$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: KFF1xk7JZYlwfiVy6txMXpqUHJNGisJ52D2mQNpVmto= Subject key identifier: F2:0E:92:EA:AB:DB:03:6D:AE:AC:DA:A0:00:7B:74:2E:2D:7A:EE:D1 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: D3 Signing time: Sat 19 Jul 2025 05:49:09 +0000 Manifest this update: Sat 19 Jul 2025 05:49:08 +0000 Manifest next update: Sat 26 Jul 2025 05:49:08 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: Ndqlgbw+N6LZsLTMlUG4aym8ZkM3QG0pDiZfIi9bZ0Q=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: 2DIbbbQohcgsUM76Q6xBDUsyKlfYgqXTFBRbG6OVDKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Jul 19 05:49:08 2025 GMT Not After : Jul 26 05:49:08 2025 GMT Subject: CN=687b31d5-0541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1a:f4:bf:b1:8f:41:77:26:29:fe:ec:52:bd: ae:02:eb:bc:9b:06:22:9b:10:76:29:37:d5:08:8e: cb:79:41:86:f4:f1:29:ed:e1:7d:a7:83:67:8d:f8: 73:c0:d6:5c:2f:bf:b3:fa:3d:20:65:ca:39:91:dd: 74:76:ec:e0:ae:79:9c:6b:52:9d:4d:54:43:56:b2: f4:94:2f:2c:63:0b:68:b8:39:c2:71:02:49:f5:d4: 9d:8c:5d:88:69:0b:db:82:eb:d4:00:e5:56:0b:ea: cc:4e:2a:ac:be:41:44:aa:34:1d:5e:8d:56:a9:ab: d5:c9:11:c4:dd:f4:e1:8f:27:7a:04:81:fc:b6:6e: 4b:86:79:87:ac:44:e3:23:cc:60:61:18:dc:ce:af: a9:73:29:a9:de:d0:a2:3e:86:20:ef:c8:a0:16:1d: 08:76:12:10:1a:2b:e5:57:fb:dc:fc:7f:0f:fe:88: b9:42:9d:c1:2f:bc:b9:14:88:33:47:92:db:7a:f4: 0a:60:73:f7:e6:5c:c8:d3:6c:1b:82:a1:0d:a2:71: fe:3f:0c:e7:01:59:57:9c:e6:f3:61:08:df:71:a8: 0f:29:c6:67:6e:a2:08:ba:53:9e:82:5d:f3:ea:73: 58:d1:07:c4:88:36:be:0e:bd:f2:46:11:d2:21:a2: ff:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0E:92:EA:AB:DB:03:6D:AE:AC:DA:A0:00:7B:74:2E:2D:7A:EE:D1 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:1a:28:cd:30:a9:e5:9c:f2:df:c1:60:a7:79:ad:4c:30:80: 53:ab:9e:9c:cf:e6:b5:cc:2e:22:2e:b3:68:ca:32:8d:01:c6: d3:71:d3:9e:b1:92:ba:c2:74:e8:d2:9c:b2:7b:3f:3e:c4:0d: 09:71:a5:39:db:6e:6d:77:85:eb:e8:73:9a:35:8f:cf:03:4d: 7a:41:a7:a3:a6:2b:51:cb:14:54:d8:d3:c8:ce:11:de:57:3b: 92:d9:4b:10:10:84:01:49:bf:12:a6:0f:2e:7f:8f:f3:f2:d1: a7:c1:10:a4:14:20:a6:7e:73:06:58:e6:61:bf:af:69:58:59: e0:2e:31:bc:b6:ad:24:2e:2d:05:a1:d1:37:26:af:a8:3b:e0: b8:ec:40:19:e6:56:21:a7:c6:12:9f:b5:61:e9:4c:17:a2:e8: 6f:0c:a7:8c:18:9a:74:27:86:85:82:36:e7:dc:81:db:71:bf: 82:8f:5a:f9:27:f8:ed:41:23:74:50:57:f9:18:90:86:ef:ce: c4:dd:62:53:59:af:ab:45:a7:1e:94:a6:35:03:4a:70:74:55: be:41:05:bc:7a:c8:2b:d4:47:64:24:4c:4b:ce:cd:a5:d4:77: 67:5f:1f:19:c9:5f:45:05:ff:7e:37:47:c0:90:24:a3:83:c5: 30:48:4e:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwNzE5MDU0OTA4WhcNMjUwNzI2MDU0OTA4WjAYMRYwFAYD VQQDEw02ODdiMzFkNS0wNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Rr0v7GPQXcmKf7sUr2uAuu8mwYimxB2KTfVCI7LeUGG9PEp7eF9p4Nnjfhz wNZcL7+z+j0gZco5kd10duzgrnmca1KdTVRDVrL0lC8sYwtouDnCcQJJ9dSdjF2I aQvbguvUAOVWC+rMTiqsvkFEqjQdXo1WqavVyRHE3fThjyd6BIH8tm5LhnmHrETj I8xgYRjczq+pcymp3tCiPoYg78igFh0IdhIQGivlV/vc/H8P/oi5Qp3BL7y5FIgz R5LbevQKYHP35lzI02wbgqENonH+PwznAVlXnObzYQjfcagPKcZnbqIIulOegl3z 6nNY0QfEiDa+Dr3yRhHSIaL/PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIOkuqr 2wNtrqzaoAB7dC4teu7RMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfGijNMKnlnPLfwWCnea1MMIBTq56cz+a1zC4iLrNoyjKNAcbTcdOe sZK6wnTo0pyyez8+xA0JcaU5225td4Xr6HOaNY/PA016QaejpitRyxRU2NPIzhHe VzuS2UsQEIQBSb8Spg8uf4/z8tGnwRCkFCCmfnMGWOZhv69pWFngLjG8tq0kLi0F odE3Jq+oO+C47EAZ5lYhp8YSn7Vh6UwXouhvDKeMGJp0J4aFgjbn3IHbcb+Cj1r5 J/jtQSN0UFf5GJCG787E3WJTWa+rRacelKY1A0pwdFW+QQW8esgr1EdkJExLzs2l 1HdnXx8ZyV9FBf9+N0fAkCSjg8UwSE53 -----END CERTIFICATE-----Generated at Mon Jul 21 03:26:16 2025 by rpki-client