$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: dM+YsSs9xpZKqvGrsQPvlu/JEaQp9fhFz5g7Tbh2JEc= Subject key identifier: EB:08:97:40:E2:09:30:F7:7B:9D:95:64:02:04:17:E6:C8:3E:96:D5 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 037B Signing time: Tue 09 Sep 2025 00:57:07 +0000 Manifest this update: Tue 09 Sep 2025 00:57:06 +0000 Manifest next update: Tue 16 Sep 2025 00:57:06 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: eR6pkwRcFfw4RBPEWgcfIDZNhscVdWL1yiZUl7Hq/u0=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Sep 9 00:57:06 2025 GMT Not After : Sep 16 00:57:06 2025 GMT Subject: CN=68bf7b63-e78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a8:47:ac:f3:7a:15:d1:4c:56:f4:79:06:9c: cf:0e:d7:39:78:af:d5:bb:af:3a:de:1b:1e:81:c2: 82:57:57:9e:64:eb:5e:d1:bf:72:fa:f4:c1:97:4f: 10:2d:20:4e:4f:4d:cc:11:1d:08:11:51:07:bc:6e: 39:1d:2c:a3:f1:b3:f0:f7:c3:42:27:52:a5:c8:26: 34:98:8a:5d:69:09:37:5f:3e:ce:f0:ff:bf:75:9c: 16:82:2f:6f:00:56:22:5a:1c:24:7e:50:8f:f8:8c: 0f:af:d0:54:8f:fc:3d:92:66:bf:ce:78:df:bf:cb: 01:d2:5d:91:1c:08:43:c2:57:aa:29:da:79:67:81: 75:53:a8:cb:b7:07:e3:08:47:46:4b:c1:56:79:20: 1b:05:a6:46:7d:fa:ed:11:e2:26:c2:cc:1c:d2:d0: a8:42:a0:92:89:60:a3:62:90:60:39:4f:39:a5:79: 87:ed:98:e9:14:72:4a:0c:ad:38:68:bd:04:73:f4: a1:bd:4d:0a:61:1c:3c:5d:a6:fd:d5:37:d4:b8:8f: 9c:c1:50:1a:1e:ca:af:2e:78:0e:12:60:f2:a4:17: 47:78:6d:70:a7:61:59:87:43:44:3c:1d:a0:b4:9f: 58:89:75:a5:0c:b2:f6:c9:4a:d8:23:7e:cf:9e:01: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:08:97:40:E2:09:30:F7:7B:9D:95:64:02:04:17:E6:C8:3E:96:D5 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:af:a2:a0:79:f9:b8:de:e5:5b:1c:5d:f9:42:b7:66:09:ba: 34:f1:7c:a0:07:ba:ed:cf:9a:df:7a:16:d7:20:a6:19:01:27: 74:67:e7:72:61:03:24:00:b1:04:72:de:6a:69:9f:ab:d0:fb: 21:cf:bf:28:b9:1d:dc:82:79:1c:89:e8:32:7f:ef:47:2c:94: 42:13:70:d2:16:f4:37:e2:60:16:68:be:11:40:8c:f1:e7:49: 4a:1a:90:56:47:29:4b:29:c4:d8:c0:c5:54:ec:f3:6d:b7:21: 73:1c:af:8b:e0:55:20:eb:69:bb:3b:b9:dd:31:be:a8:fa:59: 48:22:f5:2f:8d:1f:62:a8:e2:fa:29:c1:08:d6:30:55:92:bc: a4:53:8e:dc:99:0b:cf:17:4e:c3:fd:c9:ca:2e:9d:79:d9:26: c1:8e:86:70:fd:93:db:3b:9c:f6:6d:00:97:da:f0:34:de:3c: ac:16:7c:de:8f:04:0f:d3:0f:0b:1d:19:92:b9:c5:ee:c6:26: 1e:27:9b:85:13:cb:a5:a9:cc:cd:63:2d:46:5a:55:07:63:97: c6:d7:bf:7d:4d:d8:86:b2:a9:09:b0:8f:7c:e4:19:45:a3:fa: 13:00:71:57:08:78:c3:46:f6:4a:3d:8f:7b:3e:77:fd:7e:84: d9:92:13:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwOTA5MDA1NzA2WhcNMjUwOTE2MDA1NzA2WjAYMRYwFAYD VQQDEw02OGJmN2I2My1lNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6hHrPN6FdFMVvR5BpzPDtc5eK/Vu6863hsegcKCV1eeZOte0b9y+vTBl08Q LSBOT03MER0IEVEHvG45HSyj8bPw98NCJ1KlyCY0mIpdaQk3Xz7O8P+/dZwWgi9v AFYiWhwkflCP+IwPr9BUj/w9kma/znjfv8sB0l2RHAhDwleqKdp5Z4F1U6jLtwfj CEdGS8FWeSAbBaZGffrtEeImwswc0tCoQqCSiWCjYpBgOU85pXmH7ZjpFHJKDK04 aL0Ec/ShvU0KYRw8Xab91TfUuI+cwVAaHsqvLngOEmDypBdHeG1wp2FZh0NEPB2g tJ9YiXWlDLL2yUrYI37PngHpywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsIl0Di CTD3e52VZAIEF+bIPpbVMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnr6Kgefm43uVbHF35QrdmCbo08XygB7rtz5rfehbXIKYZASd0Z+dy YQMkALEEct5qaZ+r0Pshz78ouR3cgnkciegyf+9HLJRCE3DSFvQ34mAWaL4RQIzx 50lKGpBWRylLKcTYwMVU7PNttyFzHK+L4FUg62m7O7ndMb6o+llIIvUvjR9iqOL6 KcEI1jBVkrykU47cmQvPF07D/cnKLp152SbBjoZw/ZPbO5z2bQCX2vA03jysFnze jwQP0w8LHRmSucXuxiYeJ5uFE8ulqczNYy1GWlUHY5fG1799TdiGsqkJsI985BlF o/oTAHFXCHjDRvZKPY97Pnf9foTZkhNs -----END CERTIFICATE-----Generated at Tue Sep 9 09:49:42 2025 by rpki-client