$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: zjmxYC16Dsz2/yX3sRbS+LY3GSEOQ+AgXMseffnfBjc= Subject key identifier: 25:F7:0F:3E:4A:D8:66:8C:99:A7:39:48:D0:85:76:B7:53:F9:5B:09 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 34E9 Signing time: Tue 09 Sep 2025 10:51:04 +0000 Manifest this update: Tue 09 Sep 2025 10:51:03 +0000 Manifest next update: Tue 16 Sep 2025 10:51:03 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: TWHaLOW689VCHkd7GfN1j/+vpIAAQVGhE4E7o3u4Pwo=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: Wfv4WghdDD3gfx6YHolBV1lnAVZwidYAdl0L3KqHqXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 10:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13577 (0x3509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Sep 9 10:51:03 2025 GMT Not After : Sep 16 10:51:03 2025 GMT Subject: CN=68c00697-02fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:06:b0:c2:81:2a:82:ad:ad:5d:c7:a0:94:6f: 6d:dd:5c:9d:f1:37:8b:1c:d2:c3:21:d3:52:06:f3: c4:c7:b7:5f:a1:f7:46:f4:b6:8b:62:71:a4:46:35: dc:81:64:27:da:9c:46:78:e1:3a:21:90:b9:72:64: c0:e2:75:41:25:3e:75:db:1c:a8:65:21:51:9d:67: 83:8d:96:95:3b:7c:9c:ef:c6:96:8a:e8:5b:32:d1: 9b:52:43:5c:6e:bb:36:32:05:ca:7c:5d:a7:85:cb: fb:da:84:df:53:c0:7b:14:0c:5a:74:44:a3:15:40: 17:a4:7b:ec:e5:8e:6c:50:bc:5b:ba:ea:5e:fb:35: f5:22:8c:88:82:e4:27:b4:55:8e:13:7c:2d:1c:65: 58:fd:40:c8:dd:a2:4f:86:dd:df:b5:da:2f:78:78: a9:5d:9a:38:0a:2a:4e:cc:9d:23:4e:7b:5c:0b:0d: 89:61:d6:13:57:3d:ae:19:41:71:88:9d:b3:73:b6: ec:21:7a:e8:f0:8f:80:20:0a:59:e1:bc:a3:34:45: f1:f7:f8:e9:19:6b:78:c1:fa:2a:14:83:5c:75:09: dc:ab:7d:f7:b5:f9:4d:dd:15:68:22:4a:e6:83:8e: 77:f0:f6:8c:57:6b:f2:8b:0a:a2:b9:63:e0:74:a9: dd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F7:0F:3E:4A:D8:66:8C:99:A7:39:48:D0:85:76:B7:53:F9:5B:09 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:af:82:fd:8e:a3:aa:66:9d:1b:92:f3:04:68:91:a2:2d:86: cd:e6:c8:7c:b1:47:2b:89:1b:d0:0e:40:0e:c6:3e:89:65:59: 8d:65:52:f9:da:56:d0:48:14:d5:a0:1a:4d:6d:a4:90:2e:f7: ba:5f:d5:bd:be:b4:53:cf:3f:43:6d:19:fe:d9:a6:89:87:b3: 42:c3:fc:1d:cf:25:8c:5b:27:00:14:f0:f2:9f:10:21:71:a8: ef:33:af:89:26:33:d8:8f:c5:c8:12:c1:f3:99:09:04:39:89: 00:cd:e2:aa:dd:7b:2f:82:5c:d5:87:37:c3:62:93:fc:96:34: b8:bb:4f:1a:ce:e6:ab:48:b1:2b:3a:9a:f3:bc:37:2f:11:2b: 4d:40:dc:af:d6:dc:a2:5f:0b:58:91:e4:e5:6b:15:11:5e:fe: 9a:e4:65:d0:f9:f5:7f:7f:d5:ea:d9:07:26:6e:36:2b:e0:a1: 35:90:2a:fb:d2:d7:ee:51:d5:bb:ae:27:cc:57:94:b7:40:af: e8:3a:a7:96:a6:8a:86:5c:8b:23:e6:bc:c1:24:14:26:8f:ff: 42:e2:d7:07:ea:4f:c4:fa:b4:fe:fa:4b:03:08:32:08:4f:0b: 58:9d:25:37:d3:c9:ee:78:a9:1f:17:ea:a6:71:4f:9d:da:3d: 29:20:01:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwOTA5MTA1MTAzWhcNMjUwOTE2MTA1MTAzWjAYMRYwFAYD VQQDEw02OGMwMDY5Ny0wMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQawwoEqgq2tXceglG9t3Vyd8TeLHNLDIdNSBvPEx7dfofdG9LaLYnGkRjXc gWQn2pxGeOE6IZC5cmTA4nVBJT512xyoZSFRnWeDjZaVO3yc78aWiuhbMtGbUkNc brs2MgXKfF2nhcv72oTfU8B7FAxadESjFUAXpHvs5Y5sULxbuupe+zX1IoyIguQn tFWOE3wtHGVY/UDI3aJPht3ftdoveHipXZo4CipOzJ0jTntcCw2JYdYTVz2uGUFx iJ2zc7bsIXro8I+AIApZ4byjNEXx9/jpGWt4wfoqFINcdQncq333tflN3RVoIkrm g4538PaMV2vyiwqiuWPgdKndBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCX3Dz5K 2GaMmac5SNCFdrdT+VsJMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPr4L9jqOqZp0bkvMEaJGiLYbN5sh8sUcriRvQDkAOxj6JZVmNZVL5 2lbQSBTVoBpNbaSQLve6X9W9vrRTzz9DbRn+2aaJh7NCw/wdzyWMWycAFPDynxAh cajvM6+JJjPYj8XIEsHzmQkEOYkAzeKq3XsvglzVhzfDYpP8ljS4u08azuarSLEr OprzvDcvEStNQNyv1tyiXwtYkeTlaxURXv6a5GXQ+fV/f9Xq2QcmbjYr4KE1kCr7 0tfuUdW7rifMV5S3QK/oOqeWpoqGXIsj5rzBJBQmj/9C4tcH6k/E+rT++ksDCDII TwtYnSU308nueKkfF+qmcU+d2j0pIAFb -----END CERTIFICATE-----Generated at Tue Sep 9 13:31:27 2025 by rpki-client