$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: SqZePrja/B7BWPFJeALtIa9JtEXasbHGzun9xguM80E= Subject key identifier: DA:CE:AD:09:E9:FD:08:76:99:93:1E:D1:3D:DF:B5:BD:40:F3:85:65 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03F0 Signing time: Sun 07 Sep 2025 00:55:26 +0000 Manifest this update: Sun 07 Sep 2025 00:55:26 +0000 Manifest next update: Sun 14 Sep 2025 00:55:26 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: iZdyfqovC7V5BBKBUX1G0ufWigfAwZNbYuCCs4y3n3M=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Sep 7 00:55:26 2025 GMT Not After : Sep 14 00:55:26 2025 GMT Subject: CN=68bcd7fe-eb29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:72:ac:3e:61:12:b5:df:83:e6:68:e0:7d:7e: 99:b0:cc:cf:e0:8a:8f:3f:a0:1b:81:37:d4:06:2a: e3:b9:10:08:58:52:80:4f:3c:d8:48:c8:2d:b2:34: ad:8e:12:f9:d8:c9:92:ab:a9:43:82:4e:84:75:ee: 9b:f2:a2:5b:09:4e:61:58:e4:a9:ce:94:46:f8:03: b1:e5:ac:53:8c:40:ac:51:20:95:f3:6e:17:9c:09: 07:84:e7:7b:d7:6b:55:ae:43:31:68:c9:54:90:69: b7:a1:fd:3d:20:b7:d7:8f:52:66:68:aa:be:c9:8c: 20:dd:c1:a2:12:1d:27:1f:82:1c:db:31:c2:22:24: 62:16:6a:25:b8:74:72:93:3c:74:74:1d:87:e4:3c: 53:cc:82:52:50:11:2f:dc:20:92:5c:ee:fc:44:fc: 8c:0a:37:e3:e5:0a:61:6b:fc:1d:30:2c:47:d8:6d: 38:f7:10:14:bc:9b:00:1c:a2:46:2e:ab:4d:cb:2f: 18:7f:39:ae:e8:0e:70:bd:c5:f1:8b:65:c9:ae:4c: ee:f2:38:4e:a0:ab:44:db:0e:04:34:58:8e:37:fd: 83:ab:4e:96:a3:60:e7:03:32:10:3b:b7:1e:5b:f3: 00:fd:b9:c0:9a:68:44:6d:6b:1f:d9:fb:0a:a4:ac: a4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CE:AD:09:E9:FD:08:76:99:93:1E:D1:3D:DF:B5:BD:40:F3:85:65 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:b8:4c:9a:a8:2c:7f:62:61:ad:9b:6e:e0:01:94:a6:b9:5c: 44:75:8e:f2:4c:9a:21:fd:5f:0d:e2:8b:13:e5:20:04:d8:73: d7:03:7e:c4:99:f0:08:33:ad:21:7e:dd:81:5c:38:d5:23:fb: a4:f1:c1:b2:c6:c8:53:13:8f:34:17:24:71:90:1c:1d:33:cd: f8:56:62:8b:bf:d4:b9:10:17:fa:95:e4:f8:63:30:3b:12:ac: 96:38:0d:8b:f2:81:ae:60:a5:f9:59:58:18:e0:57:88:eb:fc: f4:dd:02:4e:9e:99:8f:e1:cd:61:79:96:5a:38:15:88:75:f9: e0:ab:d5:47:a5:ca:42:35:57:8a:61:e9:bf:9c:ed:af:b8:b3: df:86:a3:45:6c:05:fd:c8:fe:86:1f:74:29:a0:b0:fa:cb:ff: 6f:95:a0:74:33:f7:b9:c5:9e:7b:2c:07:06:db:9c:bf:e7:3f: ec:95:5d:fe:82:10:bc:cb:16:81:28:71:28:ae:25:da:32:68: 85:e1:40:e8:53:cc:3c:70:d5:a5:51:a8:e9:3c:80:88:04:ef: 6e:d4:7a:85:4d:9f:b2:16:be:28:af:f4:d0:d3:52:ee:8a:5b: e9:e2:e7:f7:47:4a:fa:7d:1d:86:dd:22:ab:24:36:bf:90:46: 90:00:15:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwOTA3MDA1NTI2WhcNMjUwOTE0MDA1NTI2WjAYMRYwFAYD VQQDEw02OGJjZDdmZS1lYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HKsPmEStd+D5mjgfX6ZsMzP4IqPP6AbgTfUBirjuRAIWFKATzzYSMgtsjSt jhL52MmSq6lDgk6Ede6b8qJbCU5hWOSpzpRG+AOx5axTjECsUSCV824XnAkHhOd7 12tVrkMxaMlUkGm3of09ILfXj1JmaKq+yYwg3cGiEh0nH4Ic2zHCIiRiFmoluHRy kzx0dB2H5DxTzIJSUBEv3CCSXO78RPyMCjfj5Qpha/wdMCxH2G049xAUvJsAHKJG LqtNyy8Yfzmu6A5wvcXxi2XJrkzu8jhOoKtE2w4ENFiON/2Dq06Wo2DnAzIQO7ce W/MA/bnAmmhEbWsf2fsKpKykKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrOrQnp /Qh2mZMe0T3ftb1A84VlMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGuEyaqCx/YmGtm27gAZSmuVxEdY7yTJoh/V8N4osT5SAE2HPXA37E mfAIM60hft2BXDjVI/uk8cGyxshTE480FyRxkBwdM834VmKLv9S5EBf6leT4YzA7 EqyWOA2L8oGuYKX5WVgY4FeI6/z03QJOnpmP4c1heZZaOBWIdfngq9VHpcpCNVeK Yem/nO2vuLPfhqNFbAX9yP6GH3QpoLD6y/9vlaB0M/e5xZ57LAcG25y/5z/slV3+ ghC8yxaBKHEoriXaMmiF4UDoU8w8cNWlUajpPICIBO9u1HqFTZ+yFr4or/TQ01Lu ilvp4uf3R0r6fR2G3SKrJDa/kEaQABU5 -----END CERTIFICATE-----Generated at Mon Sep 8 08:46:26 2025 by rpki-client