$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft File: haOfEGRko23KJ0v8d_uvewMDh24.mft (raw, json) Hash identifier: OwbNuw98t0gtcvug74KlRWfTivXGcxWyaBDo3JguF6U= Subject key identifier: 92:F4:1A:B0:17:94:B8:F6:F6:F8:C2:75:D0:D4:D2:72:F8:75:D1:AF Authority key identifier: 85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E Certificate issuer: /CN=A9131181/serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft Manifest number: 4D Signing time: Sat 23 Aug 2025 07:35:02 +0000 Manifest this update: Sat 23 Aug 2025 07:35:02 +0000 Manifest next update: Sat 30 Aug 2025 07:35:02 +0000 Files and hashes: 1: haOfEGRko23KJ0v8d_uvewMDh24.crl (hash: ZA2MPVEJ5CqBT1hXpxA1eBttTVBN8P0a1IgBGlQP1Q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181, serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Validity Not Before: Aug 23 07:35:02 2025 GMT Not After : Aug 30 07:35:02 2025 GMT Subject: CN=68a96f26-574d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:32:c0:12:83:cf:aa:1a:59:98:67:6a:71:a6: 65:ed:66:88:e0:af:92:f3:2b:5d:3d:20:43:3f:ca: e0:e9:95:00:45:6d:10:16:60:ba:39:f6:d8:e5:c2: 59:e1:32:47:90:6c:93:15:a8:e9:94:ba:43:4f:db: 0f:2c:9a:44:e3:24:e6:73:ce:5f:ce:8d:5e:6f:c1: e0:da:ea:7a:0b:98:4d:0b:7c:9f:60:67:46:94:b8: 54:2f:d8:69:e6:b9:28:50:8a:87:3a:7d:80:ef:9d: 32:ea:80:9c:e7:b3:09:e2:f3:a7:6c:20:45:35:3f: b8:82:c6:74:6e:09:05:34:f4:27:21:9d:20:b7:b7: 3e:53:a4:1b:4d:8e:f7:33:7e:23:87:e0:e7:ea:20: 26:bb:66:ba:c5:95:52:f0:b1:08:34:33:ab:6e:31: d3:0d:1e:5f:f5:98:97:04:a6:8d:d6:6f:05:94:ce: ce:01:2f:15:8e:f7:7b:55:d8:be:58:fd:e6:2b:77: 9c:3e:1f:e5:56:dd:9e:77:b5:01:a4:5c:4b:04:26: b1:11:58:7f:54:e2:3a:8f:87:e3:b9:45:38:0f:fc: 74:46:54:9f:1f:c9:3d:bb:ba:5d:db:9c:87:6f:10: 66:85:a2:d2:44:75:37:70:3e:da:af:fc:b4:ee:b2: 4a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F4:1A:B0:17:94:B8:F6:F6:F8:C2:75:D0:D4:D2:72:F8:75:D1:AF X509v3 Authority Key Identifier: keyid:85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:cd:65:c9:b1:d1:63:c2:a1:6f:47:ae:51:01:96:ec:23:af: 8b:23:95:7b:7f:0f:de:76:59:6d:bf:a7:ef:84:f1:03:82:25: 6a:e9:65:b9:7d:9e:29:cc:59:63:1c:51:d1:14:45:e1:c9:14: 98:7c:9a:b9:73:f5:36:01:1d:9b:d9:83:dc:90:bf:43:c3:9f: 0e:97:b1:ef:3d:94:a2:10:bf:27:0d:f2:1f:35:b6:52:c0:89: 3f:2f:70:2b:59:32:24:b3:5e:45:10:48:b2:b1:1a:cd:38:4a: 9d:d0:5a:d8:78:41:d2:8b:fd:36:66:66:7a:55:06:64:36:02: 2f:d8:18:5e:6a:c9:27:01:0c:9e:d2:bc:b0:d7:8e:26:2b:07: 4b:36:9b:f4:f8:c0:56:8d:20:92:2d:75:a2:21:cd:d6:82:3d: 6e:71:14:a3:82:06:14:93:5f:1a:33:68:16:7a:36:d5:27:07: 3e:dd:97:75:9e:5e:13:9e:00:a8:b5:7c:67:88:d5:18:4c:92: 5f:cf:fd:a5:61:da:a0:d8:0f:e0:7b:61:08:b3:2a:41:eb:7d: 13:7e:30:d6:83:a7:7a:d6:ab:4f:44:49:f7:d2:81:a7:ab:96: 1f:0d:20:9f:36:0a:7c:c6:55:0d:44:ca:59:ed:b3:ae:b1:0f: c0:0c:ae:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoODVBMzlGMTA2NDY0QTM2RENBMjc0QkZDNzdGQkFGN0Iw MzAzODc2RTAeFw0yNTA4MjMwNzM1MDJaFw0yNTA4MzAwNzM1MDJaMBgxFjAUBgNV BAMTDTY4YTk2ZjI2LTU3NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPMsASg8+qGlmYZ2pxpmXtZojgr5LzK109IEM/yuDplQBFbRAWYLo59tjlwlnh MkeQbJMVqOmUukNP2w8smkTjJOZzzl/OjV5vweDa6noLmE0LfJ9gZ0aUuFQv2Gnm uShQioc6fYDvnTLqgJznswni86dsIEU1P7iCxnRuCQU09CchnSC3tz5TpBtNjvcz fiOH4OfqICa7ZrrFlVLwsQg0M6tuMdMNHl/1mJcEpo3WbwWUzs4BLxWO93tV2L5Y /eYrd5w+H+VW3Z53tQGkXEsEJrERWH9U4jqPh+O5RTgP/HRGVJ8fyT27ul3bnIdv EGaFotJEdTdwPtqv/LTuskq3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkvQasBeU uPb2+MJ10NTScvh10a8wHwYDVR0jBBgwFoAUhaOfEGRko23KJ0v8d/uvewMDh24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0IyRTcxNDYyMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIzS0owdjhkX3V2ZXdNRGgy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGFPZkVHUmtvMjNLSjB2OGRfdXZld01EaDI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0IyRTcxNDYyMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIz S0owdjhkX3V2ZXdNRGgyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADXNZcmx0WPCoW9HrlEBluwjr4sjlXt/D952WW2/p++E8QOCJWrpZbl9 ninMWWMcUdEUReHJFJh8mrlz9TYBHZvