$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: IM6RkmkjkK9Y8PRlG9vs0lYRHJu1kRInP4DQaECzfcY= Subject key identifier: 22:75:4E:59:8E:35:57:73:B2:9A:D8:38:3B:99:F8:E8:2B:BB:6B:94 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09DE Signing time: Sun 10 Aug 2025 19:56:07 +0000 Manifest this update: Sun 10 Aug 2025 19:56:06 +0000 Manifest next update: Sun 17 Aug 2025 19:56:06 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: bC8LAsfg6jtw2IriBDh3h9XGNq/cwiDCm4Y9TH9/Z1c=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Aug 10 19:56:06 2025 GMT Not After : Aug 17 19:56:06 2025 GMT Subject: CN=6898f956-e9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ed:e8:7f:e0:7b:d8:93:e1:ca:bc:f4:73:75: 12:57:31:4f:5a:32:f9:8d:c2:56:8e:55:d8:66:2a: 67:93:bf:54:b7:e7:b9:d2:c4:fe:d5:1f:01:6f:33: fb:1f:74:a2:24:4c:d5:59:2e:46:8f:38:7f:e1:cb: f0:73:ca:de:5f:53:a8:0d:8c:c9:0f:44:fe:52:e1: 9c:dc:0b:34:24:f4:7e:92:11:48:8a:55:1a:95:59: ee:28:e5:6f:3b:75:9d:13:6c:da:0a:a8:ec:18:8a: d1:3f:58:55:38:87:2b:df:0a:5f:4f:52:12:f1:fc: 71:6d:d0:5f:87:8c:3e:83:cd:73:38:49:e8:64:da: af:79:87:17:72:58:11:f5:fd:29:2f:3a:72:1c:c7: 76:35:4e:c4:4d:8c:7a:4f:1e:50:12:f8:33:36:f7: d9:50:98:94:b0:13:e5:b0:76:53:7a:10:0d:37:28: 6f:89:d0:c5:5c:39:4a:30:74:08:73:3e:59:fb:81: 92:65:1a:b7:2b:be:c3:05:c8:10:07:0f:e7:f2:f8: fb:f5:48:2c:3a:d6:c0:4d:70:a3:89:1f:16:79:16: 10:88:61:59:f5:92:0e:e5:0d:d6:98:d6:ad:c2:92: 51:0e:08:fc:aa:b2:a4:31:43:4d:19:7b:ae:21:af: e5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:75:4E:59:8E:35:57:73:B2:9A:D8:38:3B:99:F8:E8:2B:BB:6B:94 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:15:aa:c0:9c:0c:2b:8c:21:d5:a0:c0:2a:c7:b4:96:a6:42: 22:5e:b5:2f:99:9f:3e:7c:19:1d:91:f4:e0:a8:38:3d:38:44: c7:02:da:33:98:2a:6c:00:87:22:e0:e3:c0:15:70:c5:67:b8: 4c:14:f9:be:bd:47:ef:6c:1f:d6:84:7a:3f:a2:e8:d4:d4:00: c4:7c:a9:d0:ad:5b:4c:ff:94:26:64:02:74:ab:c7:2f:08:99: 9d:29:8d:0a:ba:8e:f2:99:de:b5:22:18:5b:11:40:ed:5c:0b: 00:c2:07:c5:dc:9f:28:0a:92:59:66:ed:34:33:6c:26:00:fb: 6f:0b:46:90:cc:c6:87:bc:77:46:09:6e:2c:28:80:ed:aa:bc: 5c:b2:1b:10:6b:d4:0f:a0:8d:fc:2d:86:a5:de:21:c5:fe:34: 4c:3d:fa:da:84:8f:f1:50:5b:ae:3e:a5:d8:aa:c7:f8:a7:2d: 71:4d:86:a4:0b:6b:20:14:f8:de:54:d5:83:41:8b:10:3a:69: 54:43:71:ad:dd:e5:19:17:34:6c:53:79:26:26:e5:44:40:2c: fb:35:2e:cb:e3:1d:1b:0e:8d:ac:4a:78:69:05:d0:73:ae:14: 02:fb:a2:d6:56:99:f0:f6:b2:76:5b:76:5d:0f:e8:53:b8:66: 8c:2f:d6:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwODEwMTk1NjA2WhcNMjUwODE3MTk1NjA2WjAYMRYwFAYD VQQDEw02ODk4Zjk1Ni1lOWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu3of+B72JPhyrz0c3USVzFPWjL5jcJWjlXYZipnk79Ut+e50sT+1R8BbzP7 H3SiJEzVWS5Gjzh/4cvwc8reX1OoDYzJD0T+UuGc3As0JPR+khFIilUalVnuKOVv O3WdE2zaCqjsGIrRP1hVOIcr3wpfT1IS8fxxbdBfh4w+g81zOEnoZNqveYcXclgR 9f0pLzpyHMd2NU7ETYx6Tx5QEvgzNvfZUJiUsBPlsHZTehANNyhvidDFXDlKMHQI cz5Z+4GSZRq3K77DBcgQBw/n8vj79UgsOtbATXCjiR8WeRYQiGFZ9ZIO5Q3WmNat wpJRDgj8qrKkMUNNGXuuIa/lhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJ1TlmO NVdzsprYODuZ+Ogru2uUMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFarAnAwrjCHVoMAqx7SWpkIiXrUvmZ8+fBkdkfTgqDg9OETHAtoz mCpsAIci4OPAFXDFZ7hMFPm+vUfvbB/WhHo/oujU1ADEfKnQrVtM/5QmZAJ0q8cv CJmdKY0Kuo7ymd61IhhbEUDtXAsAwgfF3J8oCpJZZu00M2wmAPtvC0aQzMaHvHdG CW4sKIDtqrxcshsQa9QPoI38LYal3iHF/jRMPfrahI/xUFuuPqXYqsf4py1xTYak C2sgFPjeVNWDQYsQOmlUQ3Gt3eUZFzRsU3kmJuVEQCz7NS7L4x0bDo2sSnhpBdBz rhQC+6LWVpnw9rJ2W3ZdD+hTuGaML9bk -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:03 2025 by rpki-client