tQAw3AXD0u4X5pr9OaU8L5110FVD fPunuqAmUXIC7i9Op8L1N2NKZ+hmpLOsQQXV0Vv3sj7E2WJE5ZmhNv7Gd+sHgaS9 oItmW8gUYh/m22/EOhimBelh09tvGndlS2Sb5KF7Z3UAJJYAqb27coT7omzB/Ef3 QguZ4Px4hPvHqC/XD8+6d+/0R8WrSBKfu80nNfS2agdjZc5Y5sDfHQrfv+dg3mFp uapBvHyLRRXTh2GyvT21Z1+xuVmflbJcbnCQ2T17a21vJYUYOdlXdpyIN55J3OjY N2Oazu0zOpWmohKHcaXeV5d2u5MZEv0r -----END CERTIFICATE-----Generated at Sun Aug 10 18:21:42 2025 by rpki-client