$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft File: 8iz473at_fLPnv7b7BITSIY1b00.mft (raw, json) Hash identifier: AhychaI5jiGNJEndMx9mPKqwyalahGm7UD+g6KFrnwc= Subject key identifier: C3:97:CA:D8:2D:39:A4:C8:3A:99:85:58:ED:9E:BA:AD:9C:B7:12:8B Authority key identifier: F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D Certificate issuer: /CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft Manifest number: C5 Signing time: Sat 19 Jul 2025 06:01:32 +0000 Manifest this update: Sat 19 Jul 2025 06:01:32 +0000 Manifest next update: Sat 26 Jul 2025 06:01:32 +0000 Files and hashes: 1: 8iz473at_fLPnv7b7BITSIY1b00.crl (hash: wKSRwEMRrVNYYHWVUrPf7/l5n5di+FS2nvcMskwBRXY=) 2: E36214403D0011EFAD623342C4F9AE02.roa (hash: AwYKGbCuVNqR5TnlD+W51Ob1Ci3CK6EmFUtU8criHKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Validity Not Before: Jul 19 06:01:32 2025 GMT Not After : Jul 26 06:01:32 2025 GMT Subject: CN=687b34bc-0619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:06:ae:67:4f:33:f0:f8:c4:ee:eb:05:8e: 2d:83:47:82:5e:4e:27:20:d7:59:f2:4c:1a:1d:c5: 64:79:5c:ca:07:b9:e6:97:dd:92:9a:95:3d:cd:e6: fc:5d:a8:93:35:cd:97:a2:ce:e2:b3:7c:53:5d:f7: ee:c6:e7:fc:e8:f5:ae:9d:fd:f2:75:64:f9:1a:b5: ce:f3:98:47:d9:b8:f7:dd:c1:f3:47:79:f3:0d:df: ff:20:54:d2:12:5b:c3:2a:b0:2e:dc:59:d9:f5:f0: c3:0f:92:9e:12:6c:f0:6b:2a:ec:a3:6c:33:33:c4: 2b:90:26:11:30:5e:bb:87:6d:42:0d:c3:f5:c3:f0: 0e:6d:da:69:9a:f4:1f:da:86:77:2a:1a:72:04:1b: e0:e7:0e:f5:c1:26:04:5e:ad:bb:86:2d:3d:db:ae: 34:e0:f7:9e:52:a9:70:9d:80:b8:c7:f8:54:98:c7: bd:20:44:06:d6:0d:6b:5b:a1:e9:1d:74:09:cb:ce: 40:15:8b:7b:42:37:d5:27:d3:2e:92:62:61:a8:5f: 4f:c6:0f:00:26:ff:7d:08:7c:43:fe:06:5a:94:b6: 4c:7f:b7:7b:0e:bc:67:bd:d1:df:6e:dd:a1:5a:65: 07:20:68:5f:15:8f:07:f0:32:fa:57:27:19:f3:6f: 2f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:97:CA:D8:2D:39:A4:C8:3A:99:85:58:ED:9E:BA:AD:9C:B7:12:8B X509v3 Authority Key Identifier: keyid:F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6a:e4:a5:26:01:74:12:f5:1e:4b:dc:b0:2d:02:84:b3:11: 49:02:35:40:8c:d5:c0:5e:00:7e:f7:ab:95:0c:de:e9:ac:11: e7:b0:9d:c1:ce:47:aa:b0:4c:d1:84:b3:57:55:67:c8:5e:67: 95:b8:92:14:e3:0e:8c:12:93:ed:d7:00:c8:05:b1:81:72:c7: fe:10:c5:df:ea:e5:de:c8:10:0c:c7:89:b4:2d:e4:c6:2d:76: 9c:82:d3:81:c1:e0:43:a4:14:27:05:0e:c7:77:3b:25:06:ae: 84:12:1a:d7:9b:c6:b1:47:eb:6e:c0:5b:a4:93:7e:a3:3b:6f: b0:c7:d4:94:a5:28:b4:21:b7:9b:66:b9:93:c7:b9:5c:3c:f4: 59:8d:8c:2b:f3:56:c4:d9:af:80:3c:d9:07:2b:4a:95:94:86: 86:a1:9e:0b:01:06:cc:2a:89:0a:0c:8e:15:72:55:17:e4:04: ae:c4:e3:14:31:62:d5:34:c1:25:d8:45:35:06:b4:85:c5:cc: 40:91:e6:78:9d:10:c4:bf:30:e9:ec:5e:7d:f7:3d:5c:07:0c: f1:27:42:7d:e9:e7:68:64:38:51:6b:85:fb:53:47:a3:4c:2f: 7a:cc:e1:f2:8f:a4:9b:f7:e6:10:72:84:da:e5:c1:db:ff:bb: f6:9d:2f:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEYyMkNGOEVGNzZBREZERjJDRjlFRkVEQkVDMTIxMzQ4 ODYzNTZGNEQwHhcNMjUwNzE5MDYwMTMyWhcNMjUwNzI2MDYwMTMyWjAYMRYwFAYD VQQDEw02ODdiMzRiYy0wNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLEGrmdPM/D4xO7rBY4tg0eCXk4nINdZ8kwaHcVkeVzKB7nml92SmpU9zeb8 XaiTNc2Xos7is3xTXffuxuf86PWunf3ydWT5GrXO85hH2bj33cHzR3nzDd//IFTS ElvDKrAu3FnZ9fDDD5KeEmzwayrso2wzM8QrkCYRMF67h21CDcP1w/AObdppmvQf 2oZ3KhpyBBvg5w71wSYEXq27hi0926404PeeUqlwnYC4x/hUmMe9IEQG1g1rW6Hp HXQJy85AFYt7QjfVJ9MukmJhqF9Pxg8AJv99CHxD/gZalLZMf7d7DrxnvdHfbt2h WmUHIGhfFY8H8DL6VycZ828vswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOXytgt OaTIOpmFWO2euq2ctxKLMB8GA1UdIwQYMBaAFPIs+O92rf3yz57+2+wSE0iGNW9N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8wOUExMTIzNDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9mTFBudjdiN0JJVFNJWTFi MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhpejQ3M2F0X2ZMUG52N2I3QklUU0lZMWIwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8wOUExMTIzNDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9m TFBudjdiN0JJVFNJWTFiMDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsauSlJgF0EvUeS9ywLQKEsxFJAjVAjNXAXgB+96uVDN7prBHnsJ3B zkeqsEzRhLNXVWfIXmeVuJIU4w6MEpPt1wDIBbGBcsf+EMXf6uXeyBAMx4m0LeTG LXacgtOBweBDpBQnBQ7HdzslBq6EEhrXm8axR+tuwFukk36jO2+wx9SUpSi0Ibeb ZrmTx7lcPPRZjYwr81bE2a+APNkHK0qVlIaGoZ4LAQbMKokKDI4VclUX5ASuxOMU MWLVNMEl2EU1BrSFxcxAkeZ4nRDEvzDp7F599z1cBwzxJ0J96edoZDhRa4X7U0ej TC96zOHyj6Sb9+YQcoTa5cHb/7v2nS+n -----END CERTIFICATE-----Generated at Sun Jul 20 20:43:02 2025 by rpki-client