$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: kGlYhNprFPcG7jLWl7geKDpLgaoHmZACV6rgY7j1nts= Subject key identifier: 13:ED:AB:A8:7A:76:CF:B1:FA:91:96:7A:C0:46:9A:95:56:E4:14:6B Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07A5 Signing time: Fri 18 Jul 2025 21:34:38 +0000 Manifest this update: Fri 18 Jul 2025 21:34:38 +0000 Manifest next update: Fri 25 Jul 2025 21:34:38 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: rLwtixRxsewcQ0K/N0ik7wyQxnrCd3yXrp3T8JCBa24=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1970 (0x7b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Jul 18 21:34:38 2025 GMT Not After : Jul 25 21:34:38 2025 GMT Subject: CN=687abdee-7972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:2c:95:1c:79:2f:ba:9f:7e:3d:ae:7e:0f: b4:be:46:7c:60:dd:05:2c:0b:41:bc:3c:87:7b:d3: f6:f0:c7:fe:e2:94:53:22:40:d2:82:68:de:c3:95: 2e:43:fd:df:26:3b:cb:f0:83:ac:98:e0:d4:88:cc: 66:11:37:1e:2d:93:f2:6a:e7:92:35:e0:85:f5:9e: 3b:00:4e:41:0d:f1:6f:bc:63:1f:d6:87:c3:a2:62: b1:18:a8:c0:30:3a:63:b7:2d:ee:bc:24:e9:4e:d3: f7:46:7e:d7:f3:a6:0e:08:db:af:35:9f:dd:2b:8c: c8:5d:fc:c8:e8:0b:dc:60:87:c3:4c:60:be:00:10: 23:3c:c8:0e:97:eb:93:a0:f2:5a:cd:33:84:8b:6f: 31:49:39:99:d6:97:28:64:0b:01:36:db:8f:24:b9: 96:52:9d:09:3a:c1:be:52:72:55:a2:4e:66:e3:d4: ed:c6:c6:8f:97:5c:4d:be:cf:8c:5f:91:36:92:0c: 10:70:ff:52:23:e6:50:17:9b:35:eb:00:ff:85:82: 11:37:3d:d7:d4:73:02:38:32:cf:83:f3:e5:3d:af: 8b:f8:e1:85:4f:49:00:e6:7b:e3:06:3d:20:60:35: a5:2e:4b:3d:97:45:26:98:93:a0:12:70:12:88:c5: a5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:ED:AB:A8:7A:76:CF:B1:FA:91:96:7A:C0:46:9A:95:56:E4:14:6B X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c8:9b:db:a0:6b:72:5e:52:fa:95:45:00:19:70:2e:62:5a: 73:78:58:7c:e9:47:4f:63:60:16:a2:a7:8b:ab:2f:8b:b2:18: c1:b5:00:6f:1a:5d:d0:c8:03:e8:dc:23:dc:0b:9a:d7:11:dd: ef:2c:65:0b:eb:8c:f7:da:3f:0d:a5:11:c2:96:8a:59:71:71: 53:6c:99:9a:7f:72:c4:73:54:55:ba:b2:95:f6:fb:ed:e4:7f: 92:3f:25:b9:f7:8a:2a:3a:7b:a4:56:b5:c5:ae:91:fc:da:1d: 1f:3a:04:26:f0:51:64:8d:59:1d:ed:cc:81:1d:80:cb:8a:49: 3c:05:ed:f8:ba:f8:df:90:3e:91:33:65:31:3c:ea:af:8e:43: 38:03:a6:56:12:43:1f:00:df:32:84:b4:03:42:be:2a:9e:8a: cd:a0:9a:4a:aa:f9:21:6d:a3:44:69:82:d9:9b:8f:ef:e0:ca: d5:1b:65:41:8a:e4:cc:f6:df:65:5b:4c:40:a4:df:f4:41:29: d4:49:13:bf:a8:d2:53:13:41:82:dc:17:47:94:6a:56:d7:74: 2b:ab:a2:0f:b9:8e:c3:dd:82:39:4c:c2:e3:31:ff:8a:ef:a6: c2:77:18:f5:1f:c0:e1:4b:e5:5d:78:99:c9:fb:30:70:66:5b: 51:fe:ca:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwNzE4MjEzNDM4WhcNMjUwNzI1MjEzNDM4WjAYMRYwFAYD VQQDEw02ODdhYmRlZS03OTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNYslRx5L7qffj2ufg+0vkZ8YN0FLAtBvDyHe9P28Mf+4pRTIkDSgmjew5Uu Q/3fJjvL8IOsmODUiMxmETceLZPyaueSNeCF9Z47AE5BDfFvvGMf1ofDomKxGKjA MDpjty3uvCTpTtP3Rn7X86YOCNuvNZ/dK4zIXfzI6AvcYIfDTGC+ABAjPMgOl+uT oPJazTOEi28xSTmZ1pcoZAsBNtuPJLmWUp0JOsG+UnJVok5m49TtxsaPl1xNvs+M X5E2kgwQcP9SI+ZQF5s16wD/hYIRNz3X1HMCODLPg/PlPa+L+OGFT0kA5nvjBj0g YDWlLks9l0UmmJOgEnASiMWlNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPtq6h6 ds+x+pGWesBGmpVW5BRrMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWyJvboGtyXlL6lUUAGXAuYlpzeFh86UdPY2AWoqeLqy+LshjBtQBv Gl3QyAPo3CPcC5rXEd3vLGUL64z32j8NpRHClopZcXFTbJmaf3LEc1RVurKV9vvt 5H+SPyW594oqOnukVrXFrpH82h0fOgQm8FFkjVkd7cyBHYDLikk8Be34uvjfkD6R M2UxPOqvjkM4A6ZWEkMfAN8yhLQDQr4qnorNoJpKqvkhbaNEaYLZm4/v4MrVG2VB iuTM9t9lW0xApN/0QSnUSRO/qNJTE0GC3BdHlGpW13Qrq6IPuY7D3YI5TMLjMf+K 76bCdxj1H8DhS+VdeJnJ+zBwZltR/srC -----END CERTIFICATE-----Generated at Sun Jul 20 07:50:54 2025 by rpki-client