$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: +uzmjejCsYzog+s2n3kcT52NOTJmEsaXNhDSkTTfLpg= Subject key identifier: 39:2A:B3:CE:37:58:93:CF:53:07:B9:5B:47:02:D9:DE:AC:B1:23:8D Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0730 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C36 Signing time: Thu 18 Sep 2025 18:46:25 +0000 Manifest this update: Thu 18 Sep 2025 18:46:24 +0000 Manifest next update: Thu 25 Sep 2025 18:46:24 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: lXU11dD2bpC5sFhIsBGNqzxQ+OqBh8q2E8eryoijUU0=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1840 (0x730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Sep 18 18:46:24 2025 GMT Not After : Sep 25 18:46:24 2025 GMT Subject: CN=68cc5381-0c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:0a:49:63:79:39:34:8d:f2:f8:29:7b:f3: 78:3e:f7:a8:32:be:35:8e:aa:49:92:6b:c9:f1:04: 19:34:53:82:07:19:be:29:7d:94:6a:28:b1:32:f8: 2b:f7:97:a7:ae:d6:e8:8b:9c:bb:d3:76:9f:b1:89: 1a:1c:6e:b5:1c:ec:be:b4:03:f9:d5:9d:8d:45:59: d6:92:44:14:59:6f:d0:11:04:d4:47:75:c0:2d:b3: 29:d8:67:bc:44:4c:ca:d3:67:34:46:78:ab:a6:b6: ff:e3:7a:d2:4d:53:97:9f:93:e7:49:2a:9d:e7:59: 17:2e:06:5f:ae:68:2d:21:2d:59:f9:ae:fd:cd:ac: c3:a8:50:75:2e:87:a4:22:3e:73:d0:13:3a:e8:58: 5f:ac:64:f7:4b:c9:b4:e0:b6:6b:a3:58:32:ab:a5: 0f:6a:57:99:12:11:8d:0a:3d:f4:1c:56:4f:0a:03: f3:85:17:f4:db:59:d7:55:b8:53:bd:9d:39:f0:b5: b3:89:ab:bb:04:9e:97:28:53:12:98:fc:1d:62:2f: 46:38:7e:ee:1a:dd:78:0d:14:58:40:8d:d9:49:3f: 41:97:10:e7:cf:9d:d8:b3:9b:0b:40:46:fe:f7:e0: d4:c5:ab:6d:5d:27:a2:76:a0:d4:e9:fb:5b:6a:49: c3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2A:B3:CE:37:58:93:CF:53:07:B9:5B:47:02:D9:DE:AC:B1:23:8D X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7d:40:8c:f8:5e:9f:fc:3f:77:39:2c:a2:0d:d7:9c:f5:8c: 76:ee:6f:6f:4f:5e:c7:30:a6:28:40:66:70:ea:f1:82:8d:4a: b1:f8:e9:dc:2f:87:29:f5:50:61:ec:fb:b6:b2:ee:89:f7:e5: 41:60:a0:b1:10:bd:79:35:2c:fa:61:5a:ca:54:f8:98:62:b0: aa:dc:09:1f:6f:33:ee:65:41:9c:a4:0c:e4:bd:f8:4e:5a:d9: 1e:4e:06:b3:dd:da:db:d5:0d:e7:98:44:3b:f4:0d:4a:0b:00: 87:ed:5e:59:41:f7:b5:76:ed:07:af:c2:0f:79:19:99:ea:f4: c2:2a:5d:7c:1a:57:e1:09:68:06:c5:da:c2:8f:92:6f:16:0d: 99:fb:10:36:b4:90:ae:ef:c7:b7:39:dd:5f:46:5d:4c:e1:4e: 69:39:9d:55:a8:c5:8c:46:b1:02:92:ed:c2:a9:b4:4c:d2:54: ae:9d:1f:ee:36:54:82:f2:f6:3c:90:b3:2c:c1:f0:d1:ae:06: d3:47:c3:04:b1:bc:cd:c2:07:a8:62:40:d8:b5:8f:8a:6b:85: 4d:66:01:89:f7:e3:f9:8a:45:9f:3b:65:84:37:99:42:37:c8: 9c:10:3b:8c:67:47:66:04:27:23:3b:4f:40:fb:ed:43:a9:6b: 6d:7e:15:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwOTE4MTg0NjI0WhcNMjUwOTI1MTg0NjI0WjAYMRYwFAYD VQQDEw02OGNjNTM4MS0wYzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGYKSWN5OTSN8vgpe/N4PveoMr41jqpJkmvJ8QQZNFOCBxm+KX2UaiixMvgr 95enrtboi5y703afsYkaHG61HOy+tAP51Z2NRVnWkkQUWW/QEQTUR3XALbMp2Ge8 REzK02c0Rnirprb/43rSTVOXn5PnSSqd51kXLgZfrmgtIS1Z+a79zazDqFB1Loek Ij5z0BM66FhfrGT3S8m04LZro1gyq6UPaleZEhGNCj30HFZPCgPzhRf021nXVbhT vZ058LWziau7BJ6XKFMSmPwdYi9GOH7uGt14DRRYQI3ZST9BlxDnz53Ys5sLQEb+ 9+DUxattXSeidqDU6ftbaknDDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkqs843 WJPPUwe5W0cC2d6ssSONMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqfUCM+F6f/D93OSyiDdec9Yx27m9vT17HMKYoQGZw6vGCjUqx+Onc L4cp9VBh7Pu2su6J9+VBYKCxEL15NSz6YVrKVPiYYrCq3AkfbzPuZUGcpAzkvfhO WtkeTgaz3drb1Q3nmEQ79A1KCwCH7V5ZQfe1du0Hr8IPeRmZ6vTCKl18GlfhCWgG xdrCj5JvFg2Z+xA2tJCu78e3Od1fRl1M4U5pOZ1VqMWMRrECku3CqbRM0lSunR/u NlSC8vY8kLMswfDRrgbTR8MEsbzNwgeoYkDYtY+Ka4VNZgGJ9+P5ikWfO2WEN5lC N8icEDuMZ0dmBCcjO09A++1DqWttfhV7 -----END CERTIFICATE-----Generated at Fri Sep 19 15:17:15 2025 by rpki-client