$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft File: 8iz473at_fLPnv7b7BITSIY1b00.mft (raw, json) Hash identifier: BdsLbcpcKVz2YDoh+0Q00ptQho/Mh+cWSPWn1kWL41Q= Subject key identifier: 2D:BF:62:B9:E9:9B:A1:6A:AB:F9:75:5A:F5:2C:8B:37:AF:47:82:84 Authority key identifier: F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D Certificate issuer: /CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft Manifest number: DE Signing time: Fri 05 Sep 2025 05:55:55 +0000 Manifest this update: Fri 05 Sep 2025 05:55:55 +0000 Manifest next update: Fri 12 Sep 2025 05:55:55 +0000 Files and hashes: 1: 8iz473at_fLPnv7b7BITSIY1b00.crl (hash: QFs2Yh61T6ns7nO3IOZh51WWZR5HOBo/peauQ7GgauE=) 2: E36214403D0011EFAD623342C4F9AE02.roa (hash: AwYKGbCuVNqR5TnlD+W51Ob1Ci3CK6EmFUtU8criHKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Validity Not Before: Sep 5 05:55:55 2025 GMT Not After : Sep 12 05:55:55 2025 GMT Subject: CN=68ba7b6b-b745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:80:4a:1f:f0:d4:f7:9e:93:a6:75:fa:3f:a8: 03:f5:7f:f4:66:1e:18:c9:c3:8b:2a:55:d7:05:8f: 6b:d4:04:b4:40:8f:1d:62:4c:8d:15:c8:04:1f:e7: ed:bb:1b:dc:27:7e:46:2c:48:72:88:fb:ab:c2:78: 3f:d0:e9:67:aa:86:59:c9:0c:cb:57:42:aa:5d:c8: d2:a9:80:86:bf:9a:54:a2:e8:2c:45:30:2d:d8:52: 9f:7d:ee:bf:19:4d:a5:20:57:26:84:f2:44:58:24: 44:c0:87:e3:50:84:e9:13:c4:a1:c2:44:db:09:3b: 4d:82:2c:81:83:f0:cb:08:49:63:79:f8:05:d8:ac: c9:0a:10:a4:99:c0:e4:9e:69:6e:65:5f:0b:8d:07: 34:05:1e:84:20:b9:04:61:47:e0:37:fd:7b:f3:80: fd:a2:32:a3:ba:65:ec:c5:dc:7b:14:7d:92:a9:7b: 39:2c:a3:06:26:80:77:76:36:14:82:24:a4:77:d5: bb:40:2d:5a:19:07:cc:cc:a1:9a:95:2e:93:0a:99: a6:65:fe:c7:2c:d8:39:37:5b:0b:e3:f4:09:e8:1b: e2:db:05:c2:50:e9:00:c9:66:fb:cf:1e:de:bf:c4: 4f:90:ab:1e:78:5d:c6:a3:ba:75:4c:fb:7c:f3:11: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BF:62:B9:E9:9B:A1:6A:AB:F9:75:5A:F5:2C:8B:37:AF:47:82:84 X509v3 Authority Key Identifier: keyid:F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ad:16:02:c4:a6:d8:98:6f:9a:2a:3d:4b:11:b6:37:9c:84: 74:40:7d:13:3e:ec:28:8e:59:77:91:97:38:1c:88:cd:0c:e5: 1c:bb:51:03:29:d0:47:12:95:0c:f9:5e:46:a6:82:3c:a2:16: 1e:12:6a:64:f7:95:3b:2b:e3:92:68:e8:bb:91:0c:df:70:2a: 83:18:e8:5f:b4:6d:be:5d:d7:70:a8:80:96:2b:e0:31:17:fe: 13:27:16:bd:8f:43:38:7f:aa:9b:b9:e1:b5:fa:46:f5:f0:c1: 43:50:61:8a:1a:44:cb:0a:11:27:db:1b:07:46:96:60:e5:e7: a9:af:9b:f5:19:ca:7e:a0:bb:ac:66:53:2b:7b:5b:bb:76:8a: bc:75:cc:f8:19:f3:d2:03:c6:f2:93:cc:90:7e:fc:b3:a7:2b: 20:7b:aa:e2:f6:78:b2:fc:01:86:19:65:3c:49:35:95:c4:46: 12:b4:2a:4c:b8:5c:32:dc:2a:89:db:92:ed:f1:2a:27:e7:0d: 44:5e:86:9e:09:10:38:eb:a4:54:e4:cf:d3:a4:f8:1d:3f:2a: 2d:23:ad:56:12:57:3c:56:26:d5:e6:82:25:6b:95:80:98:68: 4a:a6:59:66:0d:3d:80:24:b0:4e:0b:fc:23:a9:16:fe:c8:02: 53:15:ce:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEYyMkNGOEVGNzZBREZERjJDRjlFRkVEQkVDMTIxMzQ4 ODYzNTZGNEQwHhcNMjUwOTA1MDU1NTU1WhcNMjUwOTEyMDU1NTU1WjAYMRYwFAYD VQQDEw02OGJhN2I2Yi1iNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IBKH/DU956TpnX6P6gD9X/0Zh4YycOLKlXXBY9r1AS0QI8dYkyNFcgEH+ft uxvcJ35GLEhyiPurwng/0OlnqoZZyQzLV0KqXcjSqYCGv5pUougsRTAt2FKffe6/ GU2lIFcmhPJEWCREwIfjUITpE8ShwkTbCTtNgiyBg/DLCEljefgF2KzJChCkmcDk nmluZV8LjQc0BR6EILkEYUfgN/1784D9ojKjumXsxdx7FH2SqXs5LKMGJoB3djYU giSkd9W7QC1aGQfMzKGalS6TCpmmZf7HLNg5N1sL4/QJ6Bvi2wXCUOkAyWb7zx7e v8RPkKseeF3Go7p1TPt88xETRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2/Yrnp m6Fqq/l1WvUsizevR4KEMB8GA1UdIwQYMBaAFPIs+O92rf3yz57+2+wSE0iGNW9N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8wOUExMTIzNDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9mTFBudjdiN0JJVFNJWTFi MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhpejQ3M2F0X2ZMUG52N2I3QklUU0lZMWIwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8wOUExMTIzNDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9m TFBudjdiN0JJVFNJWTFiMDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBprRYCxKbYmG+aKj1LEbY3nIR0QH0TPuwojll3kZc4HIjNDOUcu1ED KdBHEpUM+V5GpoI8ohYeEmpk95U7K+OSaOi7kQzfcCqDGOhftG2+XddwqICWK+Ax F/4TJxa9j0M4f6qbueG1+kb18MFDUGGKGkTLChEn2xsHRpZg5eepr5v1Gcp+oLus ZlMre1u7doq8dcz4GfPSA8byk8yQfvyzpysge6ri9niy/AGGGWU8STWVxEYStCpM uFwy3CqJ25Lt8Son5w1EXoaeCRA466RU5M/TpPgdPyotI61WElc8VibV5oIla5WA mGhKpllmDT2AJLBOC/wjqRb+yAJTFc6Y -----END CERTIFICATE-----Generated at Sat Sep 6 21:06:07 2025 by rpki-client