$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft File: IdPtIffN68fQDxu3oJURuVze_iM.mft (raw, json) Hash identifier: yIiQgD7xu7En9dkxjqTymiRxkgBGJdIb4BgZbssCp3M= Subject key identifier: C1:AD:A8:DA:D6:C0:E0:4E:57:FA:94:DD:AA:25:EF:71:99:CC:8B:8D Authority key identifier: 21:D3:ED:21:F7:CD:EB:C7:D0:0F:1B:B7:A0:95:11:B9:5C:DE:FE:23 Certificate issuer: /CN=A917336A/serialNumber=21D3ED21F7CDEBC7D00F1BB7A09511B95CDEFE23 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft Manifest number: C2 Signing time: Sat 23 Aug 2025 05:59:44 +0000 Manifest this update: Sat 23 Aug 2025 05:59:44 +0000 Manifest next update: Sat 30 Aug 2025 05:59:44 +0000 Files and hashes: 1: IdPtIffN68fQDxu3oJURuVze_iM.crl (hash: s7MKiK3ymWrsFnh4dLOoVBnn1Bh77Y9qcSXFFQuFzZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.crl rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917336A, serialNumber=21D3ED21F7CDEBC7D00F1BB7A09511B95CDEFE23 Validity Not Before: Aug 23 05:59:44 2025 GMT Not After : Aug 30 05:59:44 2025 GMT Subject: CN=68a958d0-9893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:82:71:67:d9:28:07:3d:53:aa:eb:18:75:0a: 7b:2a:08:07:12:e9:a8:54:43:f6:e2:95:69:1e:64: e1:ee:ae:af:87:79:19:90:5f:66:c6:f0:5d:ef:00: c5:73:11:6f:2a:6f:e2:4e:3e:24:8f:11:0d:49:1e: ee:c9:92:fe:c3:98:c8:08:50:bc:34:cd:3e:26:4f: de:97:78:e5:19:c5:fc:cc:e2:98:c1:2f:f4:cc:b5: 03:b0:2b:ee:fa:f6:16:d0:24:74:b8:34:57:84:80: 67:3c:51:b0:bf:46:84:e4:14:4a:82:12:ce:41:9b: 16:77:df:07:a1:93:90:58:5e:50:42:b3:0b:b2:00: 9d:86:b6:2c:ab:b8:9c:d3:d6:fe:12:2f:68:0f:2a: a5:93:67:5c:d1:5e:8b:37:a0:ca:b6:bc:51:db:85: f6:3d:ba:6f:3c:83:a3:a4:1e:02:c6:58:67:17:69: 19:a8:54:8c:90:57:1f:22:aa:dc:36:ea:fd:a5:44: ce:1f:76:39:06:b6:a9:44:12:56:9d:d2:84:01:2f: 77:9e:16:4e:f0:9e:b9:e7:90:44:6b:cb:cf:7d:07: 6b:1a:f0:f0:a0:11:fc:cf:ec:4a:10:f3:60:55:bb: 17:b8:db:39:1e:b8:2e:16:17:03:5d:9d:a6:be:3a: 2e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AD:A8:DA:D6:C0:E0:4E:57:FA:94:DD:AA:25:EF:71:99:CC:8B:8D X509v3 Authority Key Identifier: keyid:21:D3:ED:21:F7:CD:EB:C7:D0:0F:1B:B7:A0:95:11:B9:5C:DE:FE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:32:b2:3c:a2:4d:f6:75:8c:bf:20:14:be:b6:a7:30:66:a6: 4a:2b:37:cb:f7:a1:cb:d8:8d:02:72:f6:af:d3:58:2a:e6:bd: