$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: txGOp0utYS0XbrYKq0yvDoMDb0a21wPV23OjIguMxXY= Subject key identifier: CA:80:B1:AA:F7:49:DE:36:83:35:5B:25:72:49:13:63:2D:78:32:46 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 018E Signing time: Tue 09 Sep 2025 03:32:58 +0000 Manifest this update: Tue 09 Sep 2025 03:32:58 +0000 Manifest next update: Tue 16 Sep 2025 03:32:58 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: enMQQGH1QVT7RaQh+6xmx0L5Taw/ts030mA4S6C0Fh8=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: X7xyaBh0Wrmfm5LffdWxPUUrmnom17OByzAiI+OrkqU=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: MWF9yk30FJElBkURG2FIcNXpLWF91bW+ys8O1aYlGaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Sep 9 03:32:58 2025 GMT Not After : Sep 16 03:32:58 2025 GMT Subject: CN=68bf9fea-6af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8a:3d:81:84:e5:c1:8f:46:35:10:ef:80:6c: 62:06:a2:81:36:76:e0:44:fa:6f:17:69:60:d4:ee: ca:83:7f:b3:8a:62:a4:cc:4f:14:79:be:ac:b7:5f: 99:67:64:d1:1c:44:1a:25:f0:d4:35:a7:5b:98:24: 67:95:38:bb:80:9e:0d:d9:df:d3:0a:8c:c8:9f:5a: 07:b7:1f:ed:55:f4:f3:e1:a2:19:28:62:78:92:f2: 05:17:ed:91:ea:92:7b:31:11:be:c2:e6:fe:02:98: fb:43:00:90:e8:2d:ef:6d:91:39:cc:0c:61:b1:3f: 62:00:07:bf:9d:c4:01:e3:26:6e:c2:6c:bf:d1:e3: 65:71:9f:73:2b:52:91:1b:e0:24:97:1e:cd:84:81: ab:9a:7c:55:0a:bb:fc:79:b1:ce:e9:be:e0:32:e5: 53:d7:e9:9f:3c:ce:19:d7:30:1e:c3:95:73:62:cc: 12:2c:84:b0:8c:91:be:5b:cc:2c:2c:ad:e5:b9:ba: 61:e2:e5:0d:0d:b7:69:ad:ad:50:45:8d:db:eb:07: bb:9e:c4:de:2a:5c:ca:4b:9a:c7:45:bf:f3:92:34: 92:0d:f9:e2:59:35:3b:7a:ee:c8:6c:5f:2c:a5:37: f4:6e:aa:be:f4:ff:43:a9:2b:b4:59:95:ec:10:f6: b4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:80:B1:AA:F7:49:DE:36:83:35:5B:25:72:49:13:63:2D:78:32:46 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:0b:2f:fe:6b:8d:f2:42:0a:9f:cd:a1:25:25:1f:89:c5:eb: e9:43:71:87:b7:ee:4f:b9:19:c0:46:47:bc:7a:4f:e6:7c:4f: d6:1b:65:a3:0c:0d:28:22:d4:1d:27:b3:46:28:23:a1:c2:f0: 79:36:90:00:e4:90:19:0f:2c:58:5b:0c:2e:72:db:0b:17:f9: 09:2d:9b:28:5e:7a:34:f4:14:f5:0d:97:3d:13:70:ee:c0:07: 5e:88:57:7d:c8:0d:79:c5:f9:8b:32:fb:b3:9a:c1:ea:4f:1f: b7:6d:25:31:ab:6a:c1:fa:6b:3b:2e:b7:6f:74:6a:6f:3a:ce: 9e:5b:4f:b7:ea:bc:69:a3:34:bb:e3:84:9c:03:6e:44:58:28: 01:49:7d:f8:b3:52:a8:28:5d:ce:1a:ad:d4:55:0e:40:94:b2: 86:6c:01:c9:f8:7b:4e:4b:18:09:59:3e:d2:35:27:44:fb:92: 4b:a3:37:63:42:e5:56:18:bb:8b:06:ae:e9:9d:3b:bf:c0:c8: 99:94:27:a5:c7:fb:c4:2b:ba:25:8a:b3:1d:c5:ce:5a:7a:52: be:ba:e0:87:a5:6e:03:49:83:83:fe:aa:25:dc:b2:ab:f6:93: f5:1b:a1:ec:15:24:5a:56:97:62:6d:d4:02:dd:03:b4:6e:41: 4b:01:b4:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUwOTA5MDMzMjU4WhcNMjUwOTE2MDMzMjU4WjAYMRYwFAYD VQQDEw02OGJmOWZlYS02YWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Io9gYTlwY9GNRDvgGxiBqKBNnbgRPpvF2lg1O7Kg3+zimKkzE8Ueb6st1+Z Z2TRHEQaJfDUNadbmCRnlTi7gJ4N2d/TCozIn1oHtx/tVfTz4aIZKGJ4kvIFF+2R 6pJ7MRG+wub+Apj7QwCQ6C3vbZE5zAxhsT9iAAe/ncQB4yZuwmy/0eNlcZ9zK1KR G+Aklx7NhIGrmnxVCrv8ebHO6b7gMuVT1+mfPM4Z1zAew5VzYswSLISwjJG+W8ws LK3lubph4uUNDbdpra1QRY3b6we7nsTeKlzKS5rHRb/zkjSSDfniWTU7eu7IbF8s pTf0bqq+9P9DqSu0WZXsEPa0UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqAsar3 Sd42gzVbJXJJE2MteDJGMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmCy/+a43yQgqfzaElJR+JxevpQ3GHt+5PuRnARke8ek/mfE/WG2Wj DA0oItQdJ7NGKCOhwvB5NpAA5JAZDyxYWwwuctsLF/kJLZsoXno09BT1DZc9E3Du wAdeiFd9yA15xfmLMvuzmsHqTx+3bSUxq2rB+ms7LrdvdGpvOs6eW0+36rxpozS7 44ScA25EWCgBSX34s1KoKF3OGq3UVQ5AlLKGbAHJ+HtOSxgJWT7SNSdE+5JLozdj QuVWGLuLBq7pnTu/wMiZlCelx/vEK7olirMdxc5aelK+uuCHpW4DSYOD/qol3LKr 9pP1G6HsFSRaVpdibdQC3QO0bkFLAbQh -----END CERTIFICATE-----Generated at Wed Sep 10 00:18:45 2025 by rpki-client