$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: QONszo+dUYBLB/2IkxzD7LPHxakCDjPagb31ZX0+SQk= Subject key identifier: 98:B9:35:72:EE:06:1D:98:36:0F:E4:B7:77:83:7B:82:41:8B:D4:EC Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C73 Signing time: Wed 02 Jul 2025 18:32:59 +0000 Manifest this update: Wed 02 Jul 2025 18:32:59 +0000 Manifest next update: Wed 09 Jul 2025 18:32:59 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: qk0ORJszG440QrSjHksib7HLaiqvIxYylY39vZGf8fE=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Jul 2 18:32:59 2025 GMT Not After : Jul 9 18:32:59 2025 GMT Subject: CN=68657b5b-b692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:46:2e:4c:45:ef:3b:fd:c5:8d:5d:52:e0:1d: 3d:84:ec:54:76:19:a2:c5:a8:00:17:cd:05:58:25: 4b:3b:19:b5:f0:63:2e:84:d4:4b:0f:95:0c:d8:81: ef:49:65:91:d2:bf:68:54:7c:62:f4:c1:bb:33:a6: 58:23:57:26:2f:db:6b:a3:42:86:a2:6e:fa:47:d2: 94:2c:c1:8d:ab:5d:d0:58:de:bd:f7:93:e3:af:32: 4f:6f:c0:a4:20:40:34:59:57:4d:1f:c8:98:f1:3b: 2a:93:9d:d3:3b:ca:5a:15:9f:be:e7:61:50:3b:e9: 0d:50:08:f6:22:3a:6b:ac:78:86:06:28:53:54:4b: 37:a3:9c:d2:63:be:23:f3:d1:19:37:14:17:ac:3d: c9:38:29:76:04:0f:54:c4:c9:67:03:08:e7:87:a1: 34:ac:e7:4f:c9:e5:c2:67:4b:87:77:a5:a4:a7:6d: 94:2a:1e:c5:7f:c4:09:4a:b7:cb:38:47:46:58:1a: 7a:95:2e:83:d2:b2:2a:99:3d:e7:b3:16:f3:23:1a: c1:a3:8e:10:b3:84:88:32:b7:c4:78:c2:e2:c3:9e: e9:03:9e:6b:d1:ef:15:3a:f4:91:ed:58:28:0a:10: 40:61:fa:13:4a:bf:f0:5d:8e:d6:3b:6e:f3:ac:cb: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B9:35:72:EE:06:1D:98:36:0F:E4:B7:77:83:7B:82:41:8B:D4:EC X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a5:03:1e:76:c7:82:b1:fe:b1:71:3b:55:74:86:7f:06:7f: b2:eb:03:0a:d0:02:36:3e:0e:bf:f4:01:26:8f:9f:bd:39:fd: ea:d2:2c:88:87:f6:37:42:85:36:f4:7a:a1:f8:72:01:69:90: be:f5:b5:03:f5:af:e7:9b:eb:c4:30:5e:c9:3c:e9:1c:df:6d: 01:c5:ba:1a:fe:1a:e9:05:5d:b2:00:8b:de:dd:26:e0:23:cc: 51:01:8f:20:4e:2e:cd:96:31:10:f3:03:cc:96:5a:fe:1f:f5: a3:21:b2:63:de:c8:09:88:b5:81:28:e0:2e:d0:be:9d:2e:ae: 83:77:24:64:67:19:3a:b7:0c:0e:d4:2c:77:51:34:30:d7:31: 7e:10:91:cd:39:76:f6:f0:6b:29:58:f3:5e:28:5f:ab:1e:95: 16:0c:72:a8:dc:f2:32:b9:bb:a4:38:e1:66:36:e9:20:3b:2d: 85:58:e4:bf:91:52:e5:9d:e7:79:80:cc:25:6e:ed:06:33:13: 2f:d4:5e:95:4e:bb:66:03:5e:22:a1:bf:58:e1:58:9b:7c:5c: 9f:cf:f9:8f:2c:27:73:e3:8d:31:8e:fe:1a:79:3a:bc:66:ed: df:de:b9:4b:67:83:0a:44:22:14:44:96:bf:ad:39:96:d6:77: 07:e1:98:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwNzAyMTgzMjU5WhcNMjUwNzA5MTgzMjU5WjAYMRYwFAYD VQQDEw02ODY1N2I1Yi1iNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0YuTEXvO/3FjV1S4B09hOxUdhmixagAF80FWCVLOxm18GMuhNRLD5UM2IHv SWWR0r9oVHxi9MG7M6ZYI1cmL9tro0KGom76R9KULMGNq13QWN6995PjrzJPb8Ck IEA0WVdNH8iY8Tsqk53TO8paFZ++52FQO+kNUAj2IjprrHiGBihTVEs3o5zSY74j 89EZNxQXrD3JOCl2BA9UxMlnAwjnh6E0rOdPyeXCZ0uHd6Wkp22UKh7Ff8QJSrfL OEdGWBp6lS6D0rIqmT3nsxbzIxrBo44Qs4SIMrfEeMLiw57pA55r0e8VOvSR7Vgo ChBAYfoTSr/wXY7WO27zrMvR3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJi5NXLu Bh2YNg/kt3eDe4JBi9TsMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbpQMedseCsf6xcTtVdIZ/Bn+y6wMK0AI2Pg6/9AEmj5+9Of3q0iyI h/Y3QoU29Hqh+HIBaZC+9bUD9a/nm+vEMF7JPOkc320Bxboa/hrpBV2yAIve3Sbg I8xRAY8gTi7NljEQ8wPMllr+H/WjIbJj3sgJiLWBKOAu0L6dLq6DdyRkZxk6twwO 1Cx3UTQw1zF+EJHNOXb28GspWPNeKF+rHpUWDHKo3PIyubukOOFmNukgOy2FWOS/ kVLlned5gMwlbu0GMxMv1F6VTrtmA14iob9Y4VibfFyfz/mPLCdz440xjv4aeTq8 Zu3f3rlLZ4MKRCIURJa/rTmW1ncH4Zi9 -----END CERTIFICATE-----Generated at Fri Jul 4 14:39:53 2025 by rpki-client