f8:25:0a:52:88:2f:6e:4d:8a:1a:f3:67:53:b0:40:82:a9:db: 48:64:9b:58:0c:12:2e:9a:b4:ce:33:21:d4:02:c4:09:75:f0: 17:0e:2e:d4:c9:dd:9b:5a:b5:5f:3e:de:12:2d:4d:61:7b:c5: c4:9b:7c:80:8a:1c:91:d3:24:b8:be:ae:07:88:1f:a0:45:c4: 6d:f5:90:7d:f9:00:2e:ad:43:6f:52:f0:22:5c:69:5e:01:94: 63:43:8b:eb:f9:c7:6e:47:1b:fb:62:fd:f9:70:85:4a:c2:ae: 62:c8:c7:59:4e:c3:60:a2:1c:e2:bc:7d:d8:1e:fb:96:9c:ec: 35:f7:c9:5b:32:15:02:f9:78:8b:2d:9e:ad:9f:e5:bc:b1:c2: 76:f5:94:a8:2d:17:43:02:12:31:6c:78:f8:16:17:f3:bf:6d: 72:e2:f3:49:d1:52:9c:53:1c:5b:49:70:ff:93:d2:b6:fc:cd: f1:bf:29:d1:dd:a6:d8:73:cc:51:6d:73:2f:16:ca:48:df:de: da:10:bc:dd:14:97:ef:81:2a:f2:8d:6e:21:a3:d4:26:bd:35: 6a:af:6a:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMzNkExMTAvBgNVBAUTKDIxRDNFRDIxRjdDREVCQzdEMDBGMUJCN0EwOTUxMUI5 NUNERUZFMjMwHhcNMjUwODIzMDU1OTQ0WhcNMjUwODMwMDU1OTQ0WjAYMRYwFAYD VQQDEw02OGE5NThkMC05ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroJxZ9koBz1TqusYdQp7KggHEumoVEP24pVpHmTh7q6vh3kZkF9mxvBd7wDF cxFvKm/iTj4kjxENSR7uyZL+w5jICFC8NM0+Jk/el3jlGcX8zOKYwS/0zLUDsCvu +vYW0CR0uDRXhIBnPFGwv0aE5BRKghLOQZsWd98HoZOQWF5QQrMLsgCdhrYsq7ic 09b+Ei9oDyqlk2dc0V6LN6DKtrxR24X2PbpvPIOjpB4CxlhnF2kZqFSMkFcfIqrc Nur9pUTOH3Y5BrapRBJWndKEAS93nhZO8J6555BEa8vPfQdrGvDwoBH8z+xKEPNg VbsXuNs5HrguFhcDXZ2mvjou5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGtqNrW wOBOV/qU3aol73GZzIuNMB8GA1UdIwQYMBaAFCHT7SH3zevH0A8bt6CVEblc3v4j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzM2QS84RjVBOTM1NjVB RUExMUVGOTRFOTNENkVDNEY5QUUwMi9JZFB0SWZmTjY4ZlFEeHUzb0pVUnVWemVf aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lkUHRJZmZONjhmUUR4dTNvSlVSdVZ6ZV9pTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzM2QS84RjVBOTM1NjVBRUExMUVGOTRFOTNENkVDNEY5QUUwMi9JZFB0SWZmTjY4 ZlFEeHUzb0pVUnVWemVfaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMMrI8ok32dYy/IBS+tqcwZqZKKzfL96HL2I0Ccvav01gq5r34JQpS iC9uTYoa82dTsECCqdtIZJtYDBIumrTOMyHUAsQJdfAXDi7Uyd2bWrVfPt4SLU1h e8XEm3yAihyR0yS4vq4HiB+gRcRt9ZB9+QAurUNvUvAiXGleAZRjQ4vr+cduRxv7 Yv35cIVKwq5iyMdZTsNgohzivH3YHvuWnOw198lbMhUC+XiLLZ6tn+W8scJ29ZSo LRdDAhIxbHj4Fhfzv21y4vNJ0VKcUxxbSXD/k9K2/M3xvynR3abYc8xRbXMvFspI 397aELzdFJfvgSryjW4ho9QmvTVqr2pB -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:29 2025 by rpki-client