$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json) Hash identifier: P/xiN5osS1dQWMAF+cWpQ2TXsf7LApTs8/rgf73kKvc= Subject key identifier: 7E:B4:24:76:2D:0D:63:DB:84:9B:98:0D:86:AD:95:C1:07:3A:84:96 Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Certificate serial: 04A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft Manifest number: 04A0 Signing time: Tue 09 Sep 2025 00:01:48 +0000 Manifest this update: Tue 09 Sep 2025 00:01:47 +0000 Manifest next update: Tue 16 Sep 2025 00:01:47 +0000 Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: BL4MVgxzBn8nON5ENTKVCN7gq1Ikeuw05mMDVo3rY3k=) 2: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: FXBB9DdsLSCSLqmcy5GfEeeUEH9NAw4i9aMiOHO8iOI=) 3: E097013E910C11EFB994E187C4F9AE02.roa (hash: vrgdHN+EQa1Kq7q/Jj9Y5Q0FA9lEQE1lA2kxOo5yBEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919710C, serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Validity Not Before: Sep 9 00:01:47 2025 GMT Not After : Sep 16 00:01:47 2025 GMT Subject: CN=68bf6e6c-b629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c1:09:f4:57:fe:f6:de:c5:76:78:ae:29:2b: aa:51:26:f7:76:9e:a4:fa:19:71:8a:4c:7b:47:5e: 43:7b:c6:3c:68:23:c3:80:82:bb:6c:e5:4e:bc:c1: 7a:4d:71:67:bc:64:2c:f9:80:6d:c3:e8:58:3a:63: 86:92:94:bf:cd:0b:e3:f8:63:e5:e6:b9:bf:69:59: 16:75:22:84:ef:aa:bd:ac:aa:64:0a:31:bc:77:98: d1:ab:ca:12:c9:6e:ff:b5:bb:cf:fb:ce:02:9d:9c: d6:96:4d:c0:84:20:31:02:5c:38:85:68:36:b6:04: 8c:4d:72:23:86:b7:21:fe:64:3a:d0:fe:8e:21:de: a2:fc:58:ad:73:e0:21:78:00:bf:36:5d:05:4c:f2: d8:45:bf:b1:cb:cd:a0:cc:de:66:ba:ad:26:2f:87: 66:99:63:ba:52:4d:7e:e7:fd:8f:52:cc:a5:e8:a0: 55:d1:13:0c:95:83:c7:46:12:04:a2:a1:ac:7e:03: e6:e5:85:9d:b9:25:ef:04:17:de:04:12:0a:01:70: c9:b3:f9:43:94:4d:a6:ad:df:8c:65:a8:2f:2d:d0: 37:4e:fb:fe:5f:35:f3:45:23:17:3a:88:3f:41:c5: e4:41:e6:05:5d:55:16:80:9b:22:55:19:9e:86:e3: 46:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B4:24:76:2D:0D:63:DB:84:9B:98:0D:86:AD:95:C1:07:3A:84:96 X509v3 Authority Key Identifier: keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:cd:3d:97:51:2a:83:10:c1:a1:9e:d8:e8:d2:92:17:e3:ed: 82:f2:15:a5:fe:c7:44:d3:1e:b1:61:95:26:44:51:df:39:d2: e5:1a:72:21:86:dc:4c:1f:2a:35:14:79:db:d5:91:ab:ed:4d: b0:e4:80:8b:38:32:28:53:76:00:ee:36:d2:1e:a2:6d:38:68: a4:de:53:02:f1:85:a3:a9:5e:b4:94:87:7a:36:10:ef:3a:da: 50:db:7b:80:a4:10:26:14:21:42:8e:d9:57:8d:ba:e1:18:b0: 44:69:cb:71:61:11:7b:fd:98:10:8c:6b:13:41:61:3d:d0:cd: d5:b8:ce:94:e5:49:93:0a:b8:fd:5f:18:47:fb:c2:42:dd:ab: 2d:e0:7b:37:21:47:aa:27:52:29:68:37:68:cc:de:e0:e4:3b: 77:78:d4:17:cb:6b:ea:c3:b7:f4:5e:b2:5e:2f:cc:f6:12:39: 54:77:21:19:b9:bb:4a:9b:04:da:97:9f:32:07:56:4c:cc:95: a7:c2:07:16:aa:dc:b8:d2:cd:66:df:4b:9a:10:de:56:07:f6: 43:b4:93:04:85:21:1b:4d:eb:f1:7a:db:e5:a0:3b:3b:3b:02: f2:0a:02:a3:60:f4:fb:ca:c8:17:16:b6:97:37:0a:ff:65:42: e7:42:a1:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy RUYwMzlDRTgwHhcNMjUwOTA5MDAwMTQ3WhcNMjUwOTE2MDAwMTQ3WjAYMRYwFAYD VQQDEw02OGJmNmU2Yy1iNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cEJ9Ff+9t7FdniuKSuqUSb3dp6k+hlxikx7R15De8Y8aCPDgIK7bOVOvMF6 TXFnvGQs+YBtw+hYOmOGkpS/zQvj+GPl5rm/aVkWdSKE76q9rKpkCjG8d5jRq8oS yW7/tbvP+84CnZzWlk3AhCAxAlw4hWg2tgSMTXIjhrch/mQ60P6OId6i/Fitc+Ah eAC/Nl0FTPLYRb+xy82gzN5muq0mL4dmmWO6Uk1+5/2PUsyl6KBV0RMMlYPHRhIE oqGsfgPm5YWduSXvBBfeBBIKAXDJs/lDlE2mrd+MZagvLdA3Tvv+XzXzRSMXOog/ QcXkQeYFXVUWgJsiVRmehuNGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH60JHYt DWPbhJuYDYatlcEHOoSWMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE VlNtSFJqNWtJcGN1OERuT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIzT2XUSqDEMGhntjo0pIX4+2C8hWl/sdE0x6xYZUmRFHfOdLlGnIh htxMHyo1FHnb1ZGr7U2w5ICLODIoU3YA7jbSHqJtOGik3lMC8YWjqV60lId6NhDv OtpQ23uApBAmFCFCjtlXjbrhGLBEactxYRF7/ZgQjGsTQWE90M3VuM6U5UmTCrj9 XxhH+8JC3ast4Hs3IUeqJ1IpaDdozN7g5Dt3eNQXy2vqw7f0XrJeL8z2EjlUdyEZ ubtKmwTal58yB1ZMzJWnwgcWqty40s1m30uaEN5WB/ZDtJMEhSEbTevxetvloDs7 OwLyCgKjYPT7ysgXFraXNwr/ZULnQqGD -----END CERTIFICATE-----Generated at Tue Sep 9 08:16:56 2025 by rpki-client