$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: XbCtx00spMMxQInXgVdZDEuObkAszIjHdY2kuq40sLs= Subject key identifier: 52:9C:7C:DE:89:E1:65:EB:9C:8B:98:4E:5E:0A:08:19:D3:61:23:BD Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07C1 Signing time: Fri 18 Jul 2025 21:26:56 +0000 Manifest this update: Fri 18 Jul 2025 21:26:56 +0000 Manifest next update: Fri 25 Jul 2025 21:26:56 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: cVJPqdpNaTX36KuhQigqVYbngBf+ee8RE7mHleiLED8=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Jul 18 21:26:56 2025 GMT Not After : Jul 25 21:26:56 2025 GMT Subject: CN=687abc20-0944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1c:ad:ac:60:24:fc:34:ab:7c:df:aa:0c:a6: e6:7a:f5:e5:fa:9a:67:4b:9a:83:f1:13:1a:52:e2: 75:d5:a6:e6:ef:5e:da:af:03:b4:de:5d:cf:67:b4: 72:68:c4:c3:7b:21:c8:b4:e3:c9:82:b1:be:57:3c: 27:dc:f7:0a:9d:73:9c:df:c8:28:91:19:e7:01:a1: d2:6d:f5:31:42:2b:db:74:24:c0:40:fb:ae:b7:54: 87:e4:0c:2d:6a:0a:90:e2:97:ea:6d:34:e5:ae:f7: 30:a7:83:b3:d2:11:1c:6f:ed:56:b6:d7:02:fb:4c: fb:26:0d:59:cb:72:d8:a6:16:fc:5f:fe:34:2e:44: 5c:6f:58:d5:b0:8b:01:98:66:f6:2e:9d:4e:79:6b: 5a:ef:ab:ba:14:31:78:ab:ba:fd:92:2d:aa:11:33: ff:bb:55:4a:19:55:20:63:11:2e:dc:ce:3a:9a:09: b5:06:5b:85:e3:94:2d:89:5d:e0:9c:05:d4:9a:b1: 72:7e:05:e1:1f:2d:7e:40:b4:78:99:6f:aa:91:43: 25:66:8d:1d:a7:0a:2f:95:2c:c5:a8:96:30:00:d5: 42:19:ce:ce:17:e0:67:6e:2c:a2:04:fe:e9:01:6e: 5e:0b:83:07:5c:46:43:47:33:5e:00:88:f2:66:73: 73:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9C:7C:DE:89:E1:65:EB:9C:8B:98:4E:5E:0A:08:19:D3:61:23:BD X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b5:36:87:fc:05:83:61:3d:84:49:18:37:a6:cf:54:a1:d8: ca:b0:c0:2e:cc:36:a9:3f:7e:6c:1e:f8:ae:6a:9b:05:d6:1c: bf:4e:62:2f:ad:99:27:12:91:27:4e:97:db:96:4a:b2:c5:3f: 71:1d:21:9a:48:71:d8:1a:07:b1:ae:bd:29:b5:aa:0e:b0:8a: 54:bb:b5:29:eb:66:2b:92:24:24:c1:77:cb:70:9c:c1:17:dc: 96:53:6e:58:d6:70:6b:07:21:3c:0d:f4:6c:fa:52:a1:d9:9f: 1d:10:1c:10:ab:a7:91:99:07:4e:b5:c0:d8:9e:93:14:ab:03: cd:d1:44:a6:7f:0c:d5:0f:c0:1e:7b:8b:a3:7a:17:d5:4f:7c: d8:4d:bc:47:de:d6:90:32:dd:4c:35:b0:f9:05:1e:d9:2f:1d: 09:32:b4:fa:ff:45:35:4a:27:77:00:6b:86:cc:33:c6:8e:0a: c7:52:b5:8a:5d:f1:58:73:6a:4c:4f:78:2b:92:9d:0a:f4:17: b6:35:df:12:52:15:5c:58:58:30:ba:e6:3f:b4:d4:4d:28:e2: ec:21:fa:cb:02:a1:0b:44:09:27:cd:b0:9a:91:a8:7b:bb:f5: 7b:bc:97:60:bf:04:a3:65:ab:13:3d:b0:d7:09:d6:8b:b2:80: b3:71:28:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwNzE4MjEyNjU2WhcNMjUwNzI1MjEyNjU2WjAYMRYwFAYD VQQDEw02ODdhYmMyMC0wOTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxytrGAk/DSrfN+qDKbmevXl+ppnS5qD8RMaUuJ11abm717arwO03l3PZ7Ry aMTDeyHItOPJgrG+Vzwn3PcKnXOc38gokRnnAaHSbfUxQivbdCTAQPuut1SH5Awt agqQ4pfqbTTlrvcwp4Oz0hEcb+1WttcC+0z7Jg1Zy3LYphb8X/40LkRcb1jVsIsB mGb2Lp1OeWta76u6FDF4q7r9ki2qETP/u1VKGVUgYxEu3M46mgm1BluF45QtiV3g nAXUmrFyfgXhHy1+QLR4mW+qkUMlZo0dpwovlSzFqJYwANVCGc7OF+BnbiyiBP7p AW5eC4MHXEZDRzNeAIjyZnNz5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKcfN6J 4WXrnIuYTl4KCBnTYSO9MB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOtTaH/AWDYT2ESRg3ps9UodjKsMAuzDapP35sHviuapsF1hy/TmIv rZknEpEnTpfblkqyxT9xHSGaSHHYGgexrr0ptaoOsIpUu7Up62YrkiQkwXfLcJzB F9yWU25Y1nBrByE8DfRs+lKh2Z8dEBwQq6eRmQdOtcDYnpMUqwPN0USmfwzVD8Ae e4ujehfVT3zYTbxH3taQMt1MNbD5BR7ZLx0JMrT6/0U1Sid3AGuGzDPGjgrHUrWK XfFYc2pMT3grkp0K9Be2Nd8SUhVcWFgwuuY/tNRNKOLsIfrLAqELRAknzbCakah7 u/V7vJdgvwSjZasTPbDXCdaLsoCzcSgu -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:16 2025 by rpki-client