$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: j2z7z5Lx3wjq6RYi3gzLVtKDj47CheEgRIEnrDt6IMk= Subject key identifier: 71:9E:97:14:0D:CD:45:91:E6:95:29:D0:76:E7:08:67:A9:C7:6C:63 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 34B9 Signing time: Fri 18 Jul 2025 14:20:11 +0000 Manifest this update: Fri 18 Jul 2025 14:20:10 +0000 Manifest next update: Fri 25 Jul 2025 14:20:10 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: x8JLJjWj+L9hhYjzOZst4W3J0zHKjJ/Bd8P3NT+mYMc=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Jul 18 14:20:10 2025 GMT Not After : Jul 25 14:20:10 2025 GMT Subject: CN=687a581a-2508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7a:0e:fe:86:b1:79:9e:2d:99:10:d6:82:77: cc:ea:bd:ef:91:1e:54:05:1d:54:0e:bd:7e:ce:57: db:7c:63:95:17:ec:d1:7a:fe:fb:c3:9e:17:d6:86: af:78:12:71:1b:99:07:cd:5d:d7:6a:43:1c:8d:0f: d8:49:e9:24:cb:4e:53:2a:c3:9e:b0:4d:6a:a3:9e: 90:63:20:3d:b5:ef:c1:17:dd:0f:ea:5c:2a:f7:5a: 92:fe:2c:5e:dc:f3:f0:cb:ee:50:2d:13:05:8b:56: 87:6c:8c:0a:e1:06:00:b3:3b:8d:3d:44:05:3a:98: 06:91:d2:c6:ba:95:36:ad:df:4b:b1:55:1a:4b:e3: 65:3e:09:da:ee:d9:df:e2:16:06:cb:ac:1f:ec:95: 83:63:c4:33:e6:e2:c7:af:5d:1b:15:83:46:cf:db: dc:3f:95:e7:4c:79:d0:69:4d:23:50:41:29:2b:7a: 8b:c0:57:ae:51:b9:d9:14:2a:c5:d7:03:35:34:ce: 5a:50:54:39:8e:15:cc:93:11:11:cc:78:a5:9c:d9: 91:2a:92:31:74:79:28:2d:ba:90:42:fa:98:20:79: 99:14:54:c5:91:03:d1:5e:72:3f:44:f6:17:5a:82: 18:3c:49:f4:b9:41:db:66:e9:3c:45:67:ca:26:5d: b7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:9E:97:14:0D:CD:45:91:E6:95:29:D0:76:E7:08:67:A9:C7:6C:63 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:5b:34:ef:2c:88:06:40:74:0b:81:8c:65:ba:f7:37:6d:51: 92:1a:bf:af:21:82:10:53:cf:4d:9c:cc:9e:27:73:84:ab:22: 02:a7:82:20:be:bf:12:a5:57:f0:33:ca:56:10:be:4c:6c:b8: 05:02:79:e9:d2:a7:f9:77:ca:79:99:5b:f7:8e:5c:14:7d:74: 44:c1:2e:85:77:cb:a9:50:9d:db:71:c6:63:18:ee:39:e4:1d: 89:08:8c:2c:9d:ec:93:20:d9:80:e2:28:17:00:e1:3c:8d:1b: bc:46:4e:e0:0a:b0:a3:13:a0:83:b3:83:88:ae:65:ef:6e:69: be:e2:ba:30:f7:47:8b:0b:a0:30:78:64:33:d8:40:63:58:ce: ee:57:53:0d:d2:7d:94:f4:51:04:00:3d:d7:bd:02:b1:26:fe: 33:51:14:fb:f9:8c:75:0d:98:f1:3c:67:f1:b8:28:c1:8b:3c: 48:92:2a:9c:52:05:7e:0f:5c:d7:3d:c6:85:cb:f9:5f:57:ff: 56:09:c0:62:4c:12:91:f3:e1:ab:f4:b8:3c:d6:bf:9e:11:d6: 00:8a:3e:07:5e:1b:a1:b7:f1:26:89:3d:1c:2a:63:40:f9:5c: f0:8b:0b:c5:ec:eb:32:70:67:dd:c3:7f:f4:c9:a1:6e:c1:cc: 36:2c:3f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUwNzE4MTQyMDEwWhcNMjUwNzI1MTQyMDEwWjAYMRYwFAYD VQQDEw02ODdhNTgxYS0yNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXoO/oaxeZ4tmRDWgnfM6r3vkR5UBR1UDr1+zlfbfGOVF+zRev77w54X1oav eBJxG5kHzV3XakMcjQ/YSekky05TKsOesE1qo56QYyA9te/BF90P6lwq91qS/ixe 3PPwy+5QLRMFi1aHbIwK4QYAszuNPUQFOpgGkdLGupU2rd9LsVUaS+NlPgna7tnf 4hYGy6wf7JWDY8Qz5uLHr10bFYNGz9vcP5XnTHnQaU0jUEEpK3qLwFeuUbnZFCrF 1wM1NM5aUFQ5jhXMkxERzHilnNmRKpIxdHkoLbqQQvqYIHmZFFTFkQPRXnI/RPYX WoIYPEn0uUHbZuk8RWfKJl23sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGelxQN zUWR5pUp0HbnCGepx2xjMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/WzTvLIgGQHQLgYxluvc3bVGSGr+vIYIQU89NnMyeJ3OEqyICp4Ig vr8SpVfwM8pWEL5MbLgFAnnp0qf5d8p5mVv3jlwUfXREwS6Fd8upUJ3bccZjGO45 5B2JCIwsneyTINmA4igXAOE8jRu8Rk7gCrCjE6CDs4OIrmXvbmm+4row90eLC6Aw eGQz2EBjWM7uV1MN0n2U9FEEAD3XvQKxJv4zURT7+Yx1DZjxPGfxuCjBizxIkiqc UgV+D1zXPcaFy/lfV/9WCcBiTBKR8+Gr9Lg81r+eEdYAij4HXhuht/EmiT0cKmNA +VzwiwvF7OsycGfdw3/0yaFuwcw2LD8z -----END CERTIFICATE-----Generated at Sun Jul 20 07:20:01 2025 by rpki-client