$ rpki-client -vvf rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft File: IRcCLfYdpCG55OG7hIPYXkmCv5E.mft (raw, json) Hash identifier: mV+34kHxMF+GxCjPjPyJNTa7sSkHq83IVrjINUnFUww= Subject key identifier: E3:40:88:0C:28:72:9A:A7:16:26:FB:46:AC:17:35:66:BB:F8:BD:6F Authority key identifier: 21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 Certificate issuer: /CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Certificate serial: 0516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft Manifest number: 0510 Signing time: Sat 06 Sep 2025 23:57:36 +0000 Manifest this update: Sat 06 Sep 2025 23:57:35 +0000 Manifest next update: Sat 13 Sep 2025 23:57:35 +0000 Files and hashes: 1: IRcCLfYdpCG55OG7hIPYXkmCv5E.crl (hash: bl4h2AB+y/sczyUJ/pURHJH0xotMHOCIUaDHJrAY86o=) 2: E41BF8841CDC11ECBA794120C4F9AE02.roa (hash: U/+wPqrKrJC011IcABNzpIvFcS1/P1nom9ZdkuvcUss=) 3: B5D70D9ACE3311EFA7B9B640C4F9AE02.roa (hash: eFUfIoic8XWxnlHcYYzBMeRdJXcAiXS5ahGJK7+zPi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169382, serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Validity Not Before: Sep 6 23:57:35 2025 GMT Not After : Sep 13 23:57:35 2025 GMT Subject: CN=68bcca70-4591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:98:5b:66:84:f3:b0:01:3d:08:85:d3:ec:fa: 05:03:f1:34:3c:c1:13:75:ba:77:28:aa:ab:b3:72: 16:30:c5:7c:45:c1:5c:d6:dd:3c:5a:ce:10:84:40: 63:3c:99:3f:e0:3d:2c:11:d1:87:06:1f:14:20:a1: f8:c0:8f:42:1a:74:00:44:49:be:8b:12:6b:ac:b6: 99:a4:0e:3e:2e:49:a7:d3:fb:6c:44:6b:a3:60:63: 56:5a:e4:d0:1c:d6:04:ba:42:32:e9:51:e9:7d:a6: 70:f0:1f:f9:64:d9:32:ec:0c:d2:9f:a3:93:54:ec: ea:60:b4:ca:40:01:f7:e1:ba:e7:aa:7d:28:41:91: 94:62:43:a4:e2:bb:73:b9:46:e7:ed:47:13:f6:c3: 4e:86:bc:b7:b5:67:b1:09:05:6a:b9:34:77:64:cb: 98:1b:f6:50:d7:f1:92:19:d9:2d:3f:14:20:f8:6d: f1:fd:eb:c1:a8:fa:f5:1f:94:1c:a4:b0:a6:3d:e8: 96:f0:bc:ee:cb:7a:80:f1:0f:bd:e4:91:2b:c0:5b: d4:f5:07:4d:18:d8:c0:32:87:1f:fc:e3:bf:b2:5b: dc:f9:81:c4:71:dc:da:4a:18:e5:29:50:1e:ec:42: 8a:dc:1a:b1:56:b2:eb:14:18:89:cf:db:a9:47:ef: ec:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:40:88:0C:28:72:9A:A7:16:26:FB:46:AC:17:35:66:BB:F8:BD:6F X509v3 Authority Key Identifier: keyid:21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8a:ea:26:20:a8:04:27:44:36:4e:dc:6f:5f:fb:90:ed:fa: 6f:7d:4d:31:06:e4:ad:3a:87:81:3f:cb:89:55:66:9d:72:39: 6d:91:8a:d4:05:e0:2c:11:30:48:76:8d:f8:67:8e:02:a9:6e: f0:09:7a:a6:4b:93:09:71:ce:ed:b1:07:8b:10:9d:80:ec:63: 7f:1d:49:d3:15:f8:8e:86:a8:1c:0c:80:59:1d:93:b0:45:ad: b8:50:21:86:dd:22:d2:1f:20:40:59:8e:ef:50:8d:c1:4d:11: f3:ab:19:96:4d:05:39:85:59:2e:30:d4:a9:bd:8c:c4:44:51: 89:f3:46:b7:94:b7:ac:02:7c:94:23:fd:68:91:7c:d1:b1:e9: b3:c7:f2:fc:78:c9:a0:a1:e9:95:c7:4d:c0:17:30:40:3d:4e: b3:6d:17:58:52:db:2b:72:f8:12:e8:f5:03:38:7b:8c:54:36: 2f:9b:10:06:5f:de:cf:23:7d:3e:3c:c5:e9:80:5d:6c:91:9c: 9b:46:af:01:91:87:44:5a:47:37:f8:12:99:6d:2f:1b:36:04: 89:9d:b0:d5:45:d7:fd:ee:5d:75:7a:6b:09:4f:6b:2c:15:4d: ec:20:fb:ac:0b:b6:08:17:1a:18:36:bb:f2:af:6f:d9:1f:39: 87:57:3e:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzODIxMTAvBgNVBAUTKDIxMTcwMjJERjYxREE0MjFCOUU0RTFCQjg0ODNEODVF NDk4MkJGOTEwHhcNMjUwOTA2MjM1NzM1WhcNMjUwOTEzMjM1NzM1WjAYMRYwFAYD VQQDEw02OGJjY2E3MC00NTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JhbZoTzsAE9CIXT7PoFA/E0PMETdbp3KKqrs3IWMMV8RcFc1t08Ws4QhEBj PJk/4D0sEdGHBh8UIKH4wI9CGnQAREm+ixJrrLaZpA4+Lkmn0/tsRGujYGNWWuTQ HNYEukIy6VHpfaZw8B/5ZNky7AzSn6OTVOzqYLTKQAH34brnqn0oQZGUYkOk4rtz uUbn7UcT9sNOhry3tWexCQVquTR3ZMuYG/ZQ1/GSGdktPxQg+G3x/evBqPr1H5Qc pLCmPeiW8Lzuy3qA8Q+95JErwFvU9QdNGNjAMocf/OO/slvc+YHEcdzaShjlKVAe 7EKK3BqxVrLrFBiJz9upR+/sGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONAiAwo cpqnFib7RqwXNWa7+L1vMB8GA1UdIwQYMBaAFCEXAi32HaQhueThu4SD2F5Jgr+R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM4Mi9BNUZCODE1ODFD RDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBDRzU1T0c3aElQWVhrbUN2 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lSY0NMZllkcENHNTVPRzdoSVBZWGttQ3Y1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM4Mi9BNUZCODE1ODFDRDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBD RzU1T0c3aElQWVhrbUN2NUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOiuomIKgEJ0Q2TtxvX/uQ7fpvfU0xBuStOoeBP8uJVWadcjltkYrU BeAsETBIdo34Z44CqW7wCXqmS5MJcc7tsQeLEJ2A7GN/HUnTFfiOhqgcDIBZHZOw Ra24UCGG3SLSHyBAWY7vUI3BTRHzqxmWTQU5hVkuMNSpvYzERFGJ80a3lLesAnyU I/1okXzRsemzx/L8eMmgoemVx03AFzBAPU6zbRdYUtsrcvgS6PUDOHuMVDYvmxAG X97PI30+PMXpgF1skZybRq8BkYdEWkc3+BKZbS8bNgSJnbDVRdf97l11emsJT2ss FU3sIPusC7YIFxoYNrvyr2/ZHzmHVz5J -----END CERTIFICATE-----Generated at Tue Sep 9 00:50:37 2025 by rpki-client