$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: KtfU+vaQmYFnzug8GajVRrm4u7Ri352hCHexVPbt9SU= Subject key identifier: D4:5E:7F:82:47:5E:EB:B8:02:BE:BE:A7:D8:5A:F9:BE:F5:E8:B0:A2 Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 1034 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 1028 Signing time: Sun 20 Jul 2025 17:27:06 +0000 Manifest this update: Sun 20 Jul 2025 17:27:06 +0000 Manifest next update: Sun 27 Jul 2025 17:27:05 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: 7JU+lDuvLLiyp43CiXAbyjJYykLeKH2DtLXVG1wyH10=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: SSjTjiJw3UBo/Mme4Kl37l1zxjxnCDkxVmhI1OR3EOw=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: Ls4h/fmzmMgVY9fuRoj+7ux+D5fYwsPV37oBSFEiAic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4148 (0x1034) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: Jul 20 17:27:06 2025 GMT Not After : Jul 27 17:27:05 2025 GMT Subject: CN=687d26ea-7de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:15:8f:55:1f:e9:25:84:f7:b0:24:2a:96:2d: 57:89:aa:8b:2c:91:2d:5a:0d:1d:bb:02:22:9c:12: 97:c0:e1:b2:72:f9:4f:9f:dd:c4:2f:02:c7:fb:89: 3e:c0:39:22:95:14:3b:82:95:16:95:d7:29:3f:b5: bb:ea:9c:e5:06:e8:16:bd:f7:b9:64:ab:33:12:e4: dc:b8:67:29:b2:24:43:66:eb:f6:e6:08:ed:40:7d: 0f:c5:9c:ee:a5:c8:43:fb:e9:68:d1:30:25:ea:f1: 03:55:81:bf:a8:fe:a1:3a:fd:9c:cd:5b:7c:53:ab: 22:72:1a:fe:92:fb:35:2c:60:81:3d:37:d3:c5:63: b2:46:5d:a2:1e:5c:3b:36:bc:9e:ad:6f:5b:ad:bf: 20:0a:15:0f:82:65:05:74:76:9b:79:b3:87:b2:d7: 3f:01:c1:3a:71:36:e9:30:68:74:4e:0f:c4:4b:56: 77:20:de:80:b4:95:62:3a:e5:bf:32:58:f1:6d:a3: 2c:49:07:4d:dc:1b:cb:ef:85:fb:c8:df:9c:5d:5d: af:ac:e0:1d:fa:4c:6c:50:63:6a:23:f9:ab:4c:ae: 31:7c:70:23:52:99:ae:21:9a:86:9f:bc:ed:4f:5f: d7:ad:d8:9c:97:a5:b1:71:ac:d7:a5:0a:f3:a1:ac: c4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5E:7F:82:47:5E:EB:B8:02:BE:BE:A7:D8:5A:F9:BE:F5:E8:B0:A2 X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:38:ed:5d:84:0e:c7:2e:41:50:08:3b:79:b5:a2:90:f0:5a: 7f:13:9e:ca:aa:b0:5e:ec:e7:13:70:94:30:9e:6f:b9:fa:2d: 97:0b:6a:19:0b:b3:4e:e0:6f:f9:33:49:80:ea:01:35:f9:dd: 0f:8b:77:2e:4a:46:63:b0:bb:f9:89:94:e5:0f:8a:4a:fe:9f: 29:c3:7b:58:22:fb:b9:9c:ed:22:6f:dc:99:e6:ca:69:be:a6: d9:60:f1:08:20:18:8a:6c:b8:00:44:c0:39:03:a2:75:61:71: 5f:ac:81:1b:9c:36:8b:4d:53:33:63:2a:4a:9a:d7:07:bc:e4: 68:1c:0d:19:ce:7a:9b:95:6e:fd:3a:3e:db:13:7a:fa:9d:dc: bf:55:1f:ac:60:2e:1b:43:36:1d:fe:fa:89:8d:d1:6d:d2:1e: b2:72:ad:2b:17:7a:2a:70:06:3b:e3:c8:74:33:56:ab:3d:bc: bf:cd:b0:85:b6:60:be:d8:1a:de:54:0e:9c:16:da:c9:3d:62: 59:ef:e0:81:04:64:a3:5e:05:98:fe:e1:6e:c8:ac:cf:e8:8a: 6a:f4:85:52:eb:8c:eb:ae:23:05:cc:8b:9d:d4:34:be:65:96: 1b:50:50:cd:f9:20:56:6a:1d:e4:80:a7:d5:74:32:f2:64:9f: 41:83:f3:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjUwNzIwMTcyNzA2WhcNMjUwNzI3MTcyNzA1WjAYMRYwFAYD VQQDEw02ODdkMjZlYS03ZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRWPVR/pJYT3sCQqli1XiaqLLJEtWg0duwIinBKXwOGycvlPn93ELwLH+4k+ wDkilRQ7gpUWldcpP7W76pzlBugWvfe5ZKszEuTcuGcpsiRDZuv25gjtQH0PxZzu pchD++lo0TAl6vEDVYG/qP6hOv2czVt8U6sichr+kvs1LGCBPTfTxWOyRl2iHlw7 NryerW9brb8gChUPgmUFdHabebOHstc/AcE6cTbpMGh0Tg/ES1Z3IN6AtJViOuW/ MljxbaMsSQdN3BvL74X7yN+cXV2vrOAd+kxsUGNqI/mrTK4xfHAjUpmuIZqGn7zt T1/Xrdicl6WxcazXpQrzoazEqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRef4JH Xuu4Ar6+p9ha+b716LCiMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIOO1dhA7HLkFQCDt5taKQ8Fp/E57KqrBe7OcTcJQwnm+5+i2XC2oZ C7NO4G/5M0mA6gE1+d0Pi3cuSkZjsLv5iZTlD4pK/p8pw3tYIvu5nO0ib9yZ5spp vqbZYPEIIBiKbLgARMA5A6J1YXFfrIEbnDaLTVMzYypKmtcHvORoHA0ZznqblW79 Oj7bE3r6ndy/VR+sYC4bQzYd/vqJjdFt0h6ycq0rF3oqcAY748h0M1arPby/zbCF tmC+2BreVA6cFtrJPWJZ7+CBBGSjXgWY/uFuyKzP6Ipq9IVS64zrriMFzIud1DS+ ZZYbUFDN+SBWah3kgKfVdDLyZJ9Bg/N+ -----END CERTIFICATE-----Generated at Mon Jul 21 07:14:07 2025 by rpki-client