$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: 6StTOygHVemBpZuokvJcCJXK1N/2bVClvL1qdAmqXMg= Subject key identifier: 98:74:30:63:55:B1:B1:E0:55:B8:39:58:3E:4A:4A:51:DE:C2:53:31 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 89 Signing time: Fri 22 Aug 2025 19:39:59 +0000 Manifest this update: Fri 22 Aug 2025 19:39:58 +0000 Manifest next update: Fri 29 Aug 2025 19:39:58 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: Ac3SovKEd+53AfzR3wJogJKuedCtJRPonr92hkKv9RE=) 2: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: N2rEQqfmtaraI3c1hrrCAXyrNypl60jahKzIoBeEv8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Aug 22 19:39:58 2025 GMT Not After : Aug 29 19:39:58 2025 GMT Subject: CN=68a8c78f-13a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0b:a2:0d:2b:dc:74:c6:0d:52:a9:a7:c5:4d: da:c6:93:4d:de:2b:4a:27:a1:da:0c:7e:0a:66:c6: cc:4d:46:67:c9:5f:71:28:59:7d:74:7d:43:03:d7: cd:2a:67:68:f8:1a:0a:d0:7c:b1:dc:3b:9c:57:a4: b5:a0:00:1a:f2:47:55:1d:d2:09:64:44:eb:da:1c: 44:0f:4c:89:9b:09:6a:eb:17:46:c3:26:7f:e3:1b: 3e:59:fb:c9:c1:c8:17:e2:36:ba:d1:82:ec:c1:41: d2:65:09:68:7c:73:c0:93:4f:91:e7:e5:cf:1e:9b: b6:db:f2:33:f4:15:21:3a:68:91:6a:c1:f0:3d:17: c5:ab:0f:55:66:be:a3:3f:33:03:be:d0:4b:bf:75: 74:d3:20:01:c4:d7:85:07:67:e0:7d:8d:ce:a2:16: cd:10:4d:6e:ee:d5:3c:9b:2c:81:c0:fd:d5:f2:97: 49:59:a3:83:6e:a2:e3:b7:0b:ca:08:52:da:c5:dd: 29:5c:34:f3:4e:f9:cd:b6:52:67:c0:03:6a:ac:e4: 2b:22:5f:0c:64:96:a1:2d:bf:e6:dd:07:a0:36:32: 69:6b:64:7e:72:cb:10:49:8c:c2:d0:56:6d:29:a9: 94:cb:5b:cc:97:0f:b0:e6:3d:ba:e4:44:83:96:af: 9f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:74:30:63:55:B1:B1:E0:55:B8:39:58:3E:4A:4A:51:DE:C2:53:31 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:14:a5:28:e7:6d:53:73:e7:8a:a3:90:a2:d3:f8:a5:c9:92: c5:96:9d:ab:75:25:25:c2:06:53:c3:f7:ca:93:2c:3e:d4:4d: 99:d0:0a:9f:ee:48:c0:04:35:bb:49:90:b7:7d:f1:df:d1:91: f1:95:54:71:d7:64:a4:0b:67:69:37:ae:e3:d8:62:5f:c4:07: 2e:56:4d:ec:de:d3:ec:4d:b0:fc:e5:15:42:7c:a4:1e:e6:a3: 5d:86:68:c9:f3:78:ae:9d:c0:d4:79:e9:1e:53:53:6b:ba:30: 62:b1:b0:ab:0a:f0:02:cb:8a:60:5e:54:54:b4:2b:2a:69:e9: 66:15:dc:75:36:a5:b3:26:71:40:06:f2:d2:d5:7e:c1:24:16: ad:f3:61:38:fe:3b:a8:fc:ad:19:95:70:c6:fe:6d:f6:fa:9d: d3:86:04:30:06:1d:7e:fd:26:06:bd:90:36:c8:a1:2d:c7:8d: b5:24:73:b2:0e:7b:04:d6:15:d6:b4:04:d8:e1:b2:4d:fb:c1: 73:7a:6b:b4:57:96:15:53:2e:6d:fe:93:33:85:8f:d9:5d:66: e2:7e:a3:04:12:a5:a2:4e:d5:78:47:2f:56:7d:be:9f:e4:ed: 16:aa:22:cc:9c:77:6c:cb:26:56:6d:92:ae:af:ee:0e:b4:a9: 84:ce:da:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUwODIyMTkzOTU4WhcNMjUwODI5MTkzOTU4WjAYMRYwFAYD VQQDEw02OGE4Yzc4Zi0xM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwuiDSvcdMYNUqmnxU3axpNN3itKJ6HaDH4KZsbMTUZnyV9xKFl9dH1DA9fN Kmdo+BoK0Hyx3DucV6S1oAAa8kdVHdIJZETr2hxED0yJmwlq6xdGwyZ/4xs+WfvJ wcgX4ja60YLswUHSZQlofHPAk0+R5+XPHpu22/Iz9BUhOmiRasHwPRfFqw9VZr6j PzMDvtBLv3V00yABxNeFB2fgfY3OohbNEE1u7tU8myyBwP3V8pdJWaODbqLjtwvK CFLaxd0pXDTzTvnNtlJnwANqrOQrIl8MZJahLb/m3QegNjJpa2R+cssQSYzC0FZt KamUy1vMlw+w5j265ESDlq+fAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJh0MGNV sbHgVbg5WD5KSlHewlMxMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2FKUo521Tc+eKo5Ci0/ilyZLFlp2rdSUlwgZTw/fKkyw+1E2Z0Aqf 7kjABDW7SZC3ffHf0ZHxlVRx12SkC2dpN67j2GJfxAcuVk3s3tPsTbD85RVCfKQe 5qNdhmjJ83iuncDUeekeU1NrujBisbCrCvACy4pgXlRUtCsqaelmFdx1NqWzJnFA BvLS1X7BJBat82E4/juo/K0ZlXDG/m32+p3ThgQwBh1+/SYGvZA2yKEtx421JHOy DnsE1hXWtATY4bJN+8Fzemu0V5YVUy5t/pMzhY/ZXWbifqMEEqWiTtV4Ry9Wfb6f 5O0WqiLMnHdsyyZWbZKur+4OtKmEztps -----END CERTIFICATE-----Generated at Sat Aug 23 12:42:04 2025 by rpki-client