$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft File: IwN4FncHnC-7R0lkDwZXociO20Q.mft (raw, json) Hash identifier: mwpGPGwXyBuV/VupzBlqN5GWar5NMXOFl1sofA7tf4s= Subject key identifier: 68:0F:E8:3D:B5:60:8B:1D:78:5C:C9:AA:33:25:B4:D4:FE:BC:D7:43 Authority key identifier: 23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 Certificate issuer: /CN=A911E0B4/serialNumber=2303781677079C2FBB4749640F0657A1C88EDB44 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft Manifest number: 77 Signing time: Mon 21 Jul 2025 06:58:21 +0000 Manifest this update: Mon 21 Jul 2025 06:58:21 +0000 Manifest next update: Mon 28 Jul 2025 06:58:21 +0000 Files and hashes: 1: IwN4FncHnC-7R0lkDwZXociO20Q.crl (hash: 5IqgZAU5gABW2CD0rHH2V0Xt/wCk+6N01jsmfMTgTO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=2303781677079C2FBB4749640F0657A1C88EDB44 Validity Not Before: Jul 21 06:58:21 2025 GMT Not After : Jul 28 06:58:21 2025 GMT Subject: CN=687de50d-d1ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d5:d8:9a:d3:0b:45:a6:62:0f:9a:36:5a:17: ca:dd:6b:7e:b2:ad:be:4f:89:d6:af:6c:aa:a0:5a: ab:30:9a:c9:5a:88:c7:4a:25:06:6b:0d:3f:89:c7: 84:6d:e1:db:4a:d4:54:e3:70:89:0a:5c:65:2a:8b: 70:0b:df:9d:d4:0d:b6:ae:53:33:8e:ea:97:31:e1: 27:04:2e:d4:eb:47:b2:3a:e8:0d:b6:d1:98:0c:6d: b0:30:34:63:d9:d6:0a:b2:df:0d:49:e5:fc:64:92: 5c:96:ce:07:a1:5a:e4:80:5a:b1:cb:f4:af:5b:40: 81:a4:0e:0d:5f:15:23:c5:19:5b:3f:9e:3d:aa:b6: bd:23:88:2a:46:6b:48:b7:36:4b:5c:86:52:be:74: e3:42:54:c2:92:42:54:3d:cf:77:b0:a4:cf:28:e6: 4e:09:9a:ef:7f:d8:6a:c0:8c:79:75:66:00:6b:b3: 18:ba:03:85:95:da:7d:cc:01:cb:10:18:39:07:26: 59:c9:7f:1d:97:39:01:f9:66:e3:89:ee:98:74:32: 05:9e:30:b3:c3:bc:03:f7:7c:03:23:1d:1f:e9:a5: f8:6e:03:8d:44:5d:92:3e:51:2f:30:54:89:52:19: e3:cf:71:d2:5e:cb:9c:1d:3a:5e:65:50:fc:7c:e7: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0F:E8:3D:B5:60:8B:1D:78:5C:C9:AA:33:25:B4:D4:FE:BC:D7:43 X509v3 Authority Key Identifier: keyid:23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:76:10:91:25:2c:1b:fb:07:bc:6a:1b:1e:1c:45:30:bd:27: af:12:c4:2b:7b:22:cf:55:37:1d:e8:99:63:9f:1c:21:ea:ac: 26:82:bc:a1:d2:c2:c9:e0:3e:0b:5d:fd:8c:b8:d3:6d:eb:eb: c1:fe:c9:58:ef:c6:fa:22:b5:a5:f2:8d:d5:f8:f7:d6:bb:67: 5a:5f:aa:c7:7c:c3:ab:b6:0e:d9:b5:01:9b:34:1a:3b:dd:aa: b3:59:51:20:d8:b1:9e:60:97:02:a8:af:be:41:fd:b2:29:76: 18:0e:b0:23:60:7a:88:7d:d3:f1:d4:08:95:a7:1f:08:dc:3c: 85:a5:f3:aa:8c:d5:29:3c:e8:2d:50:d2:e3:92:c6:e3:86:c2: 42:89:b8:1b:72:ca:9d:b9:83:a3:3e:34:12:e8:67:b3:de:cc: b8:70:73:59:fd:10:fb:81:97:5c:e8:9d:12:df:cd:06:c3:4f: dd:8f:c2:a4:d4:4e:db:be:ac:26:2c:68:20:cb:bb:68:00:4f: 92:bd:6d:10:ba:d5:7d:21:36:9e:5f:12:74:c1:f9:d1:4f:5b: f0:a6:2f:f1:98:80:f7:41:2f:82:3f:a9:de:6e:a9:a0:35:76: 81:b8:08:21:f7:38:8d:d4:83:a1:cd:41:e9:66:2d:ad:d2:72: d9:3e:e9:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMjMwMzc4MTY3NzA3OUMyRkJCNDc0OTY0MEYwNjU3QTFD ODhFREI0NDAeFw0yNTA3MjEwNjU4MjFaFw0yNTA3MjgwNjU4MjFaMBgxFjAUBgNV BAMTDTY4N2RlNTBkLWQxYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm1dia0wtFpmIPmjZaF8rda36yrb5PidavbKqgWqswmslaiMdKJQZrDT+Jx4Rt 4dtK1FTjcIkKXGUqi3AL353UDbauUzOO6pcx4ScELtTrR7I66A220ZgMbbAwNGPZ 1gqy3w1J5fxkklyWzgehWuSAWrHL9K9bQIGkDg1fFSPFGVs/nj2qtr0jiCpGa0i3 NktchlK+dONCVMKSQlQ9z3ewpM8o5k4Jmu9/2GrAjHl1ZgBrsxi6A4WV2n3MAcsQ GDkHJlnJfx2XOQH5ZuOJ7ph0MgWeMLPDvAP3fAMjHR/ppfhuA41EXZI+US8wVIlS GePPcdJey5wdOl5lUPx855KVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaA/oPbVg ix14XMmqMyW01P6810MwHwYDVR0jBBgwFoAUIwN4FncHnC+7R0lkDwZXociO20Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0YyMjMxREU0QUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMtN1IwbGtEd1pYb2NpTzIw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXdONEZuY0huQy03UjBsa0R3WlhvY2lPMjBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0YyMjMxREU0QUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMt N1IwbGtEd1pYb2NpTzIwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABp2EJElLBv7B7xqGx4cRTC9J68SxCt7Is9VNx3omWOfHCHqrCaCvKHS wsngPgtd/Yy4023r68H+yVjvxvoitaXyjdX499a7Z1pfqsd8w6u2Dtm1AZs0Gjvd qrNZUSDYsZ5glwKor75B/bIpdhgOsCNgeoh90/HUCJWnHwjcPIWl86qM1Sk86C1Q 0uOSxuOGwkKJuBtyyp25g6M+NBLoZ7PezLhwc1n9EPuBl1zonRLfzQbDT92PwqTU Ttu+rCYsaCDLu2gAT5K9bRC61X0hNp5fEnTB+dFPW/CmL/GYgPdBL4I/qd5uqaA1 doG4CCH3OI3Ug6HNQelmLa3Sctk+6QQ= -----END CERTIFICATE-----Generated at Mon Jul 21 13:23:44 2025 by rpki-client