$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: 2mw353EuAp53Ls1BUrwTOkGIo92LIMJjMtVGOAw7FgI= Subject key identifier: 69:C5:8A:8B:93:40:68:4B:95:C5:73:2E:39:1C:D3:35:AA:80:4B:13 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0535 Signing time: Sat 06 Sep 2025 23:52:53 +0000 Manifest this update: Sat 06 Sep 2025 23:52:53 +0000 Manifest next update: Sat 13 Sep 2025 23:52:53 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: TvvpDIdB3oKZuYiZFqhhfAwXTEY4lxepLCjT/P7AKkI=) 2: 47B1CB6E460D11F091179886C4F9AE02.roa (hash: wyQczIJ2B07sI00Ck4UJfv4KyaFcrXjar6QMmiUE/PA=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: kzjgEh69Anui49EQDP1laFQTSVqrTerCP+/zvQEsoAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Sep 6 23:52:53 2025 GMT Not After : Sep 13 23:52:53 2025 GMT Subject: CN=68bcc955-7935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:5f:7b:95:84:34:b9:ee:a5:04:a6:7c:25: 6f:ce:20:0d:1b:ed:f7:3a:c2:48:84:61:1e:16:af: 73:22:c0:19:c6:ed:fe:76:b6:1e:2d:43:6d:da:41: 30:b5:b5:79:43:b8:e4:e1:d6:32:7d:29:c8:3b:f0: ef:a6:fe:7b:57:97:db:9d:f5:8a:e6:be:0f:3e:4a: 69:6a:d7:65:a0:7d:e3:86:dc:ec:5a:05:2a:cb:20: d7:12:a5:9c:a7:fc:4f:92:19:f7:54:48:9a:53:1c: 4a:46:89:ac:b1:87:d9:2d:6e:2d:98:2c:3d:13:9f: e6:1a:b3:47:78:52:62:b9:ff:7c:61:fa:c5:5a:3f: a0:c4:c0:94:06:cf:10:d0:63:64:28:86:52:a1:27: b5:bf:2e:b4:7c:b0:42:9f:bb:03:a0:52:f0:f8:1e: dc:2f:0b:8d:53:2e:02:ec:9e:46:cb:a3:18:a6:99: a1:39:9f:c0:1e:6c:c8:00:7e:ed:e3:13:df:53:4c: c7:09:be:2b:ff:b2:98:42:1d:ea:a7:b8:5b:0d:06: 71:d9:f7:f7:e3:96:b1:00:e3:1c:01:66:39:6e:76: 08:d7:3a:0b:c3:1a:8c:aa:3e:e5:61:ba:f0:11:43: d3:22:cd:32:46:2e:6c:d4:1b:f3:6f:fc:3d:cc:ec: 29:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C5:8A:8B:93:40:68:4B:95:C5:73:2E:39:1C:D3:35:AA:80:4B:13 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bd:db:ea:c9:17:2a:8b:5a:0d:92:20:3c:b8:69:f6:f1:73: c4:a1:b1:5e:d2:ba:85:a1:78:a0:44:24:21:76:8e:9b:9b:c4: 97:a8:05:09:9b:11:44:6b:7a:4f:2f:8c:8f:85:1f:1c:d2:69: c1:6e:e4:5f:42:2b:cd:ef:24:53:bd:6d:3c:ae:20:4e:4c:dc: ca:73:09:a0:91:1e:89:b5:3b:f6:09:df:e3:e2:c7:02:e9:83: cb:9b:7c:9b:5f:ef:3a:7f:da:d3:c5:a7:ca:41:a0:09:c6:76: 10:2a:a5:05:64:70:66:61:6e:3b:65:30:9c:c2:d7:43:c8:04: 46:ef:50:ca:dc:8a:6d:36:81:52:fa:75:9c:da:1c:d2:76:b7: 6b:99:d9:68:b0:40:02:9b:e5:07:14:08:5e:bb:20:12:ff:3b: 89:a0:b7:1c:db:61:4f:69:c6:1f:cb:5c:f7:82:24:a0:cb:9d: 57:73:8a:da:81:05:2f:bc:57:84:bc:33:e8:b0:33:ff:c0:48: 19:96:a3:fc:18:3b:3b:14:ea:a7:06:55:74:66:88:49:34:9d: ba:62:d5:79:c4:40:bd:e9:f1:45:bc:38:ea:88:51:39:9d:5f: 1f:00:69:6b:21:35:51:31:e0:b4:4e:7a:83:85:e9:49:c6:07: 5d:ac:6b:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwOTA2MjM1MjUzWhcNMjUwOTEzMjM1MjUzWjAYMRYwFAYD VQQDEw02OGJjYzk1NS03OTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjRfe5WENLnupQSmfCVvziANG+33OsJIhGEeFq9zIsAZxu3+drYeLUNt2kEw tbV5Q7jk4dYyfSnIO/Dvpv57V5fbnfWK5r4PPkppatdloH3jhtzsWgUqyyDXEqWc p/xPkhn3VEiaUxxKRomssYfZLW4tmCw9E5/mGrNHeFJiuf98YfrFWj+gxMCUBs8Q 0GNkKIZSoSe1vy60fLBCn7sDoFLw+B7cLwuNUy4C7J5Gy6MYppmhOZ/AHmzIAH7t 4xPfU0zHCb4r/7KYQh3qp7hbDQZx2ff345axAOMcAWY5bnYI1zoLwxqMqj7lYbrw EUPTIs0yRi5s1Bvzb/w9zOwpcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnFiouT QGhLlcVzLjkc0zWqgEsTMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvdvqyRcqi1oNkiA8uGn28XPEobFe0rqFoXigRCQhdo6bm8SXqAUJ mxFEa3pPL4yPhR8c0mnBbuRfQivN7yRTvW08riBOTNzKcwmgkR6JtTv2Cd/j4scC 6YPLm3ybX+86f9rTxafKQaAJxnYQKqUFZHBmYW47ZTCcwtdDyARG71DK3IptNoFS +nWc2hzSdrdrmdlosEACm+UHFAheuyAS/zuJoLcc22FPacYfy1z3giSgy51Xc4ra gQUvvFeEvDPosDP/wEgZlqP8GDs7FOqnBlV0ZohJNJ26YtV5xEC96fFFvDjqiFE5 nV8fAGlrITVRMeC0TnqDhelJxgddrGsS -----END CERTIFICATE-----Generated at Mon Sep 8 21:38:34 2025 by rpki-client