$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: b0No5ixCEQSa44oYXOC8KFePLu0I0Tw+2wZepkkTo0A= Subject key identifier: BD:B3:F7:F8:3C:4F:FC:2E:DA:D4:38:01:8B:EB:88:5D:A6:10:56:AE Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 072E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 072E Signing time: Wed 20 Aug 2025 21:50:49 +0000 Manifest this update: Wed 20 Aug 2025 21:50:49 +0000 Manifest next update: Wed 27 Aug 2025 21:50:49 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: eMdMLMbCAF0/HeOjPn229loH3HXgG8nrW/3bewzTpuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1838 (0x72e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Aug 20 21:50:49 2025 GMT Not After : Aug 27 21:50:49 2025 GMT Subject: CN=68a64339-13d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:76:ce:89:85:d8:de:8e:e1:55:74:26:00:27: a7:7e:01:56:37:a1:02:17:12:f3:ca:d3:c0:6a:90: 3d:c6:94:ed:4e:68:ec:75:f5:74:f7:50:50:2b:d4: 13:87:11:4a:22:97:bf:b8:4a:b1:9e:e2:1f:f2:9d: c9:5d:cf:df:bb:6f:3f:bf:3d:69:86:a3:ed:af:98: d6:d0:19:6c:fa:36:34:40:71:c9:1e:97:4a:64:2b: ba:68:80:f1:7b:0b:4f:24:93:04:a8:7d:74:b1:ce: c9:c1:d4:04:ce:2d:56:fb:6e:7e:6d:bd:71:0b:0d: d8:57:8a:c4:d4:1f:4e:2a:ba:ad:ed:fd:9d:32:1b: 2f:6d:b1:33:41:58:22:33:e3:d9:85:90:50:f7:97: 10:8a:3b:08:27:7b:2a:ff:35:81:db:f9:c5:9b:9a: 1a:1c:b0:64:ed:05:fe:9a:fb:6e:54:c9:53:59:5d: 52:a3:ca:1e:8b:78:da:30:28:e3:3b:eb:19:a5:5d: ff:60:9e:5f:fc:c4:2d:9e:78:5c:3e:c6:68:9c:2a: db:64:63:dc:16:e3:27:b5:3e:ee:b0:24:2f:98:62: 8a:8c:11:66:21:56:94:06:1d:3d:3c:23:37:c1:c1: 26:6c:62:fb:eb:d3:4a:92:f6:41:1d:97:85:f4:1d: a7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B3:F7:F8:3C:4F:FC:2E:DA:D4:38:01:8B:EB:88:5D:A6:10:56:AE X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:46:c6:37:34:7f:54:8f:ee:21:fd:01:75:b4:51:43:50:01: 49:8e:1d:6b:65:8c:a9:72:41:ec:33:fd:53:e8:bd:a2:f0:d3: cf:6b:6e:01:e5:1d:57:e3:d7:bd:7a:0b:01:e8:15:08:17:86: bd:da:5f:0c:35:50:3d:af:9e:da:83:f9:09:67:dc:60:39:c0: 7f:34:0e:05:33:86:b7:ea:39:cb:95:96:b0:cb:ab:cf:5b:dc: d1:c0:1a:b8:6f:28:9d:57:da:a6:7e:28:e2:eb:43:4e:16:67: 16:f5:12:2c:41:64:fb:5a:dd:db:86:8a:57:f6:74:38:c5:2f: 04:dd:fa:e6:f9:94:9e:da:f6:e6:13:13:b9:d3:0b:00:27:db: 90:1e:c5:f4:cf:b6:73:16:f6:bb:f5:39:b0:f3:38:8d:d5:d8: f1:7c:44:ac:a5:28:11:f6:40:cf:88:62:ef:5a:9f:bf:ba:d4: 75:f6:d5:c3:2f:89:76:16:98:be:7c:2e:3f:95:bd:54:c8:fe: cc:a0:b5:bd:22:46:d0:00:07:0a:9a:3d:79:73:a3:8e:3b:a7: a0:2e:36:62:68:4f:44:6f:7d:81:e3:12:c4:c9:60:ae:c3:c8: b8:16:57:49:bb:cb:4e:84:e4:ab:62:c2:cd:ff:75:38:e1:fb: 61:ac:6b:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwODIwMjE1MDQ5WhcNMjUwODI3MjE1MDQ5WjAYMRYwFAYD VQQDEw02OGE2NDMzOS0xM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXbOiYXY3o7hVXQmACenfgFWN6ECFxLzytPAapA9xpTtTmjsdfV091BQK9QT hxFKIpe/uEqxnuIf8p3JXc/fu28/vz1phqPtr5jW0Bls+jY0QHHJHpdKZCu6aIDx ewtPJJMEqH10sc7JwdQEzi1W+25+bb1xCw3YV4rE1B9OKrqt7f2dMhsvbbEzQVgi M+PZhZBQ95cQijsIJ3sq/zWB2/nFm5oaHLBk7QX+mvtuVMlTWV1So8oei3jaMCjj O+sZpV3/YJ5f/MQtnnhcPsZonCrbZGPcFuMntT7usCQvmGKKjBFmIVaUBh09PCM3 wcEmbGL769NKkvZBHZeF9B2nXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2z9/g8 T/wu2tQ4AYvriF2mEFauMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbRsY3NH9Uj+4h/QF1tFFDUAFJjh1rZYypckHsM/1T6L2i8NPPa24B 5R1X49e9egsB6BUIF4a92l8MNVA9r57ag/kJZ9xgOcB/NA4FM4a36jnLlZawy6vP W9zRwBq4byidV9qmfiji60NOFmcW9RIsQWT7Wt3bhopX9nQ4xS8E3frm+ZSe2vbm ExO50wsAJ9uQHsX0z7ZzFva79Tmw8ziN1djxfESspSgR9kDPiGLvWp+/utR19tXD L4l2Fpi+fC4/lb1UyP7MoLW9IkbQAAcKmj15c6OOO6egLjZiaE9Eb32B4xLEyWCu w8i4FldJu8tOhOSrYsLN/3U44fthrGsJ -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:15 2025 by rpki-client