$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: 3oX6qTgWXCaPWvSjjT56WUXSnHo8ErnxmDTZMlMNaoc= Subject key identifier: 79:24:09:50:70:8C:F0:93:D3:9C:8C:26:B5:5E:D2:6E:3C:E9:A3:9B Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: C8 Signing time: Mon 21 Jul 2025 05:54:57 +0000 Manifest this update: Mon 21 Jul 2025 05:54:56 +0000 Manifest next update: Mon 28 Jul 2025 05:54:56 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: ozatRHhLgWP4wfJ5pS6YVYX/XXSA1+rCpeERu8WMGhE=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Jul 21 05:54:56 2025 GMT Not After : Jul 28 05:54:56 2025 GMT Subject: CN=687dd631-3a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:0b:d9:4e:b7:54:bc:d6:ec:bf:d0:10:d7: 87:96:a7:e2:17:d1:fb:0e:67:ca:7f:1f:d8:d2:bc: d4:a8:50:f4:0e:4e:33:ca:89:ca:b1:37:fe:0f:64: f8:ee:01:96:13:64:a9:eb:25:5d:81:bd:2e:17:1b: 31:a6:f5:45:95:97:f7:22:a4:bd:6d:a2:a6:d8:a6: bc:c2:48:d9:5c:e4:b1:77:d3:f6:5a:e6:9c:3d:c5: 04:28:10:e3:2c:60:2f:cb:e5:dd:ba:fe:d7:11:c1: f0:78:95:0c:09:c1:5d:47:f5:25:36:77:d3:27:e5: 8d:a5:f2:24:99:ca:ab:4c:5a:c1:97:0f:dd:d5:6d: 79:45:a5:c8:a8:d1:14:3f:3c:60:9f:4b:d8:15:a0: 94:d1:5a:38:4c:3d:56:0f:a6:b0:f4:1a:89:21:d0: a6:ef:0b:1e:c5:51:af:cc:1a:af:5c:16:15:42:6d: 93:39:a8:27:cb:32:97:db:82:db:1f:ff:00:f5:5b: 83:57:88:b6:5a:43:ce:65:d4:a6:b8:d2:26:8d:d4: c2:6a:1f:b6:0b:81:7e:9c:74:e0:4f:1b:d9:11:b0: 6f:f1:d7:c7:1e:49:96:cd:0e:75:38:40:f1:de:2d: 26:c0:57:cc:a2:ba:c9:49:51:9f:1d:a3:34:aa:df: da:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:24:09:50:70:8C:F0:93:D3:9C:8C:26:B5:5E:D2:6E:3C:E9:A3:9B X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:f9:cc:40:a8:b5:2a:cb:a5:80:e7:ac:f5:b7:dd:47:f5:73: 67:e9:f0:de:88:cf:35:d8:bc:f7:9c:ef:05:2b:0e:df:be:d6: 28:31:83:0a:79:af:f5:b7:19:e0:fe:4d:eb:75:5d:66:67:c7: d5:5d:ba:21:a0:c1:2b:14:4b:ee:91:62:80:49:5d:8b:72:2c: 69:0b:fe:9c:31:24:e8:f3:f7:aa:0b:bc:b3:42:6c:f3:ff:6b: 39:c5:e0:c7:1f:f2:81:4a:0e:8a:1f:27:af:8c:b1:4f:db:65: 4f:35:f1:9b:9e:bc:fa:38:13:bd:a5:bd:73:d4:41:ea:ea:6d: 70:09:18:70:e1:81:a8:49:ba:48:5e:7a:2e:ad:82:3c:00:df: fb:30:72:33:0d:dc:8a:f3:25:9c:c7:68:b4:c3:8e:9d:aa:d2: 8c:67:12:2b:a9:8a:9a:34:43:2f:15:1c:83:bc:71:3f:0d:ea: 96:37:fe:02:25:d2:2e:b6:d6:4e:a2:cb:ce:11:d8:55:70:88: e0:cd:22:d2:cc:97:6b:82:1a:2a:34:87:29:f8:f4:d2:2a:a4: 5e:31:f7:9c:43:88:f3:d8:f6:5d:ee:da:00:48:49:11:55:23: 71:ad:ae:3e:f5:8f:b3:7c:7f:4c:76:4f:59:17:4d:9c:3f:79: df:41:45:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUwNzIxMDU1NDU2WhcNMjUwNzI4MDU1NDU2WjAYMRYwFAYD VQQDEw02ODdkZDYzMS0zYTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFIL2U63VLzW7L/QENeHlqfiF9H7DmfKfx/Y0rzUqFD0Dk4zyonKsTf+D2T4 7gGWE2Sp6yVdgb0uFxsxpvVFlZf3IqS9baKm2Ka8wkjZXOSxd9P2WuacPcUEKBDj LGAvy+Xduv7XEcHweJUMCcFdR/UlNnfTJ+WNpfIkmcqrTFrBlw/d1W15RaXIqNEU Pzxgn0vYFaCU0Vo4TD1WD6aw9BqJIdCm7wsexVGvzBqvXBYVQm2TOagnyzKX24Lb H/8A9VuDV4i2WkPOZdSmuNImjdTCah+2C4F+nHTgTxvZEbBv8dfHHkmWzQ51OEDx 3i0mwFfMorrJSVGfHaM0qt/amwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkkCVBw jPCT05yMJrVe0m486aObMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA+cxAqLUqy6WA56z1t91H9XNn6fDeiM812Lz3nO8FKw7fvtYoMYMK ea/1txng/k3rdV1mZ8fVXbohoMErFEvukWKASV2LcixpC/6cMSTo8/eqC7yzQmzz /2s5xeDHH/KBSg6KHyevjLFP22VPNfGbnrz6OBO9pb1z1EHq6m1wCRhw4YGoSbpI XnourYI8AN/7MHIzDdyK8yWcx2i0w46dqtKMZxIrqYqaNEMvFRyDvHE/DeqWN/4C JdIuttZOosvOEdhVcIjgzSLSzJdrghoqNIcp+PTSKqReMfecQ4jz2PZd7toASEkR VSNxra4+9Y+zfH9Mdk9ZF02cP3nfQUUN -----END CERTIFICATE-----Generated at Wed Jul 23 02:14:59 2025 by rpki-client