$ rpki-client -vvf rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft File: h1thdAzTcL1LSk9q6gqGCDiNuoo.mft (raw, json) Hash identifier: m1P6iYFSdtyXX8eQ0FZImeJhXydLe17TAfqJ5JpSFJw= Subject key identifier: DA:FE:47:81:66:01:E3:E5:34:25:01:82:46:DE:B7:E1:DD:ED:31:AB Authority key identifier: 87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A Certificate issuer: /CN=A9125852/serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft Manifest number: 43 Signing time: Sat 23 Aug 2025 07:41:29 +0000 Manifest this update: Sat 23 Aug 2025 07:41:28 +0000 Manifest next update: Sat 30 Aug 2025 07:41:28 +0000 Files and hashes: 1: h1thdAzTcL1LSk9q6gqGCDiNuoo.crl (hash: LX/PLBpmzQ2s718AdqzBMOtNYED5qyfFEDktslLC6b4=) 2: 36E3783A1BA311F0985A7C2DC4F9AE02.roa (hash: sfbcZk8SAWuxMbwQPAGFt07XT5Nj4mSWLUAB6k9yQMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125852, serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Validity Not Before: Aug 23 07:41:28 2025 GMT Not After : Aug 30 07:41:28 2025 GMT Subject: CN=68a970a9-eaa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:e7:cc:b8:5d:e8:e9:c5:42:60:14:63:2c: 2e:67:fb:58:7e:5a:5d:30:ee:eb:b7:5c:11:9b:67: fc:d9:5e:42:c2:eb:eb:c7:6f:2b:14:2a:21:28:0c: 4a:16:ca:11:2e:76:f7:9d:ae:f6:ef:b5:39:75:9d: ca:bf:b4:a1:88:92:19:49:00:53:4f:12:c8:83:55: e0:bc:f1:ed:34:76:ec:83:1b:e8:cc:e7:57:df:d7: 09:cb:bc:43:32:d5:c9:1b:37:54:ae:59:0b:25:ba: 4e:f8:a4:e9:f4:2b:41:8c:72:5d:c4:4d:85:1e:56: 95:bb:a0:21:23:7e:b3:f9:d1:40:20:62:95:ea:2d: 23:1a:a8:e7:66:93:d8:51:c1:c7:20:88:20:50:af: 50:f9:c2:fc:34:b0:f7:71:26:7e:f4:33:9d:5c:0c: c7:3d:91:16:a9:9f:1a:81:9b:42:51:5a:bc:30:61: fb:c6:30:21:13:a7:a8:f2:93:2b:f0:a5:b6:f1:07: 92:54:89:ad:e3:08:42:c9:1d:14:67:a2:fe:d1:5f: e4:29:b5:e7:15:c4:8b:5b:fa:c6:f7:68:02:1d:ed: 84:be:03:3f:ae:4c:1e:9e:a3:4d:5e:81:bf:08:1a: c8:52:42:38:52:9d:d8:f6:d1:ce:53:ef:95:1d:68: 11:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FE:47:81:66:01:E3:E5:34:25:01:82:46:DE:B7:E1:DD:ED:31:AB X509v3 Authority Key Identifier: keyid:87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:60:d1:f8:fe:91:ef:44:b9:8e:f7:dc:7f:19:3a:a7:be:ef: 23:b8:de:de:40:4c:39:22:53:0f:4a:6e:28:fd:a3:b2:e6:2c: 14:d6:d9:ae:fb:06:bd:8a:a1:b5:6d:fc:f8:47:f2:79:8e:1d: 42:6c:43:10:6e:2e:b0:b7:58:0b:33:63:34:e7:e2:74:b9:61: 2d:dc:79:dc:7b:8b:ae:a4:2e:cf:14:57:59:17:bb:33:ef:89: 1b:17:5c:85:5c:6a:69:af:bb:f5:31:a2:e5:6e:7a:9a:01:b5: 2e:21:cc:b5:a6:45:c8:04:d1:a5:9f:1b:92:62:7b:e1:4c:f7: 31:95:ca:07:ec:bc:26:a9:f8:b3:26:f0:f4:07:2e:6a:f0:c5: 0b:29:f0:d5:a3:ff:dd:cf:83:bf:e9:31:c3:ba:e5:7e:f2:8f: ab:1b:99:42:f2:70:cd:ad:6b:5d:37:e6:ca:90:b5:bf:12:55: d0:7c:69:88:47:76:1d:c8:b5:37:a5:a6:43:9e:62:4c:ca:3a: f9:7b:26:73:78:69:f5:80:f5:33:85:58:88:03:fc:ac:3c:a6: 0c:4e:5e:d6:31:56:de:e9:29:87:47:58:39:a8:da:55:ac:f1: e9:f2:6d:54:4f:cb:f0:c0:77:ab:bb:ea:24:ff:f8:00:24:83: 6b:ab:4e:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTg1MjExMC8GA1UEBRMoODc1QjYxNzQwQ0QzNzBCRDRCNEE0RjZBRUEwQTg2MDgz ODhEQkE4QTAeFw0yNTA4MjMwNzQxMjhaFw0yNTA4MzAwNzQxMjhaMBgxFjAUBgNV BAMTDTY4YTk3MGE5LWVhYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV8OfMuF3o6cVCYBRjLC5n+1h+Wl0w7uu3XBGbZ/zZXkLC6+vHbysUKiEoDEoW yhEudvedrvbvtTl1ncq/tKGIkhlJAFNPEsiDVeC88e00duyDG+jM51ff1wnLvEMy 1ckbN1SuWQsluk74pOn0K0GMcl3ETYUeVpW7oCEjfrP50UAgYpXqLSMaqOdmk9hR wccgiCBQr1D5wvw0sPdxJn70M51cDMc9kRapnxqBm0JRWrwwYfvGMCETp6jykyvw pbbxB5JUia3jCELJHRRnov7RX+QptecVxItb+sb3aAId7YS+Az+uTB6eo01egb8I GshSQjhSndj20c5T75UdaBGrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2v5HgWYB 4+U0JQGCRt634d3tMaswHwYDVR0jBBgwFoAUh1thdAzTcL1LSk9q6gqGCDiNuoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODUyL0U5NTRGRDc4MUJB MjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wxTFNrOXE2Z3FHQ0RpTnVv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDF0aGRBelRjTDFMU2s5cTZncUdDRGlOdW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODUyL0U5NTRGRDc4MUJBMjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wx TFNrOXE2Z3FHQ0RpTnVvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMVg0fj+ke9EuY733H8ZOqe+7yO43t5ATDkiUw9Kbij9o7LmLBTW2a77 Br2KobVt/PhH8nmOHUJsQxBuLrC3WAszYzTn4nS5YS3cedx7i66kLs8UV1kXuzPv iRsXXIVcammvu/UxouVuepoBtS4hzLWmRcgE0aWfG5Jie+FM9zGVygfsvCap+LMm 8PQHLmrwxQsp8NWj/93Pg7/pMcO65X7yj6sbmULycM2ta1035sqQtb8SVdB8aYhH dh3ItTelpkOeYkzKOvl7JnN4afWA9TOFWIgD/Kw8pgxOXtYxVt7pKYdHWDmo2lWs 8enybVRPy/DAd6u76iT/+AAkg2urTtw= -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:36 2025 by rpki-client