$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: JZmK9VLtIKoNBtVPUtsnL7ZBQdQYX0XznRJkiLoQcZU= Subject key identifier: 47:26:E2:50:8D:6D:D7:3A:B2:C8:4F:AA:8D:56:90:79:A8:5D:96:D8 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09A8 Signing time: Sun 10 Aug 2025 20:04:26 +0000 Manifest this update: Sun 10 Aug 2025 20:04:26 +0000 Manifest next update: Sun 17 Aug 2025 20:04:26 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: 2nVL3fE0+Fwz/3Z2kbag5ZdwiUHoWKMPGwx//VaYqWk=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2481 (0x9b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Aug 10 20:04:26 2025 GMT Not After : Aug 17 20:04:26 2025 GMT Subject: CN=6898fb4a-9f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:93:c1:e3:ef:66:73:a1:2d:c5:35:42:12:24: ab:e9:76:ff:d6:81:e8:55:f4:04:40:90:b0:ad:d8: 1a:5c:bc:ec:45:51:53:af:86:59:8c:b0:08:3b:66: 70:6c:0e:c8:2f:fe:cf:8f:81:24:36:55:e5:1e:c1: d0:27:b5:df:dd:ac:ce:9d:49:1a:3e:f6:36:2b:26: d2:aa:18:fd:b4:bc:cc:29:48:e4:00:43:a5:dd:2f: 46:26:ac:e8:bc:61:6a:6d:6c:15:0f:6e:55:d7:f3: 88:c0:06:a0:75:be:1f:a4:03:56:5f:b2:c7:e7:8d: f0:a4:b9:c9:7a:fe:69:f7:c4:8e:60:21:77:79:68: 34:b6:89:1c:67:8a:09:11:6d:3d:53:cb:b4:d4:34: c9:b1:57:a0:8d:10:4b:d0:b3:ea:c2:68:b2:90:26: 30:49:91:ea:c8:c6:69:ab:4f:c2:cc:25:fe:a9:96: 14:a9:9a:97:3b:ec:dd:95:d7:be:09:4a:99:bd:66: 0e:6b:0b:31:94:db:16:9f:f0:00:55:09:b6:e2:71: 48:e9:74:73:b4:c0:8d:d6:4f:63:3c:fc:c5:b9:bd: 6a:12:cb:df:5b:9a:16:4d:a9:9f:d0:ff:33:6a:51: 59:74:4f:66:28:96:8f:b2:fe:1f:6d:e5:b9:d1:47: cf:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:26:E2:50:8D:6D:D7:3A:B2:C8:4F:AA:8D:56:90:79:A8:5D:96:D8 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:93:e4:0e:87:7d:7c:bd:cd:5b:d1:cf:cb:b2:e9:da:41:c7: c3:9d:00:5d:fb:6a:e1:1c:6e:29:9e:6f:8e:0a:93:7f:a1:a6: c3:90:3f:4b:43:45:f5:91:48:b9:91:59:12:8a:7d:05:23:78: cc:44:68:9e:c9:e5:b8:a0:37:29:46:d9:0d:db:a4:ce:a3:25: f3:e0:f4:ad:20:84:80:94:c0:1b:62:8b:06:cf:d6:e6:51:b6: fa:46:3c:01:a1:45:ea:7a:29:c9:6f:f4:d1:82:93:ab:8f:3f: 18:1d:ee:8b:a9:b4:44:91:4f:55:16:96:17:90:2a:ea:c6:fa: f9:fe:ba:04:93:28:c7:92:f0:32:d5:07:88:8b:10:a2:5f:2f: 3a:d2:73:6c:bd:b1:02:90:70:b2:f0:e1:1f:da:4c:d0:17:c1: a4:2a:20:c4:44:f0:0a:a4:e8:f4:62:b4:20:07:14:41:52:ef: 66:6e:f6:60:3c:27:a9:e7:9d:99:67:18:e1:2d:c6:42:b7:a1: 17:cd:2c:4b:05:8a:fe:45:14:27:10:66:82:73:dd:a2:b0:50: fe:a9:0a:ad:5a:27:c4:99:e4:d7:9b:cf:0b:3d:05:37:f1:21: 7f:1f:71:51:ec:19:ee:a1:3e:ab:e5:d0:07:52:7c:75:96:70: 01:28:71:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUwODEwMjAwNDI2WhcNMjUwODE3MjAwNDI2WjAYMRYwFAYD VQQDEw02ODk4ZmI0YS05ZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZPB4+9mc6EtxTVCEiSr6Xb/1oHoVfQEQJCwrdgaXLzsRVFTr4ZZjLAIO2Zw bA7IL/7Pj4EkNlXlHsHQJ7Xf3azOnUkaPvY2KybSqhj9tLzMKUjkAEOl3S9GJqzo vGFqbWwVD25V1/OIwAagdb4fpANWX7LH543wpLnJev5p98SOYCF3eWg0tokcZ4oJ EW09U8u01DTJsVegjRBL0LPqwmiykCYwSZHqyMZpq0/CzCX+qZYUqZqXO+zdlde+ CUqZvWYOawsxlNsWn/AAVQm24nFI6XRztMCN1k9jPPzFub1qEsvfW5oWTamf0P8z alFZdE9mKJaPsv4fbeW50UfP7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcm4lCN bdc6sshPqo1WkHmoXZbYMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASk+QOh318vc1b0c/LsunaQcfDnQBd+2rhHG4pnm+OCpN/oabDkD9L Q0X1kUi5kVkSin0FI3jMRGieyeW4oDcpRtkN26TOoyXz4PStIISAlMAbYosGz9bm Ubb6RjwBoUXqeinJb/TRgpOrjz8YHe6LqbREkU9VFpYXkCrqxvr5/roEkyjHkvAy 1QeIixCiXy860nNsvbECkHCy8OEf2kzQF8GkKiDERPAKpOj0YrQgBxRBUu9mbvZg PCep552ZZxjhLcZCt6EXzSxLBYr+RRQnEGaCc92isFD+qQqtWifEmeTXm88LPQU3 8SF/H3FR7BnuoT6r5dAHUnx1lnABKHEM -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:20 2025 by rpki-client