$ rpki-client -vvf rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft File: IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft (raw, json) Hash identifier: 3oQMdysDXHqL06YFb4d5LMP1NSluLD4Fqe0YClJ7B50= Subject key identifier: F8:1C:01:FA:A9:44:BB:C6:96:E9:6E:E7:18:0A:67:F5:84:CB:F5:91 Authority key identifier: 21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 Certificate issuer: /CN=A914022F/serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft Manifest number: 06C1 Signing time: Thu 18 Sep 2025 22:23:52 +0000 Manifest this update: Thu 18 Sep 2025 22:23:51 +0000 Manifest next update: Thu 25 Sep 2025 22:23:51 +0000 Files and hashes: 1: IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl (hash: lToO6zocWEphUzMSh4XzThovVU2RUjWUIF86gRpFEjw=) 2: 24F33D7877AF11EB8E972C66C4F9AE02.roa (hash: 4G6we2Th1FMc0knctpDnaHzpZ2DpvqNSVPvecBD6QV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914022F, serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Validity Not Before: Sep 18 22:23:51 2025 GMT Not After : Sep 25 22:23:51 2025 GMT Subject: CN=68cc8677-a677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:44:69:98:a0:3a:a3:df:fe:c5:24:a9:81:8b: 2a:96:17:c6:f4:f0:85:21:10:67:92:9c:c5:1d:56: b2:d4:06:b4:c9:06:30:c4:2b:c9:74:c1:81:31:8d: 25:1f:94:9b:f4:55:57:cc:7f:ad:87:23:07:3e:a2: 91:e3:a3:05:60:76:9d:6c:10:d4:bc:1a:4e:fe:1c: 45:bc:0c:46:c4:0f:c2:39:37:ac:8d:bd:b8:3f:7b: 73:a6:76:19:07:03:7a:da:b3:01:03:b1:92:2d:73: 2a:77:9f:cb:cc:b3:13:fe:4b:51:2c:32:fb:c9:37: 98:e5:98:e8:8c:33:ef:25:d5:d7:f0:30:d7:a5:28: 05:6b:98:68:e4:93:b4:55:69:c6:65:d9:cf:f4:b4: bf:0c:6a:af:2b:1c:be:ab:55:28:7f:e6:24:84:c7: 06:d5:ff:55:59:44:f5:99:d2:e3:44:8a:f0:71:45: 97:2d:e7:ee:11:0b:e0:de:fc:9b:b9:60:21:a6:a5: a6:9f:dc:9f:ae:01:a1:ea:89:e5:71:11:c1:09:85: fd:d1:81:03:40:96:d0:0e:2a:06:95:04:4b:01:a2: 7f:50:3e:76:12:9b:ee:d3:5c:9e:28:e7:bb:ca:14: 19:d0:45:79:85:b2:62:8b:da:c3:80:47:5a:3e:25: 37:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1C:01:FA:A9:44:BB:C6:96:E9:6E:E7:18:0A:67:F5:84:CB:F5:91 X509v3 Authority Key Identifier: keyid:21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7d:0b:b3:54:e7:66:3d:d2:97:2f:0f:b4:cf:39:c4:6f:7c: 50:0d:4b:80:02:c0:c3:d5:11:2c:a0:58:08:5a:8b:bd:b8:64: 1d:87:bc:b7:76:c8:cd:1b:de:38:49:81:e8:31:bf:84:82:8e: f3:14:b2:19:db:ff:48:75:ed:66:9b:7d:7a:cf:6b:b6:8d:5a: 83:84:af:78:41:a3:dc:12:b1:77:65:07:7b:50:f4:f6:71:d7: db:ad:e4:b2:db:79:2f:fa:1b:1f:e1:46:24:93:4f:91:d9:62: 5a:ad:3e:df:85:2d:0c:38:e4:cf:af:b8:f8:41:9f:ea:f8:2e: 46:0b:90:99:b3:f3:79:d7:0c:6b:d0:f8:fa:b3:35:92:8f:03: f9:94:e0:fe:73:f4:28:f5:95:37:94:2a:45:53:b2:c9:71:97: 7f:01:1a:2b:6c:2b:0d:18:21:75:a6:4d:bd:7d:15:4f:3c:e2: 52:16:17:0c:46:f7:89:f6:23:42:6c:f0:d4:1b:3b:9f:37:06: 07:9c:38:c1:b5:f2:36:7a:4c:ae:66:ae:03:d2:e5:4a:6a:ac: 54:eb:13:f8:d8:f3:30:a9:e1:85:15:62:61:4e:bb:6f:ad:63: 3f:b4:3a:8e:7c:3d:69:4f:42:ab:2e:57:e2:13:04:3b:77:20: 15:c8:c4:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyMkYxMTAvBgNVBAUTKDIxNEIyRkNGNDJCQjJCOTg5MDU4NDVENzMzRDk0NUQ5 NUMyRENBMTIwHhcNMjUwOTE4MjIyMzUxWhcNMjUwOTI1MjIyMzUxWjAYMRYwFAYD VQQDEw02OGNjODY3Ny1hNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0URpmKA6o9/+xSSpgYsqlhfG9PCFIRBnkpzFHVay1Aa0yQYwxCvJdMGBMY0l H5Sb9FVXzH+thyMHPqKR46MFYHadbBDUvBpO/hxFvAxGxA/COTesjb24P3tzpnYZ BwN62rMBA7GSLXMqd5/LzLMT/ktRLDL7yTeY5ZjojDPvJdXX8DDXpSgFa5ho5JO0 VWnGZdnP9LS/DGqvKxy+q1Uof+YkhMcG1f9VWUT1mdLjRIrwcUWXLefuEQvg3vyb uWAhpqWmn9yfrgGh6onlcRHBCYX90YEDQJbQDioGlQRLAaJ/UD52Epvu01yeKOe7 yhQZ0EV5hbJii9rDgEdaPiU39QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgcAfqp RLvGlulu5xgKZ/WEy/WRMB8GA1UdIwQYMBaAFCFLL89CuyuYkFhF1zPZRdlcLcoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDIyRi83QzY0NDQyNjc3 NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1aVFXRVhYTTlsRjJWd3R5 aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVc3Z6MEs3SzVpUVdFWFhNOWxGMlZ3dHloSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDIyRi83QzY0NDQyNjc3NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1 aVFXRVhYTTlsRjJWd3R5aEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyfQuzVOdmPdKXLw+0zznEb3xQDUuAAsDD1REsoFgIWou9uGQdh7y3 dsjNG944SYHoMb+Ego7zFLIZ2/9Ide1mm316z2u2jVqDhK94QaPcErF3ZQd7UPT2 cdfbreSy23kv+hsf4UYkk0+R2WJarT7fhS0MOOTPr7j4QZ/q+C5GC5CZs/N51wxr 0Pj6szWSjwP5lOD+c/Qo9ZU3lCpFU7LJcZd/ARorbCsNGCF1pk29fRVPPOJSFhcM RveJ9iNCbPDUGzufNwYHnDjBtfI2ekyuZq4D0uVKaqxU6xP42PMwqeGFFWJhTrtv rWM/tDqOfD1pT0KrLlfiEwQ7dyAVyMRU -----END CERTIFICATE-----Generated at Fri Sep 19 12:38:18 2025 by rpki-client