$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: tNb80j/64BYwU1TFA++A/EMFRNgu5VpvEAG5mUyujyo= Subject key identifier: 7E:C3:FE:A9:3C:1D:01:CE:33:25:42:7B:C4:9C:D1:A0:4A:30:72:BA Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07CA Signing time: Mon 04 Aug 2025 21:29:27 +0000 Manifest this update: Mon 04 Aug 2025 21:29:27 +0000 Manifest next update: Mon 11 Aug 2025 21:29:27 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: KsRlmLrCTrklrv8dCD2q5HZ/HSk2nZ33OoMlA99u3vY=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 21:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Aug 4 21:29:27 2025 GMT Not After : Aug 11 21:29:27 2025 GMT Subject: CN=68912637-1399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:af:b1:46:f2:98:c1:6d:85:78:f0:c3:9a: 6b:c8:e8:b3:5a:72:d2:01:1c:72:57:b2:29:67:be: ea:89:f2:f2:95:5b:cd:e3:d0:4a:19:b6:4d:5b:c9: 13:6a:dc:62:5b:dc:85:f9:55:b6:61:a1:c8:b2:d6: bb:6d:07:5b:9f:d3:9e:60:a5:48:83:96:5d:a0:1f: 30:a6:02:c2:f1:a2:65:ca:e5:93:d8:95:34:9b:30: b0:99:b1:de:cb:2b:75:aa:d2:dd:8d:12:73:c2:81: dc:03:00:25:15:ea:fc:c6:58:f8:b1:ff:1e:66:84: b8:15:8d:95:14:d8:8a:d6:02:28:96:c4:7f:a8:03: 9b:ac:f8:28:5d:9a:73:8f:2d:e2:2d:e1:67:9f:69: 05:ee:e4:07:a3:c0:4b:02:f9:cd:4c:56:a8:a1:50: 42:a3:4c:64:c5:fa:cb:ca:ad:d8:3c:ba:d6:7a:2c: 5c:29:06:d2:71:22:f3:43:a6:15:58:7f:f7:f4:79: e3:37:07:46:bd:76:c4:65:6b:63:e8:cd:41:2e:0c: 3b:42:13:bd:4c:fc:67:83:ea:e0:2d:26:ce:42:32: b8:ab:df:e7:b6:14:4a:5e:9b:f7:7d:5d:4d:85:66: 9e:8b:e3:99:6c:3b:90:6d:15:93:50:c9:5e:86:bc: 2d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C3:FE:A9:3C:1D:01:CE:33:25:42:7B:C4:9C:D1:A0:4A:30:72:BA X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:58:47:7e:92:5d:36:df:38:c2:e1:71:e1:e6:70:fe:ce:d9: b9:56:e5:a9:d0:52:a2:ac:04:39:4f:4c:95:a4:33:e7:08:0e: dc:2a:7c:94:fd:44:18:d7:e3:d9:f8:65:fa:33:b8:49:4e:8e: e0:17:6d:d5:2b:5d:e9:bf:00:a8:b1:48:d8:27:ec:8f:bb:38: 1c:c8:40:d3:d1:2d:62:c8:5a:6f:96:cc:dd:78:2a:c7:b6:91: 16:89:16:4f:39:e2:4c:79:78:a2:31:0c:f6:60:a0:ba:99:65: 8e:b4:b8:f0:e4:17:49:3c:4c:92:42:b4:15:a1:8b:52:26:cd: da:9c:d2:f3:6e:94:1c:59:95:ca:95:81:9b:f6:0d:da:79:32: 6a:89:da:74:8d:ac:46:58:79:bd:cb:cd:67:d9:61:e6:2e:ed: 8c:a6:70:cf:7d:14:5b:17:60:a1:af:32:03:f1:1c:a8:b7:0f: c5:e2:e6:e5:12:21:aa:02:04:7b:9b:19:af:f1:45:fb:4f:ef: 5d:61:85:9b:20:40:ac:ed:59:80:bb:bb:c0:b0:01:e5:eb:f4: 03:ad:8d:4a:7c:e8:67:f1:53:d5:a4:6c:5b:92:6e:4a:0f:e6: 0c:7f:18:df:4e:61:0e:ba:1f:84:96:ca:36:93:3d:22:12:68: 77:b2:03:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwODA0MjEyOTI3WhcNMjUwODExMjEyOTI3WjAYMRYwFAYD VQQDEw02ODkxMjYzNy0xMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFyvsUbymMFthXjww5pryOizWnLSARxyV7IpZ77qifLylVvN49BKGbZNW8kT atxiW9yF+VW2YaHIsta7bQdbn9OeYKVIg5ZdoB8wpgLC8aJlyuWT2JU0mzCwmbHe yyt1qtLdjRJzwoHcAwAlFer8xlj4sf8eZoS4FY2VFNiK1gIolsR/qAObrPgoXZpz jy3iLeFnn2kF7uQHo8BLAvnNTFaooVBCo0xkxfrLyq3YPLrWeixcKQbScSLzQ6YV WH/39HnjNwdGvXbEZWtj6M1BLgw7QhO9TPxng+rgLSbOQjK4q9/nthRKXpv3fV1N hWaei+OZbDuQbRWTUMlehrwtdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7D/qk8 HQHOMyVCe8Sc0aBKMHK6MB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIWEd+kl023zjC4XHh5nD+ztm5VuWp0FKirAQ5T0yVpDPnCA7cKnyU /UQY1+PZ+GX6M7hJTo7gF23VK13pvwCosUjYJ+yPuzgcyEDT0S1iyFpvlszdeCrH tpEWiRZPOeJMeXiiMQz2YKC6mWWOtLjw5BdJPEySQrQVoYtSJs3anNLzbpQcWZXK lYGb9g3aeTJqidp0jaxGWHm9y81n2WHmLu2MpnDPfRRbF2ChrzID8Ryotw/F4ubl EiGqAgR7mxmv8UX7T+9dYYWbIECs7VmAu7vAsAHl6/QDrY1KfOhn8VPVpGxbkm5K D+YMfxjfTmEOuh+Elso2kz0iEmh3sgPu -----END CERTIFICATE-----Generated at Wed Aug 6 16:15:22 2025 by rpki-client