$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: AoM21v3oJHvtAXuw/w2x6gc5M2JRLWqhs0I91JZiTj8= Subject key identifier: 4F:85:87:18:F7:6C:92:9C:11:D6:1C:77:70:35:FE:05:47:5A:9A:5E Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0523 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 051A Signing time: Sun 20 Jul 2025 23:48:45 +0000 Manifest this update: Sun 20 Jul 2025 23:48:44 +0000 Manifest next update: Sun 27 Jul 2025 23:48:44 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: BTkZWAGOZFI0ac07cm2Ms851E/9Hx04ogeUTx5DWuR8=) 2: 47B1CB6E460D11F091179886C4F9AE02.roa (hash: UJrloLrvsoge3wfmese2Zva7x1vRvjjKxNvEsNCfNYE=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1315 (0x523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Jul 20 23:48:44 2025 GMT Not After : Jul 27 23:48:44 2025 GMT Subject: CN=687d805d-56ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:37:fd:fb:7f:a0:7c:3f:83:56:ee:48:17: 1d:f9:dd:26:69:79:1f:e1:06:cf:4c:bf:c9:bc:cf: fc:3a:91:cf:ab:8f:cc:9a:dd:81:ac:92:5e:7d:8a: b2:e8:1e:d2:5a:e6:71:82:dc:5b:2a:23:30:be:e9: d9:c3:51:13:50:1b:98:5a:ef:fe:70:6b:db:ac:bb: e2:9b:6e:af:8a:47:85:0e:39:0b:ca:24:e5:6e:a3: b0:cd:ad:21:50:05:d5:24:f1:42:f9:72:68:25:c9: ce:22:6e:23:b7:35:83:99:81:ef:f8:1e:2d:b7:e2: 14:cc:05:fd:e2:9c:2f:74:b1:93:29:8c:a1:82:bf: 48:22:b6:a4:cf:77:c7:b4:80:f5:36:a6:70:02:16: 17:b4:89:6a:f1:3b:35:73:14:02:d0:07:1f:54:ee: 7a:a3:7e:c6:96:11:55:34:e4:1d:33:9d:70:c7:2a: 6f:26:10:15:b6:0f:75:92:2c:60:c5:15:b4:ed:22: 57:70:db:d5:76:78:05:05:ea:9e:e7:86:c4:1d:03: 06:e0:31:16:53:aa:11:88:97:48:55:9e:f0:29:80: 30:8c:f5:2e:f3:47:d8:fc:59:a5:cf:99:f4:2e:fb: 8c:af:2c:33:c3:9a:8b:e6:2c:9a:ff:42:77:c6:31: 67:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:85:87:18:F7:6C:92:9C:11:D6:1C:77:70:35:FE:05:47:5A:9A:5E X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:40:09:cf:4f:27:34:5f:47:1f:7c:80:12:3d:e7:b7:96:9f: c7:af:53:38:42:56:e3:7f:d1:42:83:c0:0c:ad:4f:55:ff:0b: 20:7c:1f:40:00:0e:ec:f3:c4:65:9b:77:c5:82:61:68:08:a3: f1:02:71:63:61:50:3b:d1:6c:25:1f:72:24:77:1e:3e:34:a6: e7:51:91:49:d5:3a:5b:75:e0:b4:eb:a4:59:0b:50:71:8f:0c: 71:a2:45:95:8d:a6:b3:71:36:6e:ad:20:ef:88:e0:43:dc:9c: 8d:cb:b0:24:1a:9d:93:0b:b3:69:38:d1:70:1d:6c:c7:78:db: 8f:f8:58:e9:63:e9:38:ae:da:ab:c5:4b:55:62:50:bb:b0:14: 89:40:7c:3e:79:87:79:52:69:fd:e5:e6:ad:f2:a5:66:fa:22: 3c:9c:88:b2:e9:ff:83:f1:58:d8:3f:8d:de:3a:10:a3:5b:14: 1c:80:3a:0d:0d:1e:14:38:cc:d5:d6:c2:1f:cd:57:5a:09:a0: 6c:b3:df:15:b1:c3:d2:3e:60:84:a3:4e:70:68:56:27:58:89: 9a:48:a2:4a:39:c0:45:35:9f:57:19:a5:09:ec:2e:24:bb:a4: 04:0b:a9:83:f8:1a:8e:3a:6d:b8:81:52:24:a2:e1:67:00:8d: cc:52:78:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwNzIwMjM0ODQ0WhcNMjUwNzI3MjM0ODQ0WjAYMRYwFAYD VQQDEw02ODdkODA1ZC01NmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYk3/ft/oHw/g1buSBcd+d0maXkf4QbPTL/JvM/8OpHPq4/Mmt2BrJJefYqy 6B7SWuZxgtxbKiMwvunZw1ETUBuYWu/+cGvbrLvim26vikeFDjkLyiTlbqOwza0h UAXVJPFC+XJoJcnOIm4jtzWDmYHv+B4tt+IUzAX94pwvdLGTKYyhgr9IIrakz3fH tID1NqZwAhYXtIlq8Ts1cxQC0AcfVO56o37GlhFVNOQdM51wxypvJhAVtg91kixg xRW07SJXcNvVdngFBeqe54bEHQMG4DEWU6oRiJdIVZ7wKYAwjPUu80fY/Fmlz5n0 LvuMrywzw5qL5iya/0J3xjFnmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+Fhxj3 bJKcEdYcd3A1/gVHWppeMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4QAnPTyc0X0cffIASPee3lp/Hr1M4Qlbjf9FCg8AMrU9V/wsgfB9A AA7s88Rlm3fFgmFoCKPxAnFjYVA70WwlH3Ikdx4+NKbnUZFJ1TpbdeC066RZC1Bx jwxxokWVjaazcTZurSDviOBD3JyNy7AkGp2TC7NpONFwHWzHeNuP+FjpY+k4rtqr xUtVYlC7sBSJQHw+eYd5Umn95eat8qVm+iI8nIiy6f+D8VjYP43eOhCjWxQcgDoN DR4UOMzV1sIfzVdaCaBss98VscPSPmCEo05waFYnWImaSKJKOcBFNZ9XGaUJ7C4k u6QEC6mD+BqOOm24gVIkouFnAI3MUngi -----END CERTIFICATE-----Generated at Mon Jul 21 02:46:37 2025 by rpki-client