$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft File: ifWWEQAwvcmzutds_QXDEkYXyVI.mft (raw, json) Hash identifier: X+bpmt3t2v+BR+6BI9O4iIlRp2VGPtKv6gDVdJaYOTs= Subject key identifier: 88:8F:E2:B7:25:41:99:55:EE:6B:FD:4D:57:77:CA:4F:66:22:1F:85 Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft Manifest number: 0422 Signing time: Tue 09 Sep 2025 00:27:45 +0000 Manifest this update: Tue 09 Sep 2025 00:27:44 +0000 Manifest next update: Tue 16 Sep 2025 00:27:44 +0000 Files and hashes: 1: ifWWEQAwvcmzutds_QXDEkYXyVI.crl (hash: TbQzU4q2I3+eLeStLlN7Mn4RabU22gKNzh5wYq4HuaM=) 2: 969AE080A14211EC8C49D660C4F9AE02.roa (hash: n7VFHzeUDeBuyUWNvkox2wNIAXMws0upgX8rIok/ab4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62, serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: Sep 9 00:27:44 2025 GMT Not After : Sep 16 00:27:44 2025 GMT Subject: CN=68bf7480-66df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ca:ef:d3:26:c1:73:f1:34:26:4b:d6:e8:23: c2:17:ed:ac:81:6e:c8:8b:9d:13:97:06:32:5d:ba: 89:f9:53:c8:06:0f:b4:af:31:83:73:51:c9:5e:2e: f4:7c:06:c4:d0:68:d6:70:d4:70:4d:a9:79:82:12: a5:4b:7c:9d:ff:8e:61:1f:38:24:20:a0:01:b7:21: 6b:3c:64:4f:b3:44:98:00:37:fc:f0:3a:25:0f:d0: 60:d4:7a:d4:7c:65:d2:2e:1b:7c:1b:7c:44:39:27: aa:16:56:67:5e:50:ff:e6:87:b5:39:30:ed:98:6c: 58:be:9e:ac:46:05:04:c7:86:ab:24:ce:a8:37:b1: 47:d5:9b:a6:1c:d7:04:aa:a5:44:be:5f:fa:73:9a: 1e:dd:7e:56:ab:d2:3e:9a:db:7c:a7:41:d8:27:13: f5:74:ad:fc:c2:c6:e0:5e:0e:68:f3:a8:67:2c:a1: 72:db:54:29:1f:30:cf:17:d4:ec:e8:1f:ec:a6:db: d4:53:8a:18:6f:15:44:c9:9d:49:4b:63:c5:ae:a4: c9:17:87:ce:ee:91:6e:d9:1c:1f:be:56:eb:3c:9f: 9a:08:87:72:e0:76:04:a6:b2:5f:73:9c:65:4d:65: 7f:31:04:2b:06:15:37:d7:77:31:74:2a:4b:23:d6: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8F:E2:B7:25:41:99:55:EE:6B:FD:4D:57:77:CA:4F:66:22:1F:85 X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:0e:b8:c4:26:06:b5:7a:ef:45:2d:fc:f8:aa:aa:5e:d9:f5: 99:5c:21:5a:32:34:24:1f:5f:5f:f6:f7:33:5d:f2:fa:83:22: f3:5b:7a:72:1a:c1:2a:01:f5:10:01:49:ed:88:ec:70:bb:f2: e1:d3:2c:37:05:6f:d8:9f:88:ec:52:72:84:85:fc:d0:26:78: db:a8:ee:b2:c9:69:cb:77:2f:32:25:6c:34:b3:38:47:51:bf: 6d:08:51:07:32:f7:1c:70:ce:58:09:ac:8e:ee:d4:4c:95:2e: 6a:43:bc:25:ad:65:f6:3d:39:51:14:6d:f0:8d:eb:96:0d:27: 1a:57:3a:55:68:7d:eb:9e:29:35:fb:fb:3c:a1:31:fd:3a:09: 96:2d:cf:4b:a9:e4:7e:d1:f8:e0:92:57:0d:9c:79:12:18:64: 60:1f:5b:ed:87:2a:7f:10:c8:97:dc:36:6e:6b:09:f7:af:a6: f8:e5:c8:99:dd:4a:13:79:07:87:05:a6:c6:0b:dc:3f:24:14: b4:a3:38:33:9a:d5:93:71:63:7c:37:d1:ef:dd:7d:8a:5e:72: 33:51:5a:d2:b3:56:f2:84:dc:1d:1c:2f:8c:d5:a4:16:c2:10: f5:94:a9:8c:7e:92:43:23:b1:af:0e:38:6e:98:32:91:fe:f2: 59:2a:be:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjUwOTA5MDAyNzQ0WhcNMjUwOTE2MDAyNzQ0WjAYMRYwFAYD VQQDEw02OGJmNzQ4MC02NmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMrv0ybBc/E0JkvW6CPCF+2sgW7Ii50TlwYyXbqJ+VPIBg+0rzGDc1HJXi70 fAbE0GjWcNRwTal5ghKlS3yd/45hHzgkIKABtyFrPGRPs0SYADf88DolD9Bg1HrU fGXSLht8G3xEOSeqFlZnXlD/5oe1OTDtmGxYvp6sRgUEx4arJM6oN7FH1ZumHNcE qqVEvl/6c5oe3X5Wq9I+mtt8p0HYJxP1dK38wsbgXg5o86hnLKFy21QpHzDPF9Ts 6B/sptvUU4oYbxVEyZ1JS2PFrqTJF4fO7pFu2RwfvlbrPJ+aCIdy4HYEprJfc5xl TWV/MQQrBhU313cxdCpLI9bKXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiP4rcl QZlV7mv9TVd3yk9mIh+FMB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUE2Mi8xMTY4MjExQzgwNkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3Zj bXp1dGRzX1FYREVrWVh5VkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqDrjEJga1eu9FLfz4qqpe2fWZXCFaMjQkH19f9vczXfL6gyLzW3py GsEqAfUQAUntiOxwu/Lh0yw3BW/Yn4jsUnKEhfzQJnjbqO6yyWnLdy8yJWw0szhH Ub9tCFEHMvcccM5YCayO7tRMlS5qQ7wlrWX2PTlRFG3wjeuWDScaVzpVaH3rnik1 +/s8oTH9OgmWLc9LqeR+0fjgklcNnHkSGGRgH1vthyp/EMiX3DZuawn3r6b45ciZ 3UoTeQeHBabGC9w/JBS0ozgzmtWTcWN8N9Hv3X2KXnIzUVrSs1byhNwdHC+M1aQW whD1lKmMfpJDI7GvDjhumDKR/vJZKr6G -----END CERTIFICATE-----Generated at Tue Sep 9 08:44:13 2025 by rpki-client