$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: lrYKZ1FqJltIB9lPiz0rKwnQjIjl3fncZh97ZCmI4tc= Subject key identifier: E8:D8:9E:4F:95:E4:ED:B3:EC:25:55:FE:1E:34:62:0F:C2:16:58:94 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 017C Signing time: Sat 09 Aug 2025 04:02:01 +0000 Manifest this update: Sat 09 Aug 2025 04:02:01 +0000 Manifest next update: Sat 16 Aug 2025 04:02:01 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: OuiT7wNwQi0ok75qTTwgITrbvNNIIclGzfTqJTpl11s=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: 749u4lopn9W/FVK2H662IjT0Y70cK7ANdEZnlQh0KN8=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: JpEflAmkAjQw8fDsB0P7evpxNWtbBcByQzIhr/Rv/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Aug 9 04:02:01 2025 GMT Not After : Aug 16 04:02:01 2025 GMT Subject: CN=6896c839-6d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:21:11:d2:79:de:6e:3b:58:00:a0:3b:2a:31: e3:c8:86:d7:d0:ed:1c:9b:8b:6b:15:3f:ed:05:99: dc:72:d9:63:87:b6:c2:06:0d:0b:1a:5b:c3:1c:95: b3:64:5c:d4:60:18:46:23:60:33:cf:6a:12:42:45: 4c:d4:5c:f0:23:db:00:b6:36:dc:b0:bd:bc:e0:8b: 25:84:cd:16:87:75:7e:1f:09:d5:d1:49:a9:d2:05: f0:84:4c:de:22:bb:8b:72:db:6d:2f:fd:33:85:17: 5f:7a:81:83:b4:43:45:5c:ef:a1:26:31:64:c5:eb: ba:41:3b:84:b6:13:96:37:0b:e9:e5:b9:9a:0d:48: b1:e6:c9:7a:2f:63:5f:30:e9:24:45:4e:be:d2:77: 0c:6a:66:a1:37:98:1c:75:0f:9a:63:27:c1:6e:af: e4:1c:b9:f3:0a:dd:4e:77:3b:7a:de:b0:7d:22:4c: 44:c6:bb:ff:d9:ab:cd:08:ff:42:fd:e5:f7:12:05: 43:f3:2e:cb:45:19:a5:9e:36:f7:8e:42:72:ef:45: 58:e1:84:b2:99:f7:83:11:59:4e:46:c5:b0:bb:b4: d5:e5:c3:b5:a2:88:89:ed:af:ba:4b:98:ee:84:5f: b4:a8:a3:56:71:f2:f8:ee:c9:89:0e:cd:c8:c7:f5: 8e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D8:9E:4F:95:E4:ED:B3:EC:25:55:FE:1E:34:62:0F:C2:16:58:94 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:56:1d:00:eb:06:d3:05:33:5d:b2:38:4b:76:81:80:35:66: a4:ae:12:1f:28:73:02:fd:4b:3d:7b:8a:d7:84:b3:88:57:7e: 7e:08:a4:22:37:57:4d:20:54:5f:f7:e8:e8:bd:00:9b:a3:ab: b2:62:88:33:cf:39:3b:91:10:1c:94:35:cb:cc:52:3f:9d:c6: 09:ca:b0:ea:9d:68:c3:b9:d4:6f:8d:e0:44:a3:0b:24:e6:60: c0:9b:04:a5:ff:e7:6d:c6:89:aa:00:ea:26:43:66:83:e3:05: 8a:7c:10:01:c6:8e:30:f8:4c:65:da:76:e7:51:d1:04:6e:fa: 64:df:99:ed:bc:05:18:35:f0:e3:5a:b4:fa:a0:ff:2a:d2:b2: c1:ad:8c:e8:14:10:36:c8:c7:e9:3e:91:52:ca:2f:ac:51:d3: 77:9d:96:41:94:64:51:06:02:51:ec:9f:38:88:81:54:b3:51: 2a:e6:5b:22:ba:d3:33:8e:73:ab:1b:27:d8:c5:0c:60:eb:11: 90:92:27:d6:8d:d0:2d:77:e6:f4:1c:f8:ee:88:46:9b:6d:01: db:a4:5f:b8:85:3a:c1:8b:ee:9a:63:74:1c:f7:f9:87:70:dc: 3b:dc:5a:35:da:2e:a8:5e:25:15:e2:7a:ed:93:0a:92:87:58: 70:32:47:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUwODA5MDQwMjAxWhcNMjUwODE2MDQwMjAxWjAYMRYwFAYD VQQDEw02ODk2YzgzOS02ZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yER0nnebjtYAKA7KjHjyIbX0O0cm4trFT/tBZncctljh7bCBg0LGlvDHJWz ZFzUYBhGI2Azz2oSQkVM1FzwI9sAtjbcsL284IslhM0Wh3V+HwnV0Ump0gXwhEze IruLctttL/0zhRdfeoGDtENFXO+hJjFkxeu6QTuEthOWNwvp5bmaDUix5sl6L2Nf MOkkRU6+0ncMamahN5gcdQ+aYyfBbq/kHLnzCt1Odzt63rB9IkxExrv/2avNCP9C /eX3EgVD8y7LRRmlnjb3jkJy70VY4YSymfeDEVlORsWwu7TV5cO1ooiJ7a+6S5ju hF+0qKNWcfL47smJDs3Ix/WOcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjYnk+V 5O2z7CVV/h40Yg/CFliUMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOVh0A6wbTBTNdsjhLdoGANWakrhIfKHMC/Us9e4rXhLOIV35+CKQi N1dNIFRf9+jovQCbo6uyYogzzzk7kRAclDXLzFI/ncYJyrDqnWjDudRvjeBEowsk 5mDAmwSl/+dtxomqAOomQ2aD4wWKfBABxo4w+Exl2nbnUdEEbvpk35ntvAUYNfDj WrT6oP8q0rLBrYzoFBA2yMfpPpFSyi+sUdN3nZZBlGRRBgJR7J84iIFUs1Eq5lsi utMzjnOrGyfYxQxg6xGQkifWjdAtd+b0HPjuiEabbQHbpF+4hTrBi+6aY3Qc9/mH cNw73Fo12i6oXiUV4nrtkwqSh1hwMkel -----END CERTIFICATE-----Generated at Sun Aug 10 13:53:47 2025 by rpki-client