$ rpki-client -vvf rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft File: h1thdAzTcL1LSk9q6gqGCDiNuoo.mft (raw, json) Hash identifier: ydl+LRpgdQT8cgaz7t+8h4gTLOmKp/0NqTscua+n9is= Subject key identifier: 69:47:C7:7C:36:20:FF:80:4A:6B:86:66:41:96:20:A7:84:85:7E:31 Authority key identifier: 87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A Certificate issuer: /CN=A9125852/serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft Manifest number: 2A Signing time: Sat 05 Jul 2025 08:05:40 +0000 Manifest this update: Sat 05 Jul 2025 08:05:40 +0000 Manifest next update: Sat 12 Jul 2025 08:05:40 +0000 Files and hashes: 1: h1thdAzTcL1LSk9q6gqGCDiNuoo.crl (hash: Zri5aXPe3Dxe9ZYVKiLSeNERY21bh50yn/tgOR//myw=) 2: 36E3783A1BA311F0985A7C2DC4F9AE02.roa (hash: sfbcZk8SAWuxMbwQPAGFt07XT5Nj4mSWLUAB6k9yQMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125852, serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Validity Not Before: Jul 5 08:05:40 2025 GMT Not After : Jul 12 08:05:40 2025 GMT Subject: CN=6868dcd4-fd9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:13:3e:ac:2e:09:1a:a0:1f:9c:3f:46:fb:22: 03:e1:63:98:f9:ff:2e:9e:52:84:5b:62:a0:23:2d: 82:2c:7a:e7:9e:6b:83:9f:70:24:5d:30:e7:d6:6a: 60:c9:97:67:49:92:89:9f:7a:1c:e2:7c:ec:03:bb: bc:71:4c:16:9b:82:4f:70:2e:09:64:de:20:17:2e: 3e:8d:20:34:53:4a:a0:34:8c:b6:bc:2d:66:00:ec: 1d:8c:82:27:a1:4d:89:a5:b8:3d:f1:bd:cd:be:1e: 2b:00:e4:4d:1a:59:8d:bc:79:0e:65:b7:4b:f3:c2: 98:cf:dd:30:77:5d:0d:38:d3:f2:0a:91:53:a1:fc: 99:d8:c3:4f:d7:4b:41:37:6e:c8:fa:f1:98:8d:73: da:5b:73:d6:5d:05:b6:0b:2b:de:f1:e5:1f:9e:00: 13:29:51:61:bb:03:e7:8a:30:70:78:12:5f:79:06: 79:52:33:2d:dc:c4:28:46:0a:bf:d1:5e:d8:83:a9: 17:ee:1b:53:06:47:c2:58:80:c2:04:27:6a:81:d7: 31:00:da:76:9c:38:ef:cc:fd:66:61:bc:86:9a:46: 25:39:a9:48:ae:a8:13:ee:ce:3e:56:9b:13:c5:3e: bc:87:04:56:e1:a5:43:3a:f6:e0:e9:7a:e1:c7:5d: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:47:C7:7C:36:20:FF:80:4A:6B:86:66:41:96:20:A7:84:85:7E:31 X509v3 Authority Key Identifier: keyid:87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:bc:d3:a5:1d:f1:a2:86:65:08:4d:f8:22:ff:5e:4b:3b:20: a0:ff:06:5f:59:41:3e:0a:be:c2:ca:09:08:28:8c:88:eb:18: e6:30:7e:8f:fc:36:6b:08:bb:7b:79:c8:c1:fb:26:fd:29:90: d8:2f:18:99:23:a8:c5:82:4c:2e:d6:69:8d:d7:14:c8:b8:be: ae:5a:c2:99:05:de:bf:0b:b4:84:54:d5:83:e9:6b:bd:ca:c7: 36:32:ae:f8:7a:61:16:f2:c3:d0:ca:d9:6f:7a:9d:c9:8c:ee: 1c:1b:4b:71:c1:65:ed:bc:b1:67:74:93:5d:9c:e2:ad:15:ad: 14:d3:88:35:28:1c:78:a4:f5:73:0a:75:e7:8e:c7:29:dc:46: 2a:ef:6b:1e:ac:77:2e:73:33:0e:ee:30:7d:7a:ee:e7:0b:4a: 82:59:4c:c3:6e:0b:a9:51:ee:37:32:49:11:e8:07:0c:fb:6c: 09:a2:9c:d7:98:95:d6:75:ec:20:97:1a:48:41:f3:92:ab:24: 29:53:29:98:a9:77:0e:36:74:32:c8:34:da:10:27:dd:d0:eb: dc:db:90:bc:8a:b2:49:c4:f0:dc:7d:c2:d3:a2:d6:6e:80:25: 8b:15:fd:2c:0b:a9:0c:4d:f1:a6:6b:55:06:66:a0:32:3a:70: 39:24:58:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTg1MjExMC8GA1UEBRMoODc1QjYxNzQwQ0QzNzBCRDRCNEE0RjZBRUEwQTg2MDgz ODhEQkE4QTAeFw0yNTA3MDUwODA1NDBaFw0yNTA3MTIwODA1NDBaMBgxFjAUBgNV BAMTDTY4NjhkY2Q0LWZkOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpEz6sLgkaoB+cP0b7IgPhY5j5/y6eUoRbYqAjLYIseueea4OfcCRdMOfWamDJ l2dJkomfehzifOwDu7xxTBabgk9wLglk3iAXLj6NIDRTSqA0jLa8LWYA7B2Mgieh TYmluD3xvc2+HisA5E0aWY28eQ5lt0vzwpjP3TB3XQ040/IKkVOh/JnYw0/XS0E3 bsj68ZiNc9pbc9ZdBbYLK97x5R+eABMpUWG7A+eKMHB4El95BnlSMy3cxChGCr/R XtiDqRfuG1MGR8JYgMIEJ2qB1zEA2nacOO/M/WZhvIaaRiU5qUiuqBPuzj5WmxPF PryHBFbhpUM69uDpeuHHXQ8vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaUfHfDYg /4BKa4ZmQZYgp4SFfjEwHwYDVR0jBBgwFoAUh1thdAzTcL1LSk9q6gqGCDiNuoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODUyL0U5NTRGRDc4MUJB MjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wxTFNrOXE2Z3FHQ0RpTnVv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDF0aGRBelRjTDFMU2s5cTZncUdDRGlOdW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODUyL0U5NTRGRDc4MUJBMjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wx TFNrOXE2Z3FHQ0RpTnVvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF2806Ud8aKGZQhN+CL/Xks7IKD/Bl9ZQT4KvsLKCQgojIjrGOYwfo/8 NmsIu3t5yMH7Jv0pkNgvGJkjqMWCTC7WaY3XFMi4vq5awpkF3r8LtIRU1YPpa73K xzYyrvh6YRbyw9DK2W96ncmM7hwbS3HBZe28sWd0k12c4q0VrRTTiDUoHHik9XMK deeOxyncRirvax6sdy5zMw7uMH167ucLSoJZTMNuC6lR7jcySRHoBwz7bAminNeY ldZ17CCXGkhB85KrJClTKZipdw42dDLINNoQJ93Q69zbkLyKsknE8Nx9wtOi1m6A JYsV/SwLqQxN8aZrVQZmoDI6cDkkWPg= -----END CERTIFICATE-----Generated at Sat Jul 5 14:35:05 2025 by rpki-client