$ rpki-client -vvf rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft File: iNHJlOgQj8ClM99LuOLOjRxLnxc.mft (raw, json) Hash identifier: 1rOr3o7QOKFTmUIoOw4m0eBmvORMGOE2SZ7xrD4oEDk= Subject key identifier: 40:A2:B7:9E:8E:57:57:7B:5A:8C:03:1B:BB:6F:8F:0E:5C:83:2C:0E Authority key identifier: 88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 Certificate issuer: /CN=A911A702/serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft Manifest number: 0668 Signing time: Sat 26 Jul 2025 22:44:28 +0000 Manifest this update: Sat 26 Jul 2025 22:44:27 +0000 Manifest next update: Sat 02 Aug 2025 22:44:27 +0000 Files and hashes: 1: iNHJlOgQj8ClM99LuOLOjRxLnxc.crl (hash: M/EaA6EdWFAANwo1Trz3uqz2iXvYrLrDkrDaj2ik+LY=) 2: 6339493A516311ED90F04711C4F9AE02.roa (hash: UZVHz0fvOssKPNLwiZ35IeL2xHQA6a7FTosxanmpoZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 22:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A702, serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Validity Not Before: Jul 26 22:44:27 2025 GMT Not After : Aug 2 22:44:27 2025 GMT Subject: CN=68855a4b-6e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ca:74:d9:4d:76:55:fe:b8:6d:6c:a8:1c:de: b4:ba:a4:f9:84:54:4a:2e:d6:57:16:fd:b2:35:10: a5:30:2c:03:64:26:9c:4a:0d:ac:2a:30:ac:97:ad: cb:9f:c0:8f:40:68:96:2f:87:3f:2f:70:c6:76:0f: 19:d4:52:53:4a:70:63:97:bd:38:2a:3c:47:fd:2e: c1:7a:f8:ac:ac:f4:e1:49:c1:e6:ec:db:24:cd:7f: 0d:bc:29:dc:07:a3:c7:63:d1:c3:91:fd:7b:24:83: ab:55:34:44:6b:6f:68:6e:c9:56:de:a2:5c:98:0e: d6:92:72:2b:3a:cd:d2:79:01:a8:3a:7c:b1:57:b6: 83:75:27:10:62:f0:e2:25:a8:17:0b:af:92:ec:5a: ef:87:bb:5c:10:3c:9d:af:b2:26:46:7a:84:2f:e5: 1a:7d:fa:88:b5:05:09:1f:0a:80:f6:23:37:0e:1c: 27:7b:54:97:e2:47:13:b1:68:84:af:53:30:db:56: ec:47:7b:26:97:78:e3:67:26:35:d0:c3:bc:fc:3c: 1b:fb:2a:65:84:61:2d:3c:7c:c0:78:a8:5d:17:3e: 68:50:97:84:c4:7f:9b:e5:9c:88:9e:b4:25:36:e7: e3:93:cd:8b:0c:f0:d4:97:d3:02:b7:5f:6a:52:77: ed:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A2:B7:9E:8E:57:57:7B:5A:8C:03:1B:BB:6F:8F:0E:5C:83:2C:0E X509v3 Authority Key Identifier: keyid:88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f3:d3:36:06:e3:e4:56:2d:ed:0a:76:5e:fa:d1:ba:49:ff: 3a:19:ac:ea:27:2b:0b:69:f4:29:03:93:e8:bf:88:95:63:8b: 79:d2:57:d3:8d:e1:65:f8:b8:eb:1d:54:25:cf:33:32:a0:44: 94:c8:e3:b4:bf:eb:f0:36:78:ef:f3:68:a5:b2:93:97:62:37: b7:bd:57:4f:1e:76:83:68:c4:ae:4f:01:31:4e:bb:59:e1:81: bd:1f:e3:8c:32:c9:79:da:e9:55:15:c8:a2:d8:0c:a4:02:56: 24:f0:11:8d:8e:38:44:c5:48:70:59:8b:8b:8c:93:cb:b9:76: c1:84:9b:84:60:08:2d:5c:c3:6a:8b:78:38:03:6f:f3:ca:5d: 8c:99:3a:ed:f9:e4:a9:63:8b:1c:87:b4:47:6b:83:d3:d2:92: 03:25:ee:7e:dd:e3:66:3d:8b:ba:bb:f7:35:82:b7:6d:b2:ab: e9:01:b1:49:5d:b3:a8:2a:38:83:15:00:53:5e:78:58:bb:f0: be:93:fa:df:8e:c9:3d:0e:8e:44:cc:07:19:7b:b0:68:3c:fb: ad:f6:09:2c:51:20:1d:2c:91:79:6e:21:76:24:11:e6:ba:a7: 0c:a2:c1:77:6c:90:c6:7e:8b:90:01:f3:b2:ad:14:d2:7f:fa: da:bb:38:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE3MDIxMTAvBgNVBAUTKDg4RDFDOTk0RTgxMDhGQzBBNTMzREY0QkI4RTJDRThE MUM0QjlGMTcwHhcNMjUwNzI2MjI0NDI3WhcNMjUwODAyMjI0NDI3WjAYMRYwFAYD VQQDEw02ODg1NWE0Yi02ZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcp02U12Vf64bWyoHN60uqT5hFRKLtZXFv2yNRClMCwDZCacSg2sKjCsl63L n8CPQGiWL4c/L3DGdg8Z1FJTSnBjl704KjxH/S7BevisrPThScHm7NskzX8NvCnc B6PHY9HDkf17JIOrVTREa29obslW3qJcmA7WknIrOs3SeQGoOnyxV7aDdScQYvDi JagXC6+S7Frvh7tcEDydr7ImRnqEL+UaffqItQUJHwqA9iM3Dhwne1SX4kcTsWiE r1Mw21bsR3sml3jjZyY10MO8/Dwb+yplhGEtPHzAeKhdFz5oUJeExH+b5ZyInrQl Nufjk82LDPDUl9MCt19qUnft8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECit56O V1d7WowDG7tvjw5cgywOMB8GA1UdIwQYMBaAFIjRyZToEI/ApTPfS7jizo0cS58X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwMi85MzlDQUUyQzhE RDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4Q2xNOTlMdU9MT2pSeExu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lOSEpsT2dRajhDbE05OUx1T0xPalJ4TG54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTcwMi85MzlDQUUyQzhERDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4 Q2xNOTlMdU9MT2pSeExueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk89M2BuPkVi3tCnZe+tG6Sf86GazqJysLafQpA5Pov4iVY4t50lfT jeFl+LjrHVQlzzMyoESUyOO0v+vwNnjv82ilspOXYje3vVdPHnaDaMSuTwExTrtZ 4YG9H+OMMsl52ulVFcii2AykAlYk8BGNjjhExUhwWYuLjJPLuXbBhJuEYAgtXMNq i3g4A2/zyl2MmTrt+eSpY4sch7RHa4PT0pIDJe5+3eNmPYu6u/c1grdtsqvpAbFJ XbOoKjiDFQBTXnhYu/C+k/rfjsk9Do5EzAcZe7BoPPut9gksUSAdLJF5biF2JBHm uqcMosF3bJDGfouQAfOyrRTSf/rauzjo -----END CERTIFICATE-----Generated at Sun Jul 27 11:44:14 2025 by rpki-client