$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: R8BNF/DUt1zyEa160tXvFHbIw9Pl8DubjChywwUyTq0= Subject key identifier: AF:91:36:59:3E:65:F6:8C:B7:75:EF:24:1C:99:0F:EC:4A:46:44:E3 Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 1705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 16FB Signing time: Thu 31 Jul 2025 16:53:59 +0000 Manifest this update: Thu 31 Jul 2025 16:53:59 +0000 Manifest next update: Thu 07 Aug 2025 16:53:59 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: q4E2LXPe197QEJNGvo3EMHShOj8gNP0uPQz2DngCJVM=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 16:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5893 (0x1705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Jul 31 16:53:59 2025 GMT Not After : Aug 7 16:53:59 2025 GMT Subject: CN=688b9fa7-ea44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:4d:0c:d3:e8:c6:5d:9a:60:09:55:af:82: be:fd:75:09:20:6b:c5:c7:a8:be:7d:94:3a:83:28: b4:63:75:66:c5:8a:bb:9b:1b:ce:7c:ab:14:1b:43: 3a:67:5d:f3:51:87:d7:52:22:b3:75:14:2b:d2:ad: cc:34:d2:80:41:f3:93:6e:78:e3:85:01:14:6d:26: 8e:0d:70:6d:fe:1b:f9:06:a1:c5:e0:44:bf:36:17: 46:dd:16:05:11:4f:d5:79:f9:8d:a4:68:5e:2d:c7: db:c0:84:72:8d:c4:31:75:6f:51:dc:70:bf:74:02: 84:7f:66:0c:6b:f7:19:08:93:a7:52:ea:a5:83:89: cc:1c:73:ac:3c:80:41:fc:39:f2:db:12:75:74:28: 8b:3c:4c:29:fd:4d:ba:69:ae:41:e0:00:a4:cc:2e: cc:44:0c:cb:74:ef:d7:81:9c:d4:98:e7:3a:88:21: ba:9e:72:6e:70:78:fa:76:96:73:9d:a4:6c:58:ba: 10:75:88:fd:f4:38:4c:fb:d6:da:e5:bc:46:53:8b: b2:b7:ba:5f:9d:3f:a8:75:40:d5:a9:53:62:66:e1: f2:58:03:94:d2:bb:4f:9b:75:bb:ad:9f:15:69:c5: 2b:6a:33:59:44:04:25:79:5d:4b:9a:11:37:a2:2d: b3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:91:36:59:3E:65:F6:8C:B7:75:EF:24:1C:99:0F:EC:4A:46:44:E3 X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:39:ea:6c:a0:a6:07:1a:43:24:44:a1:02:34:71:66:59:c3: eb:e6:b8:8b:74:d4:ae:b2:35:ff:96:09:f7:5c:57:04:62:a3: b7:78:47:2c:6f:4c:b6:a3:c2:75:fe:e0:0f:ee:e7:e9:ef:a0: c2:e9:03:03:06:de:8b:bb:71:c0:b9:2d:3a:e6:dd:5c:84:c1: 57:3e:6b:e5:2e:5d:42:b8:d3:0d:19:0f:02:6c:d6:a5:5a:fb: 85:17:31:51:c8:45:9d:bf:59:94:33:f9:b2:34:fb:d5:ad:a4: 2e:ad:27:77:26:54:6c:fe:e4:54:25:0c:2f:47:62:d9:e6:e4: 9e:65:02:cc:ee:11:15:5a:04:69:33:3e:38:c7:fe:d0:51:84: 0c:0b:ee:ea:65:a1:81:74:ad:34:b9:fc:4b:c2:f4:37:4e:cc: 7d:4c:28:4f:40:0c:78:0c:fe:26:ad:95:a4:4f:ac:ae:a8:33: 55:b9:03:04:67:b0:b4:d1:7a:ec:58:60:c2:eb:75:4f:e0:31: 92:09:0f:ee:b6:c3:07:c2:8c:b5:1c:4f:d1:50:8b:af:e8:6a: 7c:73:af:3e:94:e5:37:7d:fa:1c:c9:47:6c:27:29:62:7d:09: 45:50:3b:66:10:af:44:df:89:77:b0:e7:79:19:6f:9f:37:00: f6:84:fb:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjUwNzMxMTY1MzU5WhcNMjUwODA3MTY1MzU5WjAYMRYwFAYD VQQDEw02ODhiOWZhNy1lYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyxNDNPoxl2aYAlVr4K+/XUJIGvFx6i+fZQ6gyi0Y3VmxYq7mxvOfKsUG0M6 Z13zUYfXUiKzdRQr0q3MNNKAQfOTbnjjhQEUbSaODXBt/hv5BqHF4ES/NhdG3RYF EU/VefmNpGheLcfbwIRyjcQxdW9R3HC/dAKEf2YMa/cZCJOnUuqlg4nMHHOsPIBB /Dny2xJ1dCiLPEwp/U26aa5B4ACkzC7MRAzLdO/XgZzUmOc6iCG6nnJucHj6dpZz naRsWLoQdYj99DhM+9ba5bxGU4uyt7pfnT+odUDVqVNiZuHyWAOU0rtPm3W7rZ8V acUrajNZRAQleV1LmhE3oi2zawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+RNlk+ ZfaMt3XvJByZD+xKRkTjMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3OepsoKYHGkMkRKECNHFmWcPr5riLdNSusjX/lgn3XFcEYqO3eEcs b0y2o8J1/uAP7ufp76DC6QMDBt6Lu3HAuS065t1chMFXPmvlLl1CuNMNGQ8CbNal WvuFFzFRyEWdv1mUM/myNPvVraQurSd3JlRs/uRUJQwvR2LZ5uSeZQLM7hEVWgRp Mz44x/7QUYQMC+7qZaGBdK00ufxLwvQ3Tsx9TChPQAx4DP4mrZWkT6yuqDNVuQME Z7C00XrsWGDC63VP4DGSCQ/utsMHwoy1HE/RUIuv6Gp8c68+lOU3ffocyUdsJyli fQlFUDtmEK9E34l3sOd5GW+fNwD2hPsK -----END CERTIFICATE-----Generated at Sat Aug 2 05:53:44 2025 by rpki-client