$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: hxzT4y7rH4eRVGpsBlsgx9Wj47HQoAhBDKhC/mkyyIo= Subject key identifier: 89:4A:5E:99:16:70:39:0D:4E:31:4B:57:85:B4:5B:75:BA:D9:3F:A8 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 069B Signing time: Wed 06 Aug 2025 23:46:05 +0000 Manifest this update: Wed 06 Aug 2025 23:46:04 +0000 Manifest next update: Wed 13 Aug 2025 23:46:04 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: by1tPE6Q1hwz0EyUsAu3dJThATBZYl/pTRX8wsZoc7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Aug 6 23:46:04 2025 GMT Not After : Aug 13 23:46:04 2025 GMT Subject: CN=6893e93c-561b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f8:25:8c:3f:54:8a:c0:ee:42:0a:36:48:fc: 9b:50:24:71:90:d5:76:ad:b8:7d:43:fa:db:b9:19: 7c:9b:a0:10:05:f2:1f:f6:65:71:c1:29:9e:7a:bc: 13:82:22:3d:4e:29:a2:cf:56:fa:19:33:6a:94:6e: c6:3d:74:e0:6d:12:22:fe:be:29:f1:c0:a7:cd:fd: 58:a3:42:66:ff:e4:83:59:58:83:18:92:a4:71:91: 6c:af:6c:78:8c:eb:37:d7:9b:0d:6f:71:88:1f:42: 98:10:1d:a4:52:24:77:9e:9a:02:01:82:6b:e7:db: 53:b0:01:9c:a6:13:89:fb:e1:c3:21:2c:eb:39:84: dc:49:6f:d5:85:d2:30:6d:2d:66:84:da:92:2a:51: db:92:43:cf:9a:47:82:38:23:e9:53:50:b0:b3:29: fb:a9:90:ec:70:51:f3:7c:ec:72:fb:f5:81:1b:12: 79:bb:f9:57:93:00:8a:c8:41:bd:8e:f1:20:6e:e2: 84:ae:d1:cf:de:5d:f3:94:3c:ca:cd:5f:c2:6c:a3: 36:0b:da:fc:9e:4e:e4:39:da:f3:61:70:0f:a9:58: 65:7c:c7:c8:a5:a6:5e:d5:97:65:ad:7e:24:50:6f: d4:0e:dc:f3:af:cd:13:37:ca:e6:05:7b:56:f8:72: 03:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4A:5E:99:16:70:39:0D:4E:31:4B:57:85:B4:5B:75:BA:D9:3F:A8 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a2:7f:b2:73:8b:49:fa:be:06:c9:73:56:e7:75:c1:c2:a8: b9:3e:94:a7:59:c3:b9:c2:2e:28:f3:c3:8d:1b:44:5f:19:2d: 2a:aa:12:11:d6:ec:65:44:81:68:49:40:f3:18:35:a0:d8:1c: ed:85:65:c8:ed:a9:ce:6c:fd:b3:f8:d3:9b:39:df:53:b0:8f: 6a:7e:cd:7b:9a:b4:b5:98:4b:e1:21:f0:b9:b8:54:35:f9:37: d6:74:a1:28:ce:a4:31:44:3d:8e:7e:ac:39:8b:2c:45:06:ce: 7b:ae:59:58:c2:2f:cf:59:26:e9:50:ed:38:15:a1:7f:97:5b: 47:e8:a4:bb:ff:3b:b2:f8:24:79:c7:52:47:a9:1a:e0:1a:cc: 06:ee:7d:6a:d9:d8:cd:78:92:74:8a:05:fd:08:5a:e4:0e:a9: 6a:7d:10:0d:33:b3:08:b8:da:6f:85:00:e4:fd:35:ce:cb:87: 4f:0d:31:f9:22:72:10:b4:a4:a1:5c:b4:03:1c:18:95:31:61: 4a:a5:34:e2:cb:89:c0:df:90:ec:2d:8f:68:fa:c3:74:8b:bb: 4b:be:a9:bc:a7:79:35:7f:33:8b:72:b7:39:08:36:41:5b:54: ac:a2:41:82:db:6e:d8:99:5c:36:27:03:b2:7c:40:72:e9:4b: eb:3c:55:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwODA2MjM0NjA0WhcNMjUwODEzMjM0NjA0WjAYMRYwFAYD VQQDEw02ODkzZTkzYy01NjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vgljD9UisDuQgo2SPybUCRxkNV2rbh9Q/rbuRl8m6AQBfIf9mVxwSmeerwT giI9Timiz1b6GTNqlG7GPXTgbRIi/r4p8cCnzf1Yo0Jm/+SDWViDGJKkcZFsr2x4 jOs315sNb3GIH0KYEB2kUiR3npoCAYJr59tTsAGcphOJ++HDISzrOYTcSW/VhdIw bS1mhNqSKlHbkkPPmkeCOCPpU1Cwsyn7qZDscFHzfOxy+/WBGxJ5u/lXkwCKyEG9 jvEgbuKErtHP3l3zlDzKzV/CbKM2C9r8nk7kOdrzYXAPqVhlfMfIpaZe1ZdlrX4k UG/UDtzzr80TN8rmBXtW+HIDoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlKXpkW cDkNTjFLV4W0W3W62T+oMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACon+yc4tJ+r4GyXNW53XBwqi5PpSnWcO5wi4o88ONG0RfGS0qqhIR 1uxlRIFoSUDzGDWg2BzthWXI7anObP2z+NObOd9TsI9qfs17mrS1mEvhIfC5uFQ1 +TfWdKEozqQxRD2Ofqw5iyxFBs57rllYwi/PWSbpUO04FaF/l1tH6KS7/zuy+CR5 x1JHqRrgGswG7n1q2djNeJJ0igX9CFrkDqlqfRANM7MIuNpvhQDk/TXOy4dPDTH5 InIQtKShXLQDHBiVMWFKpTTiy4nA35DsLY9o+sN0i7tLvqm8p3k1fzOLcrc5CDZB W1SsokGC227YmVw2JwOyfEBy6UvrPFUb -----END CERTIFICATE-----Generated at Thu Aug 7 04:00:24 2025 by rpki-client