$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: D0bvYpNcLrFD62Jk8ca6G/OVuUgSfe5t8/rTeXikPA0= Subject key identifier: 91:78:4D:53:32:D5:EE:2B:6C:CA:96:5C:2E:F9:30:EC:8B:BA:23:83 Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 0822 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 0811 Signing time: Fri 18 Jul 2025 21:07:00 +0000 Manifest this update: Fri 18 Jul 2025 21:07:00 +0000 Manifest next update: Fri 25 Jul 2025 21:07:00 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: 3nGz+SLVTAu6NUPcmJ4OZbVHftlPQWMoyeHY2KFnZQc=) 2: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: HYLlaeYCfOhwQIw7Fb2O6gPao8D0dgK0DzH31riAA30=) 3: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: CYIyqLTD/N7RHKkzVI9yCjfPCRo2bvj5EsxmVhBkQbM=) 4: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: EAWxypzDCQPQzqcMnvR1K/XDUjaENmu81MPhjQzqwkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2082 (0x822) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Jul 18 21:07:00 2025 GMT Not After : Jul 25 21:07:00 2025 GMT Subject: CN=687ab774-2e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:b1:4d:61:c3:90:64:dc:c9:cf:e0:d0:8e: ca:12:d0:68:2f:a1:36:7e:50:e3:fb:1e:f1:67:ef: 3f:98:97:1c:3b:b4:77:ed:cf:49:4f:f5:3e:63:3d: f4:86:e5:1f:1b:4d:68:ac:97:8a:49:d8:7f:11:be: 0f:7e:06:32:52:54:42:72:1a:e7:e2:55:31:5b:00: 62:42:82:b6:a0:19:49:9f:a0:b2:87:10:37:5f:b9: 0e:61:8e:13:ff:31:7e:a4:aa:59:e2:62:3a:ae:6a: 1a:9c:64:9a:a0:0e:96:c0:6c:f2:34:56:6c:5b:5b: f5:7d:3c:84:13:6e:9c:14:55:1e:99:e0:ae:0c:a7: 3a:a1:e1:b0:73:09:43:a8:38:25:50:b4:d4:08:cf: c7:29:a8:41:be:ac:69:a2:de:36:85:45:8b:8e:8f: ce:4f:e0:1e:16:89:f2:8f:f5:e7:47:38:be:43:db: 40:cd:c7:47:d8:f4:19:e3:00:a9:6b:0c:6a:76:55: dc:c0:ed:bd:5f:84:06:35:d4:27:f3:07:14:8d:b8: b8:5f:3d:2f:5d:2e:f6:f4:0c:f6:22:60:85:96:0c: 0a:2d:c4:ac:bd:9e:25:d5:44:be:92:c5:81:df:0a: 29:bf:9c:3e:95:03:37:09:59:e5:45:00:64:cd:f8: 60:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:78:4D:53:32:D5:EE:2B:6C:CA:96:5C:2E:F9:30:EC:8B:BA:23:83 X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7d:22:11:0c:54:17:ad:16:e4:13:e2:09:3f:a9:76:c2:68: 3e:85:2b:2e:3c:dd:3d:48:fd:85:c3:97:94:50:d8:0c:0b:6c: 34:c3:01:f8:b9:7e:dd:69:97:5d:3b:eb:79:11:0b:5e:fe:05: da:8e:06:fc:99:a8:fa:e3:ae:7a:f4:12:1b:c9:8f:f7:75:44: 78:0f:db:85:05:31:22:ed:73:25:69:b4:20:e4:2b:79:12:fe: d1:68:11:7d:d7:22:93:63:cb:54:6e:54:21:ad:51:96:e5:41: 09:e2:02:19:60:7e:37:ce:e2:24:7a:46:f4:34:d5:24:fe:eb: 74:10:db:9a:b9:77:32:f3:ed:da:21:52:cd:18:8e:f3:47:ee: 5c:67:66:b5:c1:04:a7:ce:0d:f4:34:2a:21:3e:3f:95:54:5a: 6a:9e:51:e0:9a:4e:cc:7c:29:96:c4:8c:f1:1d:dc:76:cc:2d: 4d:23:27:99:c1:6d:82:45:55:12:65:7c:33:96:d1:1a:a7:26: 18:f6:4c:64:0f:84:73:bf:7c:35:84:4a:52:17:f3:72:5a:1f: 82:db:d8:25:6a:5f:ba:e6:db:04:40:4e:ea:e4:20:39:dd:c2: 02:1b:58:e8:89:c2:48:3f:1a:c7:a5:c3:74:27:b8:c4:13:80: 17:4b:f3:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjUwNzE4MjEwNzAwWhcNMjUwNzI1MjEwNzAwWjAYMRYwFAYD VQQDEw02ODdhYjc3NC0yZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqGxTWHDkGTcyc/g0I7KEtBoL6E2flDj+x7xZ+8/mJccO7R37c9JT/U+Yz30 huUfG01orJeKSdh/Eb4PfgYyUlRCchrn4lUxWwBiQoK2oBlJn6CyhxA3X7kOYY4T /zF+pKpZ4mI6rmoanGSaoA6WwGzyNFZsW1v1fTyEE26cFFUemeCuDKc6oeGwcwlD qDglULTUCM/HKahBvqxpot42hUWLjo/OT+AeFonyj/XnRzi+Q9tAzcdH2PQZ4wCp awxqdlXcwO29X4QGNdQn8wcUjbi4Xz0vXS729Az2ImCFlgwKLcSsvZ4l1US+ksWB 3wopv5w+lQM3CVnlRQBkzfhg6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF4TVMy 1e4rbMqWXC75MOyLuiODMB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafSIRDFQXrRbkE+IJP6l2wmg+hSsuPN09SP2Fw5eUUNgMC2w0wwH4 uX7daZddO+t5EQte/gXajgb8maj646569BIbyY/3dUR4D9uFBTEi7XMlabQg5Ct5 Ev7RaBF91yKTY8tUblQhrVGW5UEJ4gIZYH43zuIkekb0NNUk/ut0ENuauXcy8+3a IVLNGI7zR+5cZ2a1wQSnzg30NCohPj+VVFpqnlHgmk7MfCmWxIzxHdx2zC1NIyeZ wW2CRVUSZXwzltEapyYY9kxkD4Rzv3w1hEpSF/NyWh+C29glal+65tsEQE7q5CA5 3cICG1joicJIPxrHpcN0J7jEE4AXS/NJ -----END CERTIFICATE-----Generated at Sun Jul 20 19:02:19 2025 by rpki-client