$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: PWCdLs9rKURImaAaPv7CRkBxI9AkhH+45Uv7wgLSidM= Subject key identifier: 52:33:B5:96:97:83:1F:C4:C9:CD:C3:A9:48:7B:C4:56:BB:03:69:98 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0543 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 053C Signing time: Wed 20 Aug 2025 23:35:41 +0000 Manifest this update: Wed 20 Aug 2025 23:35:40 +0000 Manifest next update: Wed 27 Aug 2025 23:35:40 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: PpbISWQ8WdMKzkpHAl2M5rs6dGdkeMiBxwJVOFt21N0=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1347 (0x543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Aug 20 23:35:40 2025 GMT Not After : Aug 27 23:35:40 2025 GMT Subject: CN=68a65bcd-8c87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e1:b5:55:8d:55:28:00:8d:82:3f:86:c5:42: a1:73:56:ea:96:51:91:25:7c:a7:7a:e6:6d:62:f4: fc:ef:06:70:a9:f2:21:b2:c9:93:85:78:18:ec:f5: c6:d7:64:70:c0:60:a4:37:03:7a:7b:3e:56:e6:1b: 58:3f:c3:7b:e5:cc:83:1b:87:e3:6f:b5:4e:5a:8b: e1:ec:4c:f1:d9:4f:40:cd:29:1e:3c:b5:16:5d:7b: 10:d4:08:d5:d8:be:95:04:71:a3:25:5e:e3:62:cc: 67:ac:00:3e:f5:e7:31:50:35:b3:ec:d6:02:25:5c: dd:78:ed:a9:4d:b3:0f:72:f7:2b:d0:08:1d:17:8a: 1a:da:b8:8e:0c:d1:ee:0b:c0:2e:e7:29:c3:6f:65: f5:86:ed:a6:92:12:09:b8:4a:b2:d9:85:bf:bc:ea: 41:ea:b5:11:36:b1:19:b8:43:90:97:96:89:58:ce: 3b:68:51:81:06:de:16:85:94:18:74:08:49:f7:97: bc:d1:d2:1d:4b:60:93:e2:92:88:88:6f:bf:10:67: ec:98:6a:4b:b2:8d:a8:68:23:79:50:eb:b5:db:9f: d2:43:a4:17:68:35:f8:f0:98:bc:81:e4:df:80:03: 94:bc:c0:5b:62:02:5f:d1:a6:12:61:85:50:cf:2a: 2a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:33:B5:96:97:83:1F:C4:C9:CD:C3:A9:48:7B:C4:56:BB:03:69:98 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:7e:c2:da:98:e8:f1:a7:3f:c6:f1:9d:5b:cb:2c:86:ea:1c: ee:97:76:8a:f0:c4:d5:09:10:ec:91:d9:46:21:cc:02:66:38: a7:83:ab:00:9b:7a:e3:0f:5a:93:2a:61:7d:a9:3f:73:3a:85: f6:34:e6:6c:5e:1a:fa:6c:9a:dc:67:25:de:bf:25:f5:75:42: 87:ee:17:82:5d:35:84:5e:a7:6e:cf:0e:52:e5:16:ba:6b:ca: 67:06:ed:6a:bf:36:cd:44:26:00:fc:ac:81:e9:1d:fd:0c:95: 80:13:dc:96:76:8d:19:cb:e7:f4:98:e3:90:d1:e2:05:78:aa: 61:21:54:b2:05:1d:bb:bb:b3:07:73:ab:0b:78:fb:07:df:71: d0:55:44:da:a2:31:fe:1f:ef:d6:43:eb:6d:91:e1:83:58:56: f7:4b:ed:a1:59:fe:5c:a6:65:6b:b7:42:d7:64:b4:2c:13:ee: 75:bc:5e:e2:e2:1d:c8:58:3e:9a:5f:f6:8f:17:42:a8:ce:ac: 47:f3:f8:49:05:4a:34:1a:ec:b8:5e:6b:c0:03:fb:5e:69:1a: 47:98:d1:a5:03:1e:66:af:05:3b:3f:37:5b:e9:04:ef:c3:b1: 8c:7d:f9:a7:f2:76:d0:b0:26:b7:55:fb:2f:3e:c7:63:44:ca: 89:58:c4:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwODIwMjMzNTQwWhcNMjUwODI3MjMzNTQwWjAYMRYwFAYD VQQDEw02OGE2NWJjZC04Yzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuG1VY1VKACNgj+GxUKhc1bqllGRJXyneuZtYvT87wZwqfIhssmThXgY7PXG 12RwwGCkNwN6ez5W5htYP8N75cyDG4fjb7VOWovh7Ezx2U9AzSkePLUWXXsQ1AjV 2L6VBHGjJV7jYsxnrAA+9ecxUDWz7NYCJVzdeO2pTbMPcvcr0AgdF4oa2riODNHu C8Au5ynDb2X1hu2mkhIJuEqy2YW/vOpB6rURNrEZuEOQl5aJWM47aFGBBt4WhZQY dAhJ95e80dIdS2CT4pKIiG+/EGfsmGpLso2oaCN5UOu125/SQ6QXaDX48Ji8geTf gAOUvMBbYgJf0aYSYYVQzyoq0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIztZaX gx/Eyc3DqUh7xFa7A2mYMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJfsLamOjxpz/G8Z1byyyG6hzul3aK8MTVCRDskdlGIcwCZjing6sA m3rjD1qTKmF9qT9zOoX2NOZsXhr6bJrcZyXevyX1dUKH7heCXTWEXqduzw5S5Ra6 a8pnBu1qvzbNRCYA/KyB6R39DJWAE9yWdo0Zy+f0mOOQ0eIFeKphIVSyBR27u7MH c6sLePsH33HQVUTaojH+H+/WQ+ttkeGDWFb3S+2hWf5cpmVrt0LXZLQsE+51vF7i 4h3IWD6aX/aPF0KozqxH8/hJBUo0Guy4XmvAA/teaRpHmNGlAx5mrwU7Pzdb6QTv w7GMffmn8nbQsCa3VfsvPsdjRMqJWMRN -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:45 2025 by rpki-client