$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: exwB+roy8f1zpRPyGTk0HIa2nTazJmffIP6uyb1Rt/k= Subject key identifier: A3:58:D2:9A:74:E8:2A:8B:99:74:12:A8:74:F7:8D:86:62:25:4B:07 Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: C1 Signing time: Fri 05 Sep 2025 06:22:58 +0000 Manifest this update: Fri 05 Sep 2025 06:22:57 +0000 Manifest next update: Fri 12 Sep 2025 06:22:57 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: dovGMEvk/OYiHtJDZi8nhRXfKNHOlHANsj1ZpFn63Xs=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Sep 5 06:22:57 2025 GMT Not After : Sep 12 06:22:57 2025 GMT Subject: CN=68ba81c1-8654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:82:fe:68:11:12:05:1f:e2:73:ac:60:d5:a2: 94:15:60:b8:15:9c:49:3d:05:07:e0:16:85:c8:d7: b1:34:06:63:50:5f:f1:81:39:2c:fb:bf:9b:7c:b7: d4:53:c4:40:8e:5e:3e:05:cd:cf:b2:7b:db:11:0e: 88:9b:c8:5b:2c:2a:95:50:5b:8a:77:28:d2:12:c7: 0a:98:b3:ef:2e:f3:b0:13:0f:c7:04:04:79:31:75: 67:a3:7d:1b:42:ec:2d:0d:c7:c5:38:d1:5c:3b:3e: 0c:3c:35:7c:a3:c3:5a:2b:b5:1f:16:ad:d3:11:9a: 98:6b:33:9d:cd:61:f9:e6:9f:0a:79:1d:3c:5a:17: df:90:8a:8e:65:74:e6:c9:09:4d:0f:fb:37:e6:eb: 3e:80:f6:78:63:9c:ef:ea:fc:a0:1a:af:f9:17:c3: 48:48:53:b1:74:9b:b7:b6:e0:04:72:21:32:2c:0c: 37:a5:c6:c6:d4:5d:cc:3f:ad:d5:bd:3d:0b:cf:ac: a9:ab:53:eb:89:ec:98:ef:e6:58:6f:55:86:5b:6a: 04:6e:7c:57:a6:b5:3e:1f:6c:44:66:e3:51:3e:dc: 37:92:b7:ff:78:1a:b4:ec:65:94:cc:bc:53:13:e0: 79:b2:53:52:89:2a:7e:d9:2a:bb:da:d3:6d:79:c3: bd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:58:D2:9A:74:E8:2A:8B:99:74:12:A8:74:F7:8D:86:62:25:4B:07 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b6:28:c2:00:f6:01:9c:18:d8:80:15:0f:67:98:1e:c1:6a: 35:d8:8d:52:4a:1a:38:e6:9b:91:18:bf:4e:c0:89:28:fe:ec: 15:e2:da:df:5e:40:24:e0:72:da:3a:d4:e1:9a:af:2d:24:23: 6c:99:6c:ca:f3:d8:5a:d9:32:43:1a:32:55:a6:eb:be:c6:3f: d6:35:7d:86:b5:b2:a2:11:91:18:7e:a0:15:45:f2:bc:04:a6: b6:48:55:d0:93:97:96:cd:28:c1:df:cf:a9:34:41:ec:34:8f: a1:95:58:98:9b:ef:54:81:c8:6e:43:80:c4:13:22:dd:cc:34: 83:3d:0f:3f:2c:2f:e8:7d:74:cc:3b:86:e4:fa:c6:34:b7:bd: 79:ec:60:4c:c1:84:fb:1c:48:4b:ee:4a:d6:70:2c:04:a1:c7: 69:0d:b7:16:14:68:98:b4:7a:81:fe:e0:95:65:81:ee:8e:2c: 41:3a:25:59:fa:8e:42:60:6c:a9:b1:b4:f7:d0:7f:74:be:43: 4b:19:03:c1:cf:d4:1e:50:6a:21:9d:07:b8:5b:6f:a3:25:51: 24:45:2a:c9:10:04:03:5b:45:c1:c0:05:30:7c:0c:1c:c1:a3: 4f:5e:e3:95:41:9d:1e:26:46:bb:eb:40:50:94:8b:eb:13:8a: e4:0c:c8:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MDYxMTAvBgNVBAUTKDg4N0UxMTA3QTgzRjExNzRGRjdFM0U3ODA4ODhEQjU3 MjNCNzkyNUIwHhcNMjUwOTA1MDYyMjU3WhcNMjUwOTEyMDYyMjU3WjAYMRYwFAYD VQQDEw02OGJhODFjMS04NjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YL+aBESBR/ic6xg1aKUFWC4FZxJPQUH4BaFyNexNAZjUF/xgTks+7+bfLfU U8RAjl4+Bc3PsnvbEQ6Im8hbLCqVUFuKdyjSEscKmLPvLvOwEw/HBAR5MXVno30b QuwtDcfFONFcOz4MPDV8o8NaK7UfFq3TEZqYazOdzWH55p8KeR08WhffkIqOZXTm yQlND/s35us+gPZ4Y5zv6vygGq/5F8NISFOxdJu3tuAEciEyLAw3pcbG1F3MP63V vT0Lz6ypq1PrieyY7+ZYb1WGW2oEbnxXprU+H2xEZuNRPtw3krf/eBq07GWUzLxT E+B5slNSiSp+2Sq72tNtecO9lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNY0pp0 6CqLmXQSqHT3jYZiJUsHMB8GA1UdIwQYMBaAFIh+EQeoPxF0/34+eAiI21cjt5Jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgwNi9DNzM5QkFFRTZF OTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VYVF9majU0Q0lqYlZ5TzNr bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2tscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgwNi9DNzM5QkFFRTZFOTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VY VF9majU0Q0lqYlZ5TzNrbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFtijCAPYBnBjYgBUPZ5gewWo12I1SSho45puRGL9OwIko/uwV4trf XkAk4HLaOtThmq8tJCNsmWzK89ha2TJDGjJVpuu+xj/WNX2GtbKiEZEYfqAVRfK8 BKa2SFXQk5eWzSjB38+pNEHsNI+hlViYm+9UgchuQ4DEEyLdzDSDPQ8/LC/ofXTM O4bk+sY0t7157GBMwYT7HEhL7krWcCwEocdpDbcWFGiYtHqB/uCVZYHujixBOiVZ +o5CYGypsbT30H90vkNLGQPBz9QeUGohnQe4W2+jJVEkRSrJEAQDW0XBwAUwfAwc waNPXuOVQZ0eJka760BQlIvrE4rkDMi6 -----END CERTIFICATE-----Generated at Sat Sep 6 21:29:22 2025 by rpki-client