$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: MBQLFsp5hCD/IhvKPaYXR4IufxFJ2DbrPIoo9OC2SBo= Subject key identifier: A3:C1:68:7F:64:22:41:3B:3A:A7:E0:C3:64:AA:A9:0C:7D:92:CA:C7 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: E6 Signing time: Sat 09 Aug 2025 05:49:53 +0000 Manifest this update: Sat 09 Aug 2025 05:49:52 +0000 Manifest next update: Sat 16 Aug 2025 05:49:52 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: puqgFKWI4KBvlGM9p69iTIHzG+xbuLmp/MrEEOr9sM8=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: m/G/Sff8tqA/XbNYboOxx50mkuYuHxKvPy3vRj80oOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Aug 9 05:49:52 2025 GMT Not After : Aug 16 05:49:52 2025 GMT Subject: CN=6896e180-879e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e2:3c:bf:75:18:4b:93:ec:8d:82:78:12:87: 48:32:21:e7:16:45:13:36:39:e4:15:a2:66:b8:c4: ee:73:30:24:15:ac:25:00:5f:48:0b:7b:47:28:95: 6c:7c:71:95:0f:5f:b2:c5:2e:a6:f7:e2:13:0d:4a: 82:af:49:cd:05:a0:b9:39:0f:74:4b:57:42:6b:4b: 56:41:1d:c3:0e:e8:c4:a9:60:e5:15:75:ea:87:d3: 0f:c8:eb:84:74:b7:13:68:19:7f:00:57:5d:d2:95: 49:4e:9f:42:c3:d5:24:99:ac:a9:0a:9e:17:df:81: d6:8c:94:42:4b:48:34:16:24:f3:62:97:b9:ae:c4: 2f:c4:bd:25:f2:1d:9e:ef:41:6c:a2:5f:10:d9:2a: 57:96:4d:62:e4:01:46:92:39:95:71:07:cd:64:2a: 7a:c9:fe:fb:fc:c8:dd:60:72:2f:3c:19:09:93:32: 25:1b:e9:55:2a:a8:eb:48:c5:17:2b:64:3a:f2:ab: 2f:36:9c:44:e4:d1:47:58:8f:54:42:02:75:a4:dd: a4:5e:71:00:03:94:48:7a:20:22:56:6f:55:5a:c4: ac:d3:04:81:38:28:86:fa:d9:e0:2f:a6:05:4f:49: c8:72:96:5b:f8:1b:c0:25:0c:9c:63:79:b9:c2:c5: fc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C1:68:7F:64:22:41:3B:3A:A7:E0:C3:64:AA:A9:0C:7D:92:CA:C7 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ed:8a:7d:0c:27:bb:bf:76:34:6f:d8:e0:70:80:db:55:59: b0:82:a3:f7:71:e5:65:d7:b8:a4:d4:50:d3:b6:7e:fd:de:77: 87:a9:ca:c7:20:94:6a:5b:be:f9:a6:d1:48:a8:b7:5e:1d:40: f0:51:b9:53:e4:6a:c3:ff:0a:23:a5:ce:e8:81:33:a5:77:a3: 07:0b:02:7a:0e:99:fe:b9:55:d9:af:d3:40:e2:58:bb:7a:63: 3c:2e:4d:a7:59:85:3c:f2:df:57:cc:3f:5d:af:8e:55:fd:04: 8f:6a:5a:ce:3b:53:f1:ea:79:4c:1d:61:ca:cf:8d:8d:16:f4: ec:e8:d3:85:a4:6f:71:46:1f:17:0f:f2:b9:48:89:d3:cc:70: b3:66:71:fb:49:54:44:5b:64:53:51:84:3f:f5:48:28:33:77: 49:d1:a1:53:29:d5:6c:ae:fe:b4:5a:e7:bb:fb:45:69:e8:ab: f7:47:45:ae:01:65:ca:8b:7b:7e:04:bc:1e:31:20:c0:0b:b1: f5:36:43:85:3e:f7:6a:d1:a2:a6:1e:0b:b7:71:e7:c8:86:5b: 53:4a:60:c6:cc:18:43:49:6e:c9:69:b7:6f:52:2d:4f:4d:48: 1a:fa:01:bd:d6:41:9b:07:41:05:6f:ed:75:4b:58:3c:62:c8: 39:97:a5:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwODA5MDU0OTUyWhcNMjUwODE2MDU0OTUyWjAYMRYwFAYD VQQDEw02ODk2ZTE4MC04NzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+I8v3UYS5PsjYJ4EodIMiHnFkUTNjnkFaJmuMTuczAkFawlAF9IC3tHKJVs fHGVD1+yxS6m9+ITDUqCr0nNBaC5OQ90S1dCa0tWQR3DDujEqWDlFXXqh9MPyOuE dLcTaBl/AFdd0pVJTp9Cw9UkmaypCp4X34HWjJRCS0g0FiTzYpe5rsQvxL0l8h2e 70Fsol8Q2SpXlk1i5AFGkjmVcQfNZCp6yf77/MjdYHIvPBkJkzIlG+lVKqjrSMUX K2Q68qsvNpxE5NFHWI9UQgJ1pN2kXnEAA5RIeiAiVm9VWsSs0wSBOCiG+tngL6YF T0nIcpZb+BvAJQycY3m5wsX8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPBaH9k IkE7Oqfgw2SqqQx9ksrHMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI7Yp9DCe7v3Y0b9jgcIDbVVmwgqP3ceVl17ik1FDTtn793neHqcrH IJRqW775ptFIqLdeHUDwUblT5GrD/wojpc7ogTOld6MHCwJ6Dpn+uVXZr9NA4li7 emM8Lk2nWYU88t9XzD9dr45V/QSPalrOO1Px6nlMHWHKz42NFvTs6NOFpG9xRh8X D/K5SInTzHCzZnH7SVREW2RTUYQ/9UgoM3dJ0aFTKdVsrv60Wue7+0Vp6Kv3R0Wu AWXKi3t+BLweMSDAC7H1NkOFPvdq0aKmHgu3cefIhltTSmDGzBhDSW7JabdvUi1P TUga+gG91kGbB0EFb+11S1g8Ysg5l6UR -----END CERTIFICATE-----Generated at Sun Aug 10 04:20:53 2025 by rpki-client