$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft File: aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft (raw, json) Hash identifier: HpqOcbrIdG8aVPIdaNpKpdt7gjrjz9GpIvFxSWjYaso= Subject key identifier: 8B:4D:BE:6D:BC:BD:7D:E8:45:1E:94:68:41:7B:DB:68:4F:90:0B:E6 Authority key identifier: 68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 Certificate issuer: /CN=A9114D4F/serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 06:02:25 +0000 Manifest this update: Sat 23 Aug 2025 06:02:25 +0000 Manifest next update: Sat 30 Aug 2025 06:02:25 +0000 Files and hashes: 1: aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl (hash: LYGqDKywr2BsEq5uEOk4lbu57icHRzbjlLpu2rIy59Q=) 2: 444375E25B9C11EFA181A044C4F9AE02.roa (hash: Yhh6V+gIv+Ld1DK0VM67Fxc3c5mvFHS895j33+/A8nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D4F, serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Validity Not Before: Aug 23 06:02:25 2025 GMT Not After : Aug 30 06:02:25 2025 GMT Subject: CN=68a95971-0fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:94:a6:9b:2d:5d:70:c3:91:22:2d:8e:56:c5: 89:4b:74:aa:c8:de:ba:bc:e5:4b:6c:a8:01:41:66: 53:44:6a:62:7e:7f:25:36:95:7a:59:e2:9e:59:b2: 62:ea:2c:a0:a1:03:c9:63:d4:65:0f:db:c7:ad:f8: 61:9a:b0:2d:b5:63:3e:23:c7:9d:07:1d:05:d9:19: c0:ba:5a:ad:b2:f9:23:f3:36:b5:b5:29:3d:48:c6: 38:bc:bd:8c:4a:1e:f4:03:e3:28:24:fe:3a:9e:81: 8f:8d:3c:c0:18:9f:eb:57:94:b3:3c:80:7c:91:ee: 50:c8:4c:a8:15:93:00:4d:b8:86:c0:1f:f7:78:2f: 13:b9:ea:79:80:55:06:e0:97:f6:70:11:82:98:15: 54:4c:d5:68:4f:85:93:1b:4f:54:7b:05:a8:34:b9: 79:46:7e:33:af:b7:5f:57:a9:9c:4c:72:5a:37:74: 3b:cf:24:7f:79:c3:f4:24:8c:5f:2d:ad:80:e3:30: e9:f2:0b:da:81:a6:ab:00:f8:a5:f9:91:1c:ab:db: cb:ed:df:87:45:e2:32:2c:a0:e9:da:6e:bc:e5:f9: 4d:33:ca:89:3a:9e:ad:5f:2a:15:b1:73:fa:bd:db: 21:76:32:65:8f:66:d4:45:3f:dc:a3:6f:ad:9e:1d: 39:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4D:BE:6D:BC:BD:7D:E8:45:1E:94:68:41:7B:DB:68:4F:90:0B:E6 X509v3 Authority Key Identifier: keyid:68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7c:1b:c8:e2:5a:5c:48:bf:4b:00:82:5e:46:f2:26:16:68: 44:8a:5c:36:38:50:6d:cc:0c:58:d0:b8:7d:86:6b:5a:a9:2c: d7:48:71:d7:e7:8f:52:86:d8:6f:24:e0:07:66:49:0d:6b:e7: 96:f9:7d:40:58:01:fd:68:0f:35:42:33:05:5f:a5:5b:ec:69: 64:5e:18:6d:03:c1:d7:df:4b:ae:47:cf:ae:a7:39:a1:95:10: 8a:f4:ec:6e:c2:86:2b:8a:47:e3:c7:8d:04:f8:63:49:a9:d5: 41:95:de:ee:0b:49:95:71:06:c2:61:7e:db:91:88:e2:04:96: d7:88:0a:d8:4d:90:25:b3:92:fc:91:df:35:f6:57:cd:86:0b: 54:cb:75:2c:c8:3d:80:45:dd:0e:f9:2a:12:fb:8e:bd:e5:17: 1c:e6:e4:74:1b:68:de:bf:24:1e:ef:70:23:d8:c5:ba:71:00: 4d:21:ff:fb:a9:ae:91:0d:ee:4a:9a:62:83:a8:9c:5b:a2:97: 2e:2e:ba:82:67:8f:56:ed:77:4d:9a:51:3d:e5:a0:6e:53:52: c9:bb:dd:d8:76:08:36:f6:4f:fa:1b:9e:78:62:e1:11:e6:4f: e5:e2:12:98:b0:8c:6e:a7:2a:24:e2:9e:94:27:f9:17:3f:72: a3:31:08:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRENEYxMTAvBgNVBAUTKDY4Nzc0MURFMTVDRDg4M0MxMEREQkM0RkMzQTJEQ0Y1 NDg1RTdERjMwHhcNMjUwODIzMDYwMjI1WhcNMjUwODMwMDYwMjI1WjAYMRYwFAYD VQQDEw02OGE5NTk3MS0wZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZSmmy1dcMORIi2OVsWJS3SqyN66vOVLbKgBQWZTRGpifn8lNpV6WeKeWbJi 6iygoQPJY9RlD9vHrfhhmrAttWM+I8edBx0F2RnAulqtsvkj8za1tSk9SMY4vL2M Sh70A+MoJP46noGPjTzAGJ/rV5SzPIB8ke5QyEyoFZMATbiGwB/3eC8Tuep5gFUG 4Jf2cBGCmBVUTNVoT4WTG09UewWoNLl5Rn4zr7dfV6mcTHJaN3Q7zyR/ecP0JIxf La2A4zDp8gvagaarAPil+ZEcq9vL7d+HReIyLKDp2m685flNM8qJOp6tXyoVsXP6 vdshdjJlj2bURT/co2+tnh05xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItNvm28 vX3oRR6UaEF722hPkAvmMB8GA1UdIwQYMBaAFGh3Qd4VzYg8EN28T8Oi3PVIXn3z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQ0Ri8wRTNBQ0NGQzVC OUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlEd1EzYnhQdzZMYzlVaGVm Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIZEIzaFhOaUR3UTNieFB3NkxjOVVoZWZmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQ0Ri8wRTNBQ0NGQzVCOUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlE d1EzYnhQdzZMYzlVaGVmZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAefBvI4lpcSL9LAIJeRvImFmhEilw2OFBtzAxY0Lh9hmtaqSzXSHHX 549ShthvJOAHZkkNa+eW+X1AWAH9aA81QjMFX6Vb7GlkXhhtA8HX30uuR8+upzmh lRCK9OxuwoYrikfjx40E+GNJqdVBld7uC0mVcQbCYX7bkYjiBJbXiArYTZAls5L8 kd819lfNhgtUy3UsyD2ARd0O+SoS+4695Rcc5uR0G2jevyQe73Aj2MW6cQBNIf/7 qa6RDe5KmmKDqJxbopcuLrqCZ49W7XdNmlE95aBuU1LJu93Ydgg29k/6G554YuER 5k/l4hKYsIxupyok4p6UJ/kXP3KjMQgi -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:29 2025 by rpki-client