$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: XhaDYjzfuNBWQNyBYzX0coVFl4G4DvFC1legXtZk9kA= Subject key identifier: 87:4F:59:4E:52:15:5D:75:88:31:99:B1:4F:C8:8D:1F:42:4C:5B:00 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 020F Signing time: Sat 23 Aug 2025 02:22:55 +0000 Manifest this update: Sat 23 Aug 2025 02:22:54 +0000 Manifest next update: Sat 30 Aug 2025 02:22:54 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: FjC049swTkTFT4qhxRbCq9fjOqSvPXfihn7C3ljOkYU=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: J1WS3Wr+Cq+Ya2W/A8acH4GDeK/tNPuqzs+ITQkHcD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Aug 23 02:22:54 2025 GMT Not After : Aug 30 02:22:54 2025 GMT Subject: CN=68a925ff-4bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:aa:4a:f9:3f:40:3d:e5:ef:cc:b7:d2:82:5c: b4:39:8f:a9:f2:bb:81:ab:f4:c9:c3:67:fa:ff:cb: b2:b9:3e:21:fe:8b:32:8c:a7:4e:fe:f5:1e:39:63: 42:bd:60:2a:47:7f:3a:f0:ba:7b:c7:ed:f4:0a:68: f7:8a:35:d0:e6:45:dd:a6:e7:1e:2c:28:2a:15:6b: c9:8a:f6:17:4e:9c:f7:0a:75:5d:f2:b0:08:a1:e6: f9:c3:bb:30:60:27:0e:73:27:8a:d8:fe:e3:8e:1c: d0:fd:8e:e3:f1:2b:85:ff:4c:99:58:6d:71:44:ab: a1:37:e7:1b:1e:53:ff:d6:3e:1f:d6:b3:48:05:12: f7:70:4c:ef:74:a3:33:bf:4f:3d:68:db:ef:13:5b: 09:fd:27:90:7c:4c:0c:e0:44:08:e8:2f:57:e7:dd: 8b:f5:e9:6c:dd:38:80:3d:a6:59:18:c0:5b:f6:3c: 5a:2b:f7:65:0b:3e:32:7c:2b:47:44:d7:4d:87:ca: 0d:9a:ed:6e:7a:99:b8:9f:3c:d2:a8:19:f8:0a:ea: bf:88:da:a4:17:48:be:48:10:f6:8b:12:f3:f1:10: 66:f4:da:7c:2e:0b:3c:5f:13:d9:f4:7d:62:7d:ea: fe:2b:f9:55:14:1d:f5:1c:e9:9f:9e:4a:7c:e6:cd: 2b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4F:59:4E:52:15:5D:75:88:31:99:B1:4F:C8:8D:1F:42:4C:5B:00 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:84:29:c9:ed:05:8a:a8:d4:4c:7e:a6:26:8b:6d:bc:13:91: 82:84:0b:d6:ca:80:19:ef:9d:54:a3:1a:e3:82:64:d3:ae:5e: bd:26:83:3d:50:1e:fe:7e:63:09:2b:92:d1:0b:6e:5d:f8:92: 86:48:d6:5e:af:5e:46:69:b1:65:18:0b:7d:93:c6:cd:9b:69: 1f:9d:a4:ba:6f:c2:de:2e:cb:8f:da:96:71:59:2c:58:dc:9c: 84:c6:25:29:fa:2e:93:8b:57:82:53:ef:16:ee:3d:df:1b:af: 60:cb:3d:ae:8a:c8:6c:67:49:9d:3b:6f:a9:61:9f:92:a9:6e: 1f:28:50:c2:e1:15:05:c1:58:14:55:5f:d4:09:80:73:a5:d2: 12:fb:17:08:01:6f:f8:38:3b:59:3c:bd:ec:11:08:c1:c1:72: e9:4e:64:d5:79:d3:06:40:5a:83:32:14:ac:d0:d1:0b:83:7e: d0:6e:d2:11:5f:07:14:8e:a7:be:82:37:f6:7b:ae:9d:4b:df: 3e:ed:6b:f1:97:c0:72:08:76:40:0a:b9:f7:41:a3:ce:86:ab: b0:80:af:ba:58:3d:75:fa:47:4b:59:17:20:e1:46:58:b1:a7: 66:99:64:c2:17:e3:6b:aa:d2:09:46:8a:69:c3:d7:ff:59:73: 39:56:c3:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUwODIzMDIyMjU0WhcNMjUwODMwMDIyMjU0WjAYMRYwFAYD VQQDEw02OGE5MjVmZi00YmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6pK+T9APeXvzLfSgly0OY+p8ruBq/TJw2f6/8uyuT4h/osyjKdO/vUeOWNC vWAqR3868Lp7x+30Cmj3ijXQ5kXdpuceLCgqFWvJivYXTpz3CnVd8rAIoeb5w7sw YCcOcyeK2P7jjhzQ/Y7j8SuF/0yZWG1xRKuhN+cbHlP/1j4f1rNIBRL3cEzvdKMz v089aNvvE1sJ/SeQfEwM4EQI6C9X592L9els3TiAPaZZGMBb9jxaK/dlCz4yfCtH RNdNh8oNmu1uepm4nzzSqBn4Cuq/iNqkF0i+SBD2ixLz8RBm9Np8Lgs8XxPZ9H1i fer+K/lVFB31HOmfnkp85s0r9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdPWU5S FV11iDGZsU/IjR9CTFsAMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBahCnJ7QWKqNRMfqYmi228E5GChAvWyoAZ751UoxrjgmTTrl69JoM9 UB7+fmMJK5LRC25d+JKGSNZer15GabFlGAt9k8bNm2kfnaS6b8LeLsuP2pZxWSxY 3JyExiUp+i6Ti1eCU+8W7j3fG69gyz2uishsZ0mdO2+pYZ+SqW4fKFDC4RUFwVgU VV/UCYBzpdIS+xcIAW/4ODtZPL3sEQjBwXLpTmTVedMGQFqDMhSs0NELg37QbtIR XwcUjqe+gjf2e66dS98+7Wvxl8ByCHZACrn3QaPOhquwgK+6WD11+kdLWRcg4UZY sadmmWTCF+NrqtIJRoppw9f/WXM5VsN5 -----END CERTIFICATE-----Generated at Sat Aug 23 18:36:52 2025 by rpki-client