$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: zrxbPzUXaTVlvCh5WyHrXeGgkZVogz5vLJmmzp8dry4= Subject key identifier: 59:DA:E1:E3:46:28:50:9B:56:D9:65:B1:DB:80:77:59:0A:BF:F0:5E Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07E0 Signing time: Tue 16 Sep 2025 21:21:48 +0000 Manifest this update: Tue 16 Sep 2025 21:21:48 +0000 Manifest next update: Tue 23 Sep 2025 21:21:48 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: bdjqcxtFH2LnwbPCzidLhVa8RbXC3n4CbFjolIEtZto=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Sep 16 21:21:48 2025 GMT Not After : Sep 23 21:21:48 2025 GMT Subject: CN=68c9d4ec-0b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:92:a1:5f:2e:65:54:e3:ec:5a:3c:c0:76:50: f3:68:55:bd:33:d2:28:27:20:89:b3:7d:5d:0a:91: 1a:d5:49:64:88:e2:a8:f5:2a:2d:dd:67:01:e6:6e: 85:ca:59:c5:2c:0f:80:4a:99:00:9e:83:d0:be:d2: 5e:b8:32:39:ea:37:6d:71:6d:6a:42:da:69:d7:56: a6:1c:e2:d4:7e:88:aa:ff:5b:5d:8c:ac:9c:42:58: 6a:38:58:29:ab:fc:74:52:47:c0:6f:e3:f8:e7:d4: a5:2a:6c:c4:41:47:4f:87:af:ac:0e:cb:1c:c9:1d: 4c:db:0a:8c:4c:aa:c1:d5:6b:8b:06:f0:ea:0f:77: ae:35:aa:17:67:bb:e2:13:cd:16:52:b1:45:7e:3b: 53:8b:71:c7:73:81:f1:80:eb:e7:43:3d:f3:3f:dd: 3e:12:ff:14:a7:8e:da:97:d3:b7:60:1c:de:9e:0c: 69:94:c6:56:66:79:93:37:2f:38:89:e2:c0:44:7b: 36:3b:d3:a2:0e:34:a4:c2:86:22:a5:4d:2d:78:28: d0:5d:07:15:89:3c:c4:e7:03:aa:5d:7d:5f:b3:24: 93:7a:d8:9f:b7:16:9e:74:36:3b:da:aa:f9:02:2e: 27:ef:fc:2d:00:d0:73:78:1d:1d:22:28:1a:57:3e: e2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DA:E1:E3:46:28:50:9B:56:D9:65:B1:DB:80:77:59:0A:BF:F0:5E X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:76:c0:b7:82:50:b6:fa:78:e3:98:0b:5a:e1:10:33:c8:f9: d1:86:34:f7:b6:5a:27:06:be:a2:92:cb:e6:cd:57:bf:35:b3: 69:21:cf:82:ff:15:d5:d9:79:13:1d:8d:f7:cf:2a:42:34:5a: cb:57:23:51:b6:91:07:16:28:9f:7a:74:10:f1:48:60:57:d0: 0d:2f:1a:16:01:b8:28:c1:15:9d:86:1b:28:95:96:0d:76:88: 63:14:a1:d2:98:a2:ab:f5:ed:ad:84:4d:30:5a:13:3d:6f:e3: e8:70:ae:66:d0:b0:f1:bb:8f:90:ac:9d:24:3e:b3:4c:75:0f: fc:e4:71:82:d0:7e:a7:18:58:2d:99:48:bf:d8:c3:cb:eb:67: 5e:a4:4e:fa:59:51:f2:49:c0:8b:d6:a5:8d:92:40:73:ca:22: 7d:70:5e:0c:d5:bb:61:b3:56:f5:53:95:4d:40:39:0b:dc:95: b5:d8:e9:9e:fa:e2:d8:47:e8:37:b1:1e:76:01:4e:e1:4e:5a: c1:e8:76:d9:20:0a:8c:02:24:56:55:f6:37:65:6f:72:6d:05: 5a:cf:c7:23:02:87:8e:23:26:35:c2:f4:8d:72:4d:db:87:9f: 3a:db:8c:0b:03:26:09:04:08:e2:3f:5d:ca:d2:7f:7c:98:d8: 13:35:e5:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwOTE2MjEyMTQ4WhcNMjUwOTIzMjEyMTQ4WjAYMRYwFAYD VQQDEw02OGM5ZDRlYy0wYjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZKhXy5lVOPsWjzAdlDzaFW9M9IoJyCJs31dCpEa1UlkiOKo9Sot3WcB5m6F ylnFLA+ASpkAnoPQvtJeuDI56jdtcW1qQtpp11amHOLUfoiq/1tdjKycQlhqOFgp q/x0UkfAb+P459SlKmzEQUdPh6+sDsscyR1M2wqMTKrB1WuLBvDqD3euNaoXZ7vi E80WUrFFfjtTi3HHc4HxgOvnQz3zP90+Ev8Up47al9O3YBzengxplMZWZnmTNy84 ieLARHs2O9OiDjSkwoYipU0teCjQXQcViTzE5wOqXX1fsySTetiftxaedDY72qr5 Ai4n7/wtANBzeB0dIigaVz7iowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFna4eNG KFCbVtllsduAd1kKv/BeMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcdsC3glC2+njjmAta4RAzyPnRhjT3tlonBr6iksvmzVe/NbNpIc+C /xXV2XkTHY33zypCNFrLVyNRtpEHFiifenQQ8UhgV9ANLxoWAbgowRWdhhsolZYN dohjFKHSmKKr9e2thE0wWhM9b+PocK5m0LDxu4+QrJ0kPrNMdQ/85HGC0H6nGFgt mUi/2MPL62depE76WVHyScCL1qWNkkBzyiJ9cF4M1bths1b1U5VNQDkL3JW12Ome +uLYR+g3sR52AU7hTlrB6HbZIAqMAiRWVfY3ZW9ybQVaz8cjAoeOIyY1wvSNck3b h58624wLAyYJBAjiP13K0n98mNgTNeU+ -----END CERTIFICATE-----Generated at Thu Sep 18 22:11:19 2025 by rpki-client