$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: tPNaukf+tGP2zMeOC3bokZYqIrwUz6ILaoyOp7FQkYM= Subject key identifier: 8B:75:99:32:C1:0B:06:7D:A1:A7:98:A2:6D:1C:4B:C7:47:78:94:5F Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09D2 Signing time: Fri 18 Jul 2025 20:10:56 +0000 Manifest this update: Fri 18 Jul 2025 20:10:55 +0000 Manifest next update: Fri 25 Jul 2025 20:10:55 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: DT3HSr4di5Y5L+fR4/vsvzkjCwSREeli0PIOESouDK8=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2526 (0x9de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jul 18 20:10:55 2025 GMT Not After : Jul 25 20:10:55 2025 GMT Subject: CN=687aaa50-c091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:68:75:fa:65:26:e4:b3:e9:6c:52:7f:81:05: 54:fd:7c:fe:2c:30:30:64:c5:3f:e9:0a:51:a2:f8: 3c:7f:bf:19:69:d5:dd:99:dc:03:03:07:d4:dc:0d: 3f:8b:05:23:8c:70:a8:d5:8b:55:03:72:c9:35:71: c3:ce:ec:ca:83:af:41:42:62:60:f2:ca:21:f0:b7: 04:ba:1d:89:69:db:b8:ba:45:2a:52:28:94:8d:f2: cc:59:89:c0:29:c2:a8:27:1a:9b:44:f1:a7:39:f3: dd:01:24:f0:86:d9:dc:6f:5f:6e:35:e8:ee:81:50: a3:9f:96:9b:49:f3:8b:76:22:87:6d:68:b4:38:8a: 3e:77:c8:01:1f:27:93:78:7f:9d:07:98:a9:71:65: 4c:8e:7d:38:10:b6:da:59:5f:19:36:6a:4f:45:56: 49:b8:34:e0:0b:5a:53:a4:e7:35:d6:db:6c:78:fc: 7f:3d:09:d8:95:7b:ad:43:48:22:75:4f:4e:3d:5d: 08:60:df:3b:01:9c:58:48:ef:d0:f2:43:90:cb:a2: 36:14:0d:30:e3:e4:c4:dd:d2:51:d4:ea:28:d2:4e: 20:e7:e2:c1:ad:2c:2c:fe:c7:96:c2:eb:92:60:89: a6:16:36:eb:8e:b5:7b:0f:62:86:ae:c0:2a:43:75: 07:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:75:99:32:C1:0B:06:7D:A1:A7:98:A2:6D:1C:4B:C7:47:78:94:5F X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:7b:6c:16:2c:2c:69:6e:41:0a:89:17:c6:c6:69:49:ea:ad: 70:eb:a1:8c:61:10:48:4a:48:b6:0c:70:1e:1b:04:ad:7c:3c: 4e:30:fc:09:c5:38:55:2c:8b:6d:88:22:d5:c8:de:cf:79:9a: f5:c3:62:32:2b:81:93:aa:bf:8a:82:da:c1:39:7c:fb:06:67: f0:6a:bf:e2:d8:d0:e4:63:b5:7d:34:1d:a9:99:a9:fe:69:2c: be:a5:b3:c6:7d:c8:dc:81:6c:23:e8:f5:5f:19:7d:8b:14:c0: 56:5f:bc:43:1c:82:37:fa:38:14:ac:1e:fc:a7:53:64:76:1a: cb:b2:b6:13:46:69:34:83:c5:c7:be:af:f4:bc:d0:d3:3b:5e: ec:a9:7c:ed:f0:bb:96:9c:f2:0c:06:ed:72:f7:5a:79:b1:b5: b9:c3:b4:f3:14:5a:3a:25:3d:07:3d:8a:5d:e5:91:a6:9c:cb: 3d:21:0d:4c:61:99:48:5c:f7:7a:eb:51:3b:b7:a8:81:38:50: 78:eb:47:ef:c0:32:aa:47:ac:db:e9:b1:25:e7:a4:87:d6:f9: 0e:f7:8d:ae:85:5e:14:c9:52:15:fd:2f:4b:f9:0f:f9:4e:0c: cc:7b:c1:a8:4c:76:cc:8a:52:23:e5:21:c0:9c:fb:11:10:8d: 44:aa:54:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNzE4MjAxMDU1WhcNMjUwNzI1MjAxMDU1WjAYMRYwFAYD VQQDEw02ODdhYWE1MC1jMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Gh1+mUm5LPpbFJ/gQVU/Xz+LDAwZMU/6QpRovg8f78ZadXdmdwDAwfU3A0/ iwUjjHCo1YtVA3LJNXHDzuzKg69BQmJg8soh8LcEuh2Jadu4ukUqUiiUjfLMWYnA KcKoJxqbRPGnOfPdASTwhtncb19uNejugVCjn5abSfOLdiKHbWi0OIo+d8gBHyeT eH+dB5ipcWVMjn04ELbaWV8ZNmpPRVZJuDTgC1pTpOc11ttsePx/PQnYlXutQ0gi dU9OPV0IYN87AZxYSO/Q8kOQy6I2FA0w4+TE3dJR1Ooo0k4g5+LBrSws/seWwuuS YImmFjbrjrV7D2KGrsAqQ3UHvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt1mTLB CwZ9oaeYom0cS8dHeJRfMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0e2wWLCxpbkEKiRfGxmlJ6q1w66GMYRBISki2DHAeGwStfDxOMPwJ xThVLIttiCLVyN7PeZr1w2IyK4GTqr+KgtrBOXz7Bmfwar/i2NDkY7V9NB2pman+ aSy+pbPGfcjcgWwj6PVfGX2LFMBWX7xDHII3+jgUrB78p1NkdhrLsrYTRmk0g8XH vq/0vNDTO17sqXzt8LuWnPIMBu1y91p5sbW5w7TzFFo6JT0HPYpd5ZGmnMs9IQ1M YZlIXPd661E7t6iBOFB460fvwDKqR6zb6bEl56SH1vkO942uhV4UyVIV/S9L+Q/5 TgzMe8GoTHbMilIj5SHAnPsREI1EqlTd -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:29 2025 by rpki-client