$ rpki-client -vvf rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft File: 5HXUQnchUazw-uprObkBK9Ij05M.mft (raw, json) Hash identifier: RCNXyVnEjkRsM7BwahqGT0IJGpUONLzNxUmd6mZvz24= Subject key identifier: 98:EF:85:28:44:AD:4D:75:DE:C5:AD:2D:24:BB:C3:13:A0:FD:27:1F Authority key identifier: E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 Certificate issuer: /CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft Manifest number: 014B Signing time: Sat 23 Aug 2025 04:23:05 +0000 Manifest this update: Sat 23 Aug 2025 04:23:04 +0000 Manifest next update: Sat 30 Aug 2025 04:23:04 +0000 Files and hashes: 1: 5HXUQnchUazw-uprObkBK9Ij05M.crl (hash: qAWsINVLi0XX33xJfG3cr7RPQ2al+HJbX70XEWyjl8Y=) 2: 2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa (hash: KgQSXjT0/AcvVs+PHWWF/UPrCiIk9MVvntWwSCiQouc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912809D, serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Validity Not Before: Aug 23 04:23:04 2025 GMT Not After : Aug 30 04:23:04 2025 GMT Subject: CN=68a94229-61d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:55:a7:53:3a:55:b1:f1:6d:45:f9:90:31:46: 31:a9:ae:4f:e4:53:c1:df:a4:f5:be:3d:16:19:46: 18:6d:07:9d:17:5e:62:64:de:25:72:ce:e7:d9:f7: 2d:07:51:6d:a7:17:d0:77:dd:c2:32:10:a8:15:86: 33:bb:6c:53:75:45:4f:4e:09:bd:fd:bc:94:38:9e: 00:81:6e:86:05:c7:f7:cc:44:4c:b6:9c:8f:16:2c: 30:4c:4e:01:d4:51:99:e2:8c:00:83:ae:19:7e:78: 66:47:de:2e:7f:21:2a:a9:ea:41:92:d1:d1:1e:f1: e2:8c:31:fc:42:8c:92:c5:92:f3:e7:4a:cb:3a:5c: cb:d3:55:c9:54:dd:b0:fb:14:6b:8c:55:1c:90:2a: 58:b1:71:da:53:71:fa:cb:86:c8:9f:81:bb:27:64: 14:d7:38:8f:97:86:53:88:5f:e1:40:ef:69:ce:20: 5f:32:2e:07:f1:04:af:08:86:70:f7:b0:18:9f:cf: ac:20:04:3b:71:db:4e:36:e6:92:03:f6:63:1d:99: 3a:e9:ac:0f:5b:b6:b4:44:9e:bc:90:34:85:b0:f9: d3:36:3c:a2:41:52:6d:7e:77:8f:e5:5e:27:bc:83: 66:d5:92:cd:67:1e:78:4a:4a:56:b0:39:3e:21:4e: 01:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EF:85:28:44:AD:4D:75:DE:C5:AD:2D:24:BB:C3:13:A0:FD:27:1F X509v3 Authority Key Identifier: keyid:E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:34:4c:e9:c2:36:b6:4c:f2:5f:83:ef:7d:2a:ed:e5:8a:9e: 9d:d2:e6:8b:ec:89:c7:45:ad:5a:5c:9e:d5:82:28:7b:a3:9d: 12:72:f8:66:fa:f3:b4:2d:5e:b2:69:38:5d:30:06:04:c8:92: 4d:f9:52:7f:bd:dd:3f:44:1b:7d:41:0c:57:80:57:a8:20:a0: b8:42:04:20:f7:06:89:cc:c3:51:5e:99:f3:b7:c1:58:81:ad: d6:2b:67:64:13:2d:31:50:1f:f3:0a:10:1f:01:98:1e:21:7b: 80:bb:73:54:39:74:15:1c:3e:b6:37:a6:d5:95:eb:e2:f2:51: 87:c3:83:b5:d6:2d:60:ed:da:5d:eb:8e:f6:97:49:49:55:63: a6:6a:8a:9d:a1:b5:d9:bf:65:53:20:fd:50:83:e4:f8:11:da: 57:44:e0:91:91:a0:55:f6:b1:8f:f6:d2:91:43:fe:08:d8:3d: 48:6a:62:5d:29:e4:c9:e9:fa:75:24:c1:d7:46:d5:6a:59:a7: 6b:ba:f4:f8:14:80:9c:f8:90:01:c6:ca:dd:5e:6a:f2:74:de: de:8d:66:db:81:d8:4a:68:e1:fc:d2:92:b9:77:7d:51:9d:da: 40:de:dd:10:74:50:e6:db:95:ae:a8:96:5d:2c:62:62:b2:2b: 66:05:a4:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwOUQxMTAvBgNVBAUTKEU0NzVENDQyNzcyMTUxQUNGMEZBRUE2QjM5QjkwMTJC RDIyM0QzOTMwHhcNMjUwODIzMDQyMzA0WhcNMjUwODMwMDQyMzA0WjAYMRYwFAYD VQQDEw02OGE5NDIyOS02MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlWnUzpVsfFtRfmQMUYxqa5P5FPB36T1vj0WGUYYbQedF15iZN4lcs7n2fct B1FtpxfQd93CMhCoFYYzu2xTdUVPTgm9/byUOJ4AgW6GBcf3zERMtpyPFiwwTE4B 1FGZ4owAg64ZfnhmR94ufyEqqepBktHRHvHijDH8QoySxZLz50rLOlzL01XJVN2w +xRrjFUckCpYsXHaU3H6y4bIn4G7J2QU1ziPl4ZTiF/hQO9pziBfMi4H8QSvCIZw 97AYn8+sIAQ7cdtONuaSA/ZjHZk66awPW7a0RJ68kDSFsPnTNjyiQVJtfneP5V4n vINm1ZLNZx54SkpWsDk+IU4B2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjvhShE rU113sWtLSS7wxOg/ScfMB8GA1UdIwQYMBaAFOR11EJ3IVGs8Prqazm5ASvSI9OT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA5RC8wMUZBQzk4QTg0 RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVhenctdXByT2JrQks5SWow NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIWFVRbmNoVWF6dy11cHJPYmtCSzlJajA1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA5RC8wMUZBQzk4QTg0RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVh enctdXByT2JrQks5SWowNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5NEzpwja2TPJfg+99Ku3lip6d0uaL7InHRa1aXJ7Vgih7o50Scvhm +vO0LV6yaThdMAYEyJJN+VJ/vd0/RBt9QQxXgFeoIKC4QgQg9waJzMNRXpnzt8FY ga3WK2dkEy0xUB/zChAfAZgeIXuAu3NUOXQVHD62N6bVlevi8lGHw4O11i1g7dpd 6472l0lJVWOmaoqdobXZv2VTIP1Qg+T4EdpXROCRkaBV9rGP9tKRQ/4I2D1IamJd KeTJ6fp1JMHXRtVqWadruvT4FICc+JABxsrdXmrydN7ejWbbgdhKaOH80pK5d31R ndpA3t0QdFDm25WuqJZdLGJisitmBaRx -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:03 2025 by rpki-client