$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: wzflZyrSbXP5uTvpma2ooL3cy7b+/913oNm9WLd9v5s= Subject key identifier: 60:89:96:2E:DE:7D:B3:98:36:41:24:8F:27:85:C7:68:83:96:BB:FA Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05DC Signing time: Fri 18 Jul 2025 23:20:51 +0000 Manifest this update: Fri 18 Jul 2025 23:20:50 +0000 Manifest next update: Fri 25 Jul 2025 23:20:50 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: SmocxOY3GU8TXeb7VklCjB6TW3beg6NyKfFGAWbsSCc=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Jul 18 23:20:50 2025 GMT Not After : Jul 25 23:20:50 2025 GMT Subject: CN=687ad6d2-1b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:4e:1a:15:68:f4:b2:01:35:c5:1f:a5:28: 07:25:19:0f:f9:31:d3:63:63:ec:10:f7:fc:6e:f1: f4:e0:9c:e4:2d:06:11:2c:da:9b:9d:9a:62:36:ef: bb:31:99:71:d5:c5:54:11:18:fe:55:ef:f5:d6:a7: 87:0c:7d:90:cf:56:aa:f3:c1:ca:65:2a:4d:3b:87: a2:33:ef:2a:ef:89:42:37:53:46:68:b8:97:97:af: c2:20:a6:a8:c6:2d:bc:aa:47:41:c8:ed:5d:c0:58: a2:c1:b8:49:93:bf:ee:5b:26:56:94:be:86:fd:9d: 12:8a:32:66:0d:87:1f:41:d4:88:07:57:f2:57:68: e2:16:18:1b:b9:33:d2:5a:61:21:89:17:4f:2a:2a: d0:7c:89:cb:c4:85:d8:b8:96:cd:09:a1:21:5d:bb: 79:20:33:ca:81:d7:43:b9:36:b0:a7:3c:40:d7:48: c7:ab:10:08:ae:1e:b1:c7:b8:0c:0b:99:22:62:66: 3a:2c:a1:83:88:f5:6e:7b:7f:c8:e8:f3:ce:35:53: 7f:39:88:10:be:50:f2:54:d3:cc:31:bf:7b:78:f9: 63:8a:a3:2d:ee:32:95:85:1d:f9:db:a9:fe:3b:7f: 48:ef:32:50:a3:84:75:ae:f3:06:5d:1f:50:69:f9: ee:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:89:96:2E:DE:7D:B3:98:36:41:24:8F:27:85:C7:68:83:96:BB:FA X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:34:bd:3e:b6:81:86:ed:9f:56:2b:f8:06:2d:75:c2:e4:cc: 0c:5e:9f:d9:dd:b0:64:fc:01:9c:a7:67:bc:d3:34:7f:e9:bc: 60:6e:49:56:7b:0a:1f:af:6a:3e:5d:80:e7:9b:9a:25:f0:55: 9b:c0:af:44:4b:35:fa:c3:9d:33:c8:23:8b:20:d2:f1:93:8e: 56:bc:87:74:4c:1d:fa:dd:84:b0:24:f1:90:4b:28:12:dd:f7: 4a:f0:cb:2c:33:d9:74:a2:ac:af:84:68:e7:4d:fd:9a:3f:a8: bd:ba:2d:50:83:40:85:46:26:d4:2f:a9:cb:f2:67:f4:80:c1: 9e:5b:94:6a:87:eb:f0:ad:be:01:68:55:4a:b6:02:d8:44:ed: 42:5b:02:3e:43:8c:29:7c:6f:c9:5b:31:a0:3e:04:cf:fb:92: ec:a7:d7:ce:d2:c4:0c:81:07:66:b6:39:65:89:f3:a6:af:31: b1:f5:50:60:51:ae:4d:16:9a:f6:c2:73:1e:3c:3c:bf:88:73: 31:d4:55:d4:da:4b:53:b6:2b:37:da:a1:5c:6f:2e:8c:1a:9e: 9e:e2:55:fd:f4:df:ee:6a:8b:52:99:98:36:22:53:e4:84:d1: d3:d2:b3:de:1a:ef:b3:49:f5:b4:9f:9b:06:b8:4e:a5:7b:22: 61:2d:d2:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwNzE4MjMyMDUwWhcNMjUwNzI1MjMyMDUwWjAYMRYwFAYD VQQDEw02ODdhZDZkMi0xYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2glOGhVo9LIBNcUfpSgHJRkP+THTY2PsEPf8bvH04JzkLQYRLNqbnZpiNu+7 MZlx1cVUERj+Ve/11qeHDH2Qz1aq88HKZSpNO4eiM+8q74lCN1NGaLiXl6/CIKao xi28qkdByO1dwFiiwbhJk7/uWyZWlL6G/Z0SijJmDYcfQdSIB1fyV2jiFhgbuTPS WmEhiRdPKirQfInLxIXYuJbNCaEhXbt5IDPKgddDuTawpzxA10jHqxAIrh6xx7gM C5kiYmY6LKGDiPVue3/I6PPONVN/OYgQvlDyVNPMMb97ePljiqMt7jKVhR3526n+ O39I7zJQo4R1rvMGXR9QafnuhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCJli7e fbOYNkEkjyeFx2iDlrv6MB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6NL0+toGG7Z9WK/gGLXXC5MwMXp/Z3bBk/AGcp2e80zR/6bxgbklW ewofr2o+XYDnm5ol8FWbwK9ESzX6w50zyCOLINLxk45WvId0TB363YSwJPGQSygS 3fdK8MssM9l0oqyvhGjnTf2aP6i9ui1Qg0CFRibUL6nL8mf0gMGeW5Rqh+vwrb4B aFVKtgLYRO1CWwI+Q4wpfG/JWzGgPgTP+5Lsp9fO0sQMgQdmtjllifOmrzGx9VBg Ua5NFpr2wnMePDy/iHMx1FXU2ktTtis32qFcby6MGp6e4lX99N/uaotSmZg2IlPk hNHT0rPeGu+zSfW0n5sGuE6leyJhLdLI -----END CERTIFICATE-----Generated at Sun Jul 20 03:14:14 2025 by rpki-client