$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: dGEvsBzpqikYJzLFZ33f9anl5Nse/bmQNDC1BlZBOHQ= Subject key identifier: CA:23:46:2C:11:45:38:7C:0B:F4:AE:12:C7:19:03:38:A3:14:C5:D2 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 016F Signing time: Wed 17 Sep 2025 04:23:44 +0000 Manifest this update: Wed 17 Sep 2025 04:23:44 +0000 Manifest next update: Wed 24 Sep 2025 04:23:44 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: SXXFv6ipn6ayX6Z69nLJfegbaOYNSPtfkjo3DsOGQK0=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Sep 17 04:23:44 2025 GMT Not After : Sep 24 04:23:44 2025 GMT Subject: CN=68ca37d0-54f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:19:f3:12:af:bf:af:d6:77:23:a1:b1:d0:fe: 32:75:0d:f9:aa:92:28:16:e1:ab:9e:c8:1f:0c:6b: 8e:85:2a:19:dd:b2:cd:e8:8e:bc:00:d3:f8:e5:1d: 33:27:28:7e:49:4d:01:2c:51:31:bf:58:e0:f6:c8: a0:e7:c3:0e:46:00:a3:e6:3c:19:cd:14:50:88:cd: f0:b0:8c:19:c6:f0:79:ef:c0:44:01:16:98:b7:93: 0b:31:ca:00:2b:cd:42:83:80:5c:4a:f5:d1:39:ab: 04:b6:a3:14:98:f7:ff:41:02:44:4a:15:45:2b:1f: f8:51:68:3d:89:e6:86:7a:dd:10:f0:57:15:3e:ac: ff:75:19:80:da:c7:f4:8d:f8:5f:92:f0:b4:bf:fd: 9d:eb:89:3a:7c:7f:6e:87:71:53:ab:4e:0c:0b:50: 31:71:bb:47:e4:1a:c1:05:f4:f3:7b:5d:ea:91:a5: 0d:b8:02:b8:10:75:a0:72:00:63:f2:94:b3:9b:ff: f6:fa:ab:2b:92:65:42:37:92:2d:1f:ed:6c:ab:ad: 9a:33:4d:40:43:0c:44:19:f7:89:4b:cb:33:72:d8: 66:25:3f:c4:04:fd:a4:6e:d4:ba:ad:f0:ac:ad:88: 87:cd:c8:fc:3f:66:8a:38:bb:9f:0e:f8:23:3d:6c: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:23:46:2C:11:45:38:7C:0B:F4:AE:12:C7:19:03:38:A3:14:C5:D2 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:3b:4a:aa:da:d6:aa:23:30:7a:10:fc:00:0c:18:7c:fa:f8: d8:f6:01:c7:b1:09:1f:dd:94:64:ca:00:fd:28:62:d3:51:03: 62:e2:3c:b3:41:ea:77:0c:58:af:ae:23:02:f6:b6:0b:b6:68: 3c:92:10:84:bb:96:b0:e5:00:ce:f8:34:b3:9d:b2:35:6c:c3: eb:30:39:97:7c:ea:6b:ca:c8:05:4d:e2:f8:ab:d5:dd:6a:6a: 00:da:75:8e:0f:71:31:3e:5c:3b:94:bd:c7:f6:33:92:b3:b1: 46:41:50:4a:ce:c8:a5:bd:4b:07:5a:a8:51:f4:35:c1:6b:b5: 71:39:a2:d3:6d:b0:09:96:97:5e:76:b7:2b:d8:26:0d:df:de: 20:43:0a:c7:92:dc:4c:3d:1b:5d:85:8c:87:a0:5c:42:bc:c1: 06:af:6f:5d:13:f3:dd:0c:36:04:70:87:10:2e:27:56:3b:7d: 70:ed:3a:ce:4f:d8:1c:af:1f:93:7e:5c:67:97:3f:b6:c7:e2: fa:f9:48:33:49:2b:22:87:1c:2b:b9:56:17:4c:90:d0:99:f8: 61:c1:2b:24:e2:25:3d:46:7b:a4:38:70:bc:c9:84:1d:58:4b: d6:8e:da:a1:f4:dc:15:86:66:20:a6:d4:16:f4:17:e4:40:6e: 6c:42:fe:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwOTE3MDQyMzQ0WhcNMjUwOTI0MDQyMzQ0WjAYMRYwFAYD VQQDEw02OGNhMzdkMC01NGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRnzEq+/r9Z3I6Gx0P4ydQ35qpIoFuGrnsgfDGuOhSoZ3bLN6I68ANP45R0z Jyh+SU0BLFExv1jg9sig58MORgCj5jwZzRRQiM3wsIwZxvB578BEARaYt5MLMcoA K81Cg4BcSvXROasEtqMUmPf/QQJEShVFKx/4UWg9ieaGet0Q8FcVPqz/dRmA2sf0 jfhfkvC0v/2d64k6fH9uh3FTq04MC1AxcbtH5BrBBfTze13qkaUNuAK4EHWgcgBj 8pSzm//2+qsrkmVCN5ItH+1sq62aM01AQwxEGfeJS8szcthmJT/EBP2kbtS6rfCs rYiHzcj8P2aKOLufDvgjPWz9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMojRiwR RTh8C/SuEscZAzijFMXSMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6O0qq2taqIzB6EPwADBh8+vjY9gHHsQkf3ZRkygD9KGLTUQNi4jyz Qep3DFivriMC9rYLtmg8khCEu5aw5QDO+DSznbI1bMPrMDmXfOprysgFTeL4q9Xd amoA2nWOD3ExPlw7lL3H9jOSs7FGQVBKzsilvUsHWqhR9DXBa7VxOaLTbbAJlpde drcr2CYN394gQwrHktxMPRtdhYyHoFxCvMEGr29dE/PdDDYEcIcQLidWO31w7TrO T9gcrx+Tflxnlz+2x+L6+UgzSSsihxwruVYXTJDQmfhhwSsk4iU9RnukOHC8yYQd WEvWjtqh9NwVhmYgptQW9BfkQG5sQv6K -----END CERTIFICATE-----Generated at Fri Sep 19 01:17:54 2025 by rpki-client