$ rpki-client -vvf rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft File: iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft (raw, json) Hash identifier: 2QF35hsKy2aSHFmXuiyBRmLMW+gN2djLzOxOcsav1r4= Subject key identifier: 3E:71:E2:6A:12:17:9A:AC:F9:9A:EE:58:37:F1:12:D7:57:48:E1:2E Authority key identifier: 88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 Certificate issuer: /CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft Manifest number: 0143 Signing time: Sat 09 Aug 2025 04:44:37 +0000 Manifest this update: Sat 09 Aug 2025 04:44:35 +0000 Manifest next update: Sat 16 Aug 2025 04:44:35 +0000 Files and hashes: 1: iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl (hash: XcDdE2+c0Yk+1O9JI202dpNTrv7k0ASaMSolNABiX0U=) 2: 51D4585A89B211EE9ADA615EC4F9AE02.roa (hash: B/rfYP/MowjVXl2cDvVI2OTc/iqkJEyxJCeVC3c1JPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919821D, serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Validity Not Before: Aug 9 04:44:35 2025 GMT Not After : Aug 16 04:44:35 2025 GMT Subject: CN=6896d234-11fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:84:4f:f1:66:fd:a1:62:67:58:f6:ec:ac:8c: fc:32:31:ce:50:11:37:bf:21:f2:67:ae:18:9f:4a: 48:96:22:fe:62:66:45:9f:ce:86:c8:86:9b:84:78: ca:62:02:8c:cb:d0:10:eb:4e:0a:e6:e7:4a:f2:1c: db:da:53:90:29:89:7e:9b:c8:2a:fb:ec:76:de:44: ba:db:79:32:ad:e7:61:f8:46:e3:c7:84:a8:68:56: 73:17:ba:bc:7b:7e:8e:51:95:3b:21:23:29:c8:94: b7:51:5b:ee:07:70:be:91:ca:4e:ae:d4:be:8b:ca: a6:08:b5:b9:76:6c:be:5e:1a:23:2e:f1:9e:4a:07: c4:86:72:db:37:35:4e:99:8e:54:7e:61:c4:28:9d: 04:eb:7a:07:67:4d:67:d8:ac:8b:b8:b1:09:5b:9e: 36:f2:00:49:da:7c:57:6a:80:bf:62:e4:a3:88:ff: 48:44:6f:88:09:fc:36:dc:64:87:09:c8:cc:cd:19: 37:84:8f:19:81:65:f0:52:2b:82:64:6f:52:e3:c2: 0c:63:1a:77:39:24:74:15:02:91:89:c4:d2:84:f2: 74:a8:7f:19:4a:51:06:29:53:57:96:1e:38:85:e9: c6:2e:44:15:03:63:a9:01:09:0c:38:63:e3:49:cb: 3b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:71:E2:6A:12:17:9A:AC:F9:9A:EE:58:37:F1:12:D7:57:48:E1:2E X509v3 Authority Key Identifier: keyid:88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:81:a4:a3:e9:56:f6:fa:2d:3c:79:84:d3:0b:56:55:b2:54: 75:11:b8:07:70:3c:7f:92:eb:ce:ce:8d:ff:ef:10:10:7c:0e: fd:ea:2e:af:8b:1e:be:f2:63:91:ec:55:20:2e:dd:fd:df:1b: c9:b1:0b:3c:22:65:b7:3e:b8:89:aa:88:65:b1:7f:9d:76:97: ad:75:a4:88:a2:9d:e1:6e:9f:fe:36:a6:13:ea:8b:7e:6f:27: f6:21:b3:89:80:22:92:02:b8:4d:8a:d5:a3:94:33:13:5c:e8: 8d:a7:37:65:f6:30:f2:a8:68:71:91:82:15:32:1b:18:6e:c9: 4d:57:2f:3a:8b:4f:63:5d:6a:79:81:87:00:f3:a6:df:16:2d: ff:9e:92:c0:ee:ae:14:27:d4:57:dd:95:1a:1d:22:3f:71:f3: 58:2d:ee:a5:86:a2:ab:f8:f9:69:98:a6:d3:1e:bd:b9:5a:09: ff:5c:4c:6a:c7:bd:c8:c4:b2:f8:4c:15:c4:bc:d2:ee:d6:6a: 47:38:ef:3d:b6:ca:18:32:48:7a:e4:35:94:d1:ee:c2:63:5b: 72:1c:cd:37:74:42:d1:5a:85:c1:2a:63:1a:38:a7:59:34:23: d4:3f:39:d5:20:b0:ac:cf:ec:9f:9a:b9:6e:a8:ef:12:cc:6e: ba:f3:5f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyMUQxMTAvBgNVBAUTKDg4QzE1NDREN0U2N0JDRDkxRDQ4REY1RDExRkNEMTAy MUY4NTM5OTMwHhcNMjUwODA5MDQ0NDM1WhcNMjUwODE2MDQ0NDM1WjAYMRYwFAYD VQQDEw02ODk2ZDIzNC0xMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYRP8Wb9oWJnWPbsrIz8MjHOUBE3vyHyZ64Yn0pIliL+YmZFn86GyIabhHjK YgKMy9AQ604K5udK8hzb2lOQKYl+m8gq++x23kS623kyredh+Ebjx4SoaFZzF7q8 e36OUZU7ISMpyJS3UVvuB3C+kcpOrtS+i8qmCLW5dmy+XhojLvGeSgfEhnLbNzVO mY5UfmHEKJ0E63oHZ01n2KyLuLEJW5428gBJ2nxXaoC/YuSjiP9IRG+ICfw23GSH CcjMzRk3hI8ZgWXwUiuCZG9S48IMYxp3OSR0FQKRicTShPJ0qH8ZSlEGKVNXlh44 henGLkQVA2OpAQkMOGPjScs7JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5x4moS F5qs+ZruWDfxEtdXSOEuMB8GA1UdIwQYMBaAFIjBVE1+Z7zZHUjfXRH80QIfhTmT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODIxRC9CMkEwNzRFRTg5 QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZOa2RTTjlkRWZ6UkFoLUZP Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lNRlVUWDVudk5rZFNOOWRFZnpSQWgtRk9aTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODIxRC9CMkEwNzRFRTg5QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZO a2RTTjlkRWZ6UkFoLUZPWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzgaSj6Vb2+i08eYTTC1ZVslR1EbgHcDx/kuvOzo3/7xAQfA796i6v ix6+8mOR7FUgLt393xvJsQs8ImW3PriJqohlsX+ddpetdaSIop3hbp/+NqYT6ot+ byf2IbOJgCKSArhNitWjlDMTXOiNpzdl9jDyqGhxkYIVMhsYbslNVy86i09jXWp5 gYcA86bfFi3/npLA7q4UJ9RX3ZUaHSI/cfNYLe6lhqKr+PlpmKbTHr25Wgn/XExq x73IxLL4TBXEvNLu1mpHOO89tsoYMkh65DWU0e7CY1tyHM03dELRWoXBKmMaOKdZ NCPUPznVILCsz+yfmrluqO8SzG6681+h -----END CERTIFICATE-----Generated at Sat Aug 9 23:19:41 2025 by rpki-client