$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: tTc6xbhY6qsEV/djg1Ha9DMRHwAuA0tcvj5E9hln4ws= Subject key identifier: D7:F7:85:86:17:12:6F:E7:F8:B0:06:7C:77:49:52:3D:F2:6B:5A:1A Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: C9 Signing time: Wed 23 Jul 2025 06:04:00 +0000 Manifest this update: Wed 23 Jul 2025 06:03:59 +0000 Manifest next update: Wed 30 Jul 2025 06:03:59 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: IThldY4d1pWSZFmS4GHo3oheXplZIFgBRHi+zjUVuD8=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Jul 23 06:03:59 2025 GMT Not After : Jul 30 06:03:59 2025 GMT Subject: CN=68807b50-868d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:a6:05:5a:0c:16:0a:3b:84:c9:8d:cc:42: dc:e9:5f:60:2a:b6:45:0e:b1:83:c1:6c:05:bd:64: 92:5e:8e:a7:28:73:5d:b3:fc:28:ad:d7:20:d8:87: 39:87:b8:3c:ff:b5:40:b9:78:0c:b1:9d:9c:ad:32: 1c:10:fa:7d:34:9c:0c:c5:98:32:d8:79:39:e4:b8: bb:d3:d3:1f:f1:d7:22:93:00:6e:70:44:63:a8:9b: d4:03:3d:c6:40:24:82:ae:73:11:8e:12:d9:9b:c9: bc:54:24:3a:bf:ef:bc:d6:74:1a:d5:c2:9a:df:d0: 89:02:26:7b:b8:0a:40:9e:7b:16:37:d6:cc:95:84: 89:b9:03:b1:56:6f:af:30:7d:43:f0:bf:ef:8d:b4: be:0a:bd:6e:cc:b9:cc:a8:b6:25:28:b0:02:6c:74: 3b:42:b0:05:f8:7f:56:02:39:6b:70:38:67:57:35: 9e:59:65:f0:8a:21:23:b6:1e:ad:e7:ea:ff:dc:af: fb:69:21:25:c7:9c:3a:89:af:6e:6a:6e:0f:8c:e9: 41:0a:5e:a6:66:1e:66:46:05:37:f7:79:d3:01:34: 2b:32:72:06:b4:41:67:63:b6:19:52:aa:c2:6c:d8: 4b:db:ba:c3:a4:d2:37:a0:f7:b7:39:c0:ee:42:48: 3e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F7:85:86:17:12:6F:E7:F8:B0:06:7C:77:49:52:3D:F2:6B:5A:1A X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:e2:d0:dd:d0:c2:0f:eb:49:16:08:ad:41:3d:b9:6f:b1:bd: d4:51:a7:f5:2f:32:ae:e0:4e:8a:95:42:59:93:7d:7f:3e:57: f7:7e:4e:b2:b0:2f:c9:19:69:0a:d8:98:92:21:02:d7:e7:5c: ea:5d:8a:c8:0d:65:ba:51:f1:31:32:00:ef:a7:1c:8e:65:49: 01:8e:a7:9c:ad:63:7d:f8:08:f7:2b:40:6f:79:3c:64:33:e8: e6:34:39:18:79:2e:5b:7a:07:80:13:c5:c7:8c:a3:86:1d:e5: fb:18:b4:8c:51:87:6b:7c:31:03:84:d3:e3:c4:7d:e7:94:fa: 35:40:53:ef:45:94:da:93:e6:01:3b:7c:cb:c2:1a:ee:0f:d6: 86:ff:88:8f:fb:0f:4b:03:2b:72:d1:2f:a0:d6:4d:19:5d:56: 25:45:11:32:65:d8:e7:bc:9d:c5:a7:1a:d8:c7:46:17:4e:bd: 60:83:45:36:30:a8:4c:c7:c1:b1:c0:8b:63:24:74:f9:90:e3: 4b:91:86:07:31:41:26:5d:b3:4e:a3:93:82:31:c2:a3:b0:88: b6:d5:d1:da:6b:7b:27:db:87:ed:08:d7:93:96:00:e7:8f:99: fb:b5:b8:8d:5d:3f:b8:91:2c:ec:4c:91:e8:10:7e:1d:20:6d: af:63:1e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUwNzIzMDYwMzU5WhcNMjUwNzMwMDYwMzU5WjAYMRYwFAYD VQQDEw02ODgwN2I1MC04NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsumBVoMFgo7hMmNzELc6V9gKrZFDrGDwWwFvWSSXo6nKHNds/wordcg2Ic5 h7g8/7VAuXgMsZ2crTIcEPp9NJwMxZgy2Hk55Li709Mf8dcikwBucERjqJvUAz3G QCSCrnMRjhLZm8m8VCQ6v++81nQa1cKa39CJAiZ7uApAnnsWN9bMlYSJuQOxVm+v MH1D8L/vjbS+Cr1uzLnMqLYlKLACbHQ7QrAF+H9WAjlrcDhnVzWeWWXwiiEjth6t 5+r/3K/7aSElx5w6ia9uam4PjOlBCl6mZh5mRgU393nTATQrMnIGtEFnY7YZUqrC bNhL27rDpNI3oPe3OcDuQkg+WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNf3hYYX Em/n+LAGfHdJUj3ya1oaMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY4tDd0MIP60kWCK1BPblvsb3UUaf1LzKu4E6KlUJZk31/Plf3fk6y sC/JGWkK2JiSIQLX51zqXYrIDWW6UfExMgDvpxyOZUkBjqecrWN9+Aj3K0BveTxk M+jmNDkYeS5begeAE8XHjKOGHeX7GLSMUYdrfDEDhNPjxH3nlPo1QFPvRZTak+YB O3zLwhruD9aG/4iP+w9LAyty0S+g1k0ZXVYlRREyZdjnvJ3FpxrYx0YXTr1gg0U2 MKhMx8GxwItjJHT5kONLkYYHMUEmXbNOo5OCMcKjsIi21dHaa3sn24ftCNeTlgDn j5n7tbiNXT+4kSzsTJHoEH4dIG2vYx5b -----END CERTIFICATE-----Generated at Fri Jul 25 05:25:00 2025 by rpki-client