$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: 5xpTWXnseIrZiQaPLCN0KemeoF9JZBNNUPFLQgz95Ck= Subject key identifier: B9:D1:58:52:93:B5:0D:61:74:D2:E9:1A:F9:9A:DE:1E:FD:D8:E0:51 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 1566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 155A Signing time: Fri 08 Aug 2025 16:57:22 +0000 Manifest this update: Fri 08 Aug 2025 16:57:21 +0000 Manifest next update: Fri 15 Aug 2025 16:57:21 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: lsmgTW3UHcOKwCzmSySSEoUCa9E+jxCLYsBxalMuHl4=) 2: 13EB2806503611F0AE9ACE86C4F9AE02.roa (hash: 5U+qNAcyg11e1mcFFeSSmJQHAt3E5ngFjCNuSAbr96I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5478 (0x1566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Aug 8 16:57:21 2025 GMT Not After : Aug 15 16:57:21 2025 GMT Subject: CN=68962c72-a53a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:9b:1e:cd:2c:1b:4f:7f:d5:46:e1:36:52: 1e:57:b2:8b:4f:49:5e:6d:ee:fa:71:20:44:2a:66: 9d:29:c4:96:3f:6a:ca:7c:76:e6:5c:00:a0:f6:c5: aa:43:d8:59:6e:b2:70:52:12:42:32:a6:79:4e:6a: 55:d4:a5:96:64:ab:ff:89:bb:0b:a5:38:85:5f:f4: 64:c5:e1:03:4b:13:18:fc:2a:c8:e2:6e:6d:8d:3f: 0f:dd:2b:c9:44:cf:ed:37:c6:96:b1:44:25:35:0e: da:83:cb:a3:cc:9b:35:04:bf:78:e7:11:4d:b0:d6: 97:37:1d:40:9a:e3:d6:29:f9:8b:1a:66:17:53:46: d8:b5:d6:84:97:c6:84:43:bc:86:c6:65:71:96:4f: 8b:d6:75:d8:91:f9:67:03:5f:3e:cc:32:d0:52:26: af:23:e9:24:30:c8:a2:06:de:51:9b:5c:80:10:3d: 7b:3e:ad:06:df:e5:98:8b:7b:3f:b0:28:83:9f:29: c7:cb:38:f0:22:93:1f:5a:0e:45:88:1f:ef:44:62: 54:03:1a:9b:fa:ff:ab:61:04:23:97:cb:16:41:c8: 51:c5:53:a9:c2:d8:e6:b8:a2:2b:63:d8:b7:0c:b5: 42:3c:85:b5:96:9d:e3:27:21:41:1b:47:e2:fa:8b: b3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D1:58:52:93:B5:0D:61:74:D2:E9:1A:F9:9A:DE:1E:FD:D8:E0:51 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f9:1e:65:dd:db:dc:c6:a7:b2:fd:8c:8d:f5:e8:01:82:20: 9e:75:d5:d4:67:91:18:02:cb:4c:f1:27:7f:68:b4:4a:27:7e: 80:73:af:70:dc:77:f5:fd:ad:f3:72:71:84:30:87:fd:6a:1d: 74:86:f1:3b:8e:9f:9f:19:7c:b2:b2:d9:24:b8:98:19:91:33: cb:05:7c:1a:0d:27:7b:d8:91:eb:94:5a:df:94:eb:bc:ee:60: dd:1f:ce:ed:53:53:4d:9b:08:52:ee:a8:b7:a3:28:d4:25:6d: 31:46:ea:f5:a5:b7:d2:17:6c:ae:ec:7f:0d:80:e5:d6:f6:f9: 12:e5:b1:6b:c2:5d:42:b2:64:e6:f3:14:8f:f9:f6:4d:c7:d1: ad:b2:bf:8a:f4:38:6b:44:59:e2:c8:8b:44:4b:96:31:da:1c: 69:31:c0:6d:16:ba:8d:bf:cf:44:f2:04:1d:bb:70:68:89:b9: e9:ad:4f:37:69:2e:73:78:3f:07:32:d7:df:91:34:7a:bb:62: 5b:f5:b4:2f:9b:6d:4b:eb:94:25:73:68:7f:6d:9a:8b:e4:a8: 40:a9:66:8c:c2:05:44:89:bd:42:ff:4b:40:1f:98:5c:31:48: a5:ae:36:41:2a:70:5c:83:37:17:b2:5b:72:f7:c9:4e:1c:86: a5:1f:1b:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjUwODA4MTY1NzIxWhcNMjUwODE1MTY1NzIxWjAYMRYwFAYD VQQDEw02ODk2MmM3Mi1hNTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2ibHs0sG09/1UbhNlIeV7KLT0lebe76cSBEKmadKcSWP2rKfHbmXACg9sWq Q9hZbrJwUhJCMqZ5TmpV1KWWZKv/ibsLpTiFX/RkxeEDSxMY/CrI4m5tjT8P3SvJ RM/tN8aWsUQlNQ7ag8ujzJs1BL945xFNsNaXNx1AmuPWKfmLGmYXU0bYtdaEl8aE Q7yGxmVxlk+L1nXYkflnA18+zDLQUiavI+kkMMiiBt5Rm1yAED17Pq0G3+WYi3s/ sCiDnynHyzjwIpMfWg5FiB/vRGJUAxqb+v+rYQQjl8sWQchRxVOpwtjmuKIrY9i3 DLVCPIW1lp3jJyFBG0fi+ouzYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnRWFKT tQ1hdNLpGvma3h792OBRMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+R5l3dvcxqey/YyN9egBgiCeddXUZ5EYAstM8Sd/aLRKJ36Ac69w 3Hf1/a3zcnGEMIf9ah10hvE7jp+fGXyystkkuJgZkTPLBXwaDSd72JHrlFrflOu8 7mDdH87tU1NNmwhS7qi3oyjUJW0xRur1pbfSF2yu7H8NgOXW9vkS5bFrwl1CsmTm 8xSP+fZNx9Gtsr+K9DhrRFniyItES5Yx2hxpMcBtFrqNv89E8gQdu3BoibnprU83 aS5zeD8HMtffkTR6u2Jb9bQvm21L65Qlc2h/bZqL5KhAqWaMwgVEib1C/0tAH5hc MUilrjZBKnBcgzcXslty98lOHIalHxsi -----END CERTIFICATE-----Generated at Sat Aug 9 01:16:40 2025 by rpki-client