$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: g6GgWEoRqEOvoCs7GwTyHwHQt9c+M3x2Dfv1QdpUoAM= Subject key identifier: FA:2D:65:70:A4:A8:A1:39:AB:F7:DA:AF:02:AD:E4:B9:13:0E:66:FD Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C8D Signing time: Fri 22 Aug 2025 18:24:42 +0000 Manifest this update: Fri 22 Aug 2025 18:24:42 +0000 Manifest next update: Fri 29 Aug 2025 18:24:42 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: FXwEB3No9qDOuylAfpBslWIFehl8JXFbV9WVgpk0QTU=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Aug 22 18:24:42 2025 GMT Not After : Aug 29 18:24:42 2025 GMT Subject: CN=68a8b5ea-c711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:95:8b:33:bd:ec:ec:c0:0a:f0:58:e9:84:23: 11:9a:53:3e:a7:d5:71:51:58:85:11:57:46:12:7d: a2:0f:7c:82:94:cb:65:b4:47:ef:ed:ff:db:5a:21: 1e:59:12:04:5e:ee:90:0a:bf:e3:0e:6a:32:d7:35: c8:a5:7f:3f:15:c4:be:04:fa:5b:20:07:f5:cb:50: 90:75:03:e6:61:97:ae:85:4d:05:05:e6:79:12:f6: f5:5b:fa:9a:72:a0:2e:0f:95:e8:a6:10:df:1e:e2: c8:1b:57:c6:8d:f6:88:74:5e:76:82:2e:02:84:7c: 35:65:36:f3:8e:87:d4:19:65:4d:e5:39:56:d7:6e: 8b:dc:72:61:8d:30:47:b3:f6:0d:3e:20:98:2e:60: c0:31:8f:02:38:df:42:cf:d7:71:d6:06:52:9e:8b: e2:cf:85:69:f7:81:d3:9e:76:a2:ed:0a:b1:69:e3: a5:b3:d0:cf:5d:89:a9:b1:23:2d:1d:dd:ac:0a:62: a7:83:67:08:c4:fa:b0:87:a3:f5:cc:b1:38:de:35: 58:d5:e6:c5:79:25:b7:ed:33:21:61:15:28:7a:b1: 72:8e:99:02:82:21:1c:d3:9a:d2:71:46:12:fc:7e: 53:8c:16:8f:0a:b8:b9:03:fd:2e:5e:3b:30:0e:d4: de:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2D:65:70:A4:A8:A1:39:AB:F7:DA:AF:02:AD:E4:B9:13:0E:66:FD X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c3:6a:c8:8b:e0:65:f4:dc:b8:09:dc:e8:d7:7a:f3:b3:bf: 13:a7:68:d2:9e:ca:55:0d:83:e9:1a:35:3a:40:8c:f2:91:69: 09:d2:92:e3:52:2f:db:94:98:9b:4b:a6:46:f1:07:c9:aa:2e: 43:6a:e3:7a:16:76:6e:38:9e:db:0e:27:1d:57:64:68:f2:c1: ae:40:3b:79:a4:47:39:cb:43:28:4a:ca:bb:35:77:7a:61:b4: 9f:a6:d9:36:59:7a:84:aa:83:06:3b:b6:3d:56:15:be:83:c7: ff:6b:ce:d5:d1:be:2e:6a:fe:04:8d:5e:d8:61:9d:1f:b3:a2: 8b:c2:8f:01:a1:d0:c0:2d:6b:d6:b7:6d:1f:c5:a8:50:6b:90: d1:61:40:0a:6c:dc:71:c3:d2:25:cf:25:cf:02:0c:c4:a3:0c: 4a:b9:a1:5b:9f:97:15:08:1f:35:a2:86:9a:de:04:ed:e5:95: a9:e7:c6:a4:cb:66:bd:13:10:85:08:9b:b6:e9:28:ca:df:8c: e1:c7:aa:c2:dc:26:c8:87:d9:93:14:06:a3:0c:9c:ce:0a:f3: f3:08:21:8e:be:18:54:11:0a:9f:ea:2d:5b:a8:8b:e0:6f:7a: c0:26:d0:b3:0c:8d:e4:ba:50:b0:82:28:e9:33:6d:45:10:4c: 6e:6a:6c:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwODIyMTgyNDQyWhcNMjUwODI5MTgyNDQyWjAYMRYwFAYD VQQDEw02OGE4YjVlYS1jNzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJWLM73s7MAK8FjphCMRmlM+p9VxUViFEVdGEn2iD3yClMtltEfv7f/bWiEe WRIEXu6QCr/jDmoy1zXIpX8/FcS+BPpbIAf1y1CQdQPmYZeuhU0FBeZ5Evb1W/qa cqAuD5XophDfHuLIG1fGjfaIdF52gi4ChHw1ZTbzjofUGWVN5TlW126L3HJhjTBH s/YNPiCYLmDAMY8CON9Cz9dx1gZSnoviz4Vp94HTnnai7QqxaeOls9DPXYmpsSMt Hd2sCmKng2cIxPqwh6P1zLE43jVY1ebFeSW37TMhYRUoerFyjpkCgiEc05rScUYS /H5TjBaPCri5A/0uXjswDtTezQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPotZXCk qKE5q/farwKt5LkTDmb9MB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADw2rIi+Bl9Ny4Cdzo13rzs78Tp2jSnspVDYPpGjU6QIzykWkJ0pLj Ui/blJibS6ZG8QfJqi5DauN6FnZuOJ7bDicdV2Ro8sGuQDt5pEc5y0MoSsq7NXd6 YbSfptk2WXqEqoMGO7Y9VhW+g8f/a87V0b4uav4EjV7YYZ0fs6KLwo8BodDALWvW t20fxahQa5DRYUAKbNxxw9IlzyXPAgzEowxKuaFbn5cVCB81ooaa3gTt5ZWp58ak y2a9ExCFCJu26SjK34zhx6rC3CbIh9mTFAajDJzOCvPzCCGOvhhUEQqf6i1bqIvg b3rAJtCzDI3kulCwgijpM21FEExuamy+ -----END CERTIFICATE-----Generated at Sun Aug 24 03:33:59 2025 by rpki-client