$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: xFh5dw5pEfszh6eI6wAAWrV/Jo4jzIGTadZdlZkexgo= Subject key identifier: D8:AA:60:61:93:6F:F4:91:2D:59:7E:7F:7B:AA:6A:CD:4E:0D:2B:9A Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0364 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0360 Signing time: Sat 19 Jul 2025 01:22:30 +0000 Manifest this update: Sat 19 Jul 2025 01:22:30 +0000 Manifest next update: Sat 26 Jul 2025 01:22:30 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: xk1YMc4LOwpgGAgq4srqCf7TFUeFIO1EuT+gQRg/PBI=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 868 (0x364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Jul 19 01:22:30 2025 GMT Not After : Jul 26 01:22:30 2025 GMT Subject: CN=687af356-ce01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:22:91:45:12:ee:0c:25:45:91:f4:15:4f:f1: cd:75:91:c1:bc:b7:55:18:24:04:cb:58:f1:f9:c7: 35:48:39:44:fe:a6:31:00:ff:cb:0e:99:f8:26:9e: 72:82:b5:84:0c:8c:45:6f:4b:c7:81:66:55:5d:a4: 53:c2:af:34:a0:c4:27:ac:0d:aa:79:2e:0c:23:c5: 10:a8:d8:2b:56:4d:aa:47:74:70:e2:63:fb:2b:13: 4e:19:0b:f4:f9:85:5b:72:fb:a3:5a:ce:83:43:4a: 91:b6:2c:55:c2:fa:14:1c:8b:3f:0f:86:1b:3c:69: af:95:d4:46:df:d5:6a:3a:3f:31:1b:68:a6:1e:b4: 23:8a:4e:6c:3b:6a:12:51:f5:4d:4a:30:e7:92:f6: bc:c0:11:65:2a:5d:b8:f7:e3:d6:47:5a:de:2c:3c: f8:5e:05:b4:72:13:b8:93:c8:f3:3e:31:cc:a0:e0: 76:6f:30:d3:d5:32:08:98:81:b2:16:05:03:f2:f9: f4:2e:4e:70:2f:8e:7e:0f:d3:02:7b:0a:63:0a:4e: 63:c3:c4:4e:ab:82:28:03:4a:0a:58:3c:d9:ce:8a: 82:14:59:a4:48:88:5b:8e:10:ec:59:d6:68:3a:01: 56:37:4b:7c:cf:ed:a8:2a:fe:d2:41:4a:40:0d:d4: 0f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AA:60:61:93:6F:F4:91:2D:59:7E:7F:7B:AA:6A:CD:4E:0D:2B:9A X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:07:a2:e9:b0:34:0f:da:d8:c8:5e:e2:9b:60:05:6c:85:7c: bd:db:fb:4d:70:b4:dd:00:09:a9:06:f6:91:05:20:7a:11:a2: 69:a6:f3:01:bf:e6:d7:be:e5:44:af:bf:bb:61:0a:22:1e:c5: d5:2b:c1:23:b4:e8:38:20:76:c9:7f:47:d5:a7:8b:c5:61:ec: 75:7d:aa:ec:e0:2a:3b:57:b2:4c:15:3f:4f:dd:d7:71:e9:56: 77:28:75:c1:34:21:a9:e9:3c:19:d6:c4:9b:47:97:81:45:bb: 39:36:a9:f0:a0:a0:cc:71:e6:b2:99:e8:8a:8e:53:7f:81:3f: 99:30:6c:5d:c8:a9:9b:7b:86:12:a1:c2:b9:ed:63:58:79:e3: c6:23:1a:a0:d6:0b:38:34:39:a6:37:51:97:b9:0a:4a:12:07: 16:b4:46:d9:3a:70:dd:80:5e:5e:19:d7:f2:92:65:91:f9:f7: ae:59:b4:97:2c:6a:26:a5:14:b4:72:9e:a0:3f:77:c7:ad:5b: 22:cd:a6:c1:7a:db:5e:c8:d7:48:9a:71:d5:8c:51:d5:41:16: c1:79:de:cb:6d:d5:13:9d:fc:8c:83:89:39:7e:ad:d5:1f:eb: d9:b4:78:fa:69:fe:c2:28:e5:1e:ed:69:3e:96:14:40:6c:3c: cb:1a:37:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNzE5MDEyMjMwWhcNMjUwNzI2MDEyMjMwWjAYMRYwFAYD VQQDEw02ODdhZjM1Ni1jZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCKRRRLuDCVFkfQVT/HNdZHBvLdVGCQEy1jx+cc1SDlE/qYxAP/LDpn4Jp5y grWEDIxFb0vHgWZVXaRTwq80oMQnrA2qeS4MI8UQqNgrVk2qR3Rw4mP7KxNOGQv0 +YVbcvujWs6DQ0qRtixVwvoUHIs/D4YbPGmvldRG39VqOj8xG2imHrQjik5sO2oS UfVNSjDnkva8wBFlKl249+PWR1reLDz4XgW0chO4k8jzPjHMoOB2bzDT1TIImIGy FgUD8vn0Lk5wL45+D9MCewpjCk5jw8ROq4IoA0oKWDzZzoqCFFmkSIhbjhDsWdZo OgFWN0t8z+2oKv7SQUpADdQP7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiqYGGT b/SRLVl+f3uqas1ODSuaMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDB6LpsDQP2tjIXuKbYAVshXy92/tNcLTdAAmpBvaRBSB6EaJppvMB v+bXvuVEr7+7YQoiHsXVK8EjtOg4IHbJf0fVp4vFYex1fars4Co7V7JMFT9P3ddx 6VZ3KHXBNCGp6TwZ1sSbR5eBRbs5NqnwoKDMceaymeiKjlN/gT+ZMGxdyKmbe4YS ocK57WNYeePGIxqg1gs4NDmmN1GXuQpKEgcWtEbZOnDdgF5eGdfykmWR+feuWbSX LGompRS0cp6gP3fHrVsizabBetteyNdImnHVjFHVQRbBed7LbdUTnfyMg4k5fq3V H+vZtHj6af7CKOUe7Wk+lhRAbDzLGjez -----END CERTIFICATE-----Generated at Sun Jul 20 18:35:37 2025 by rpki-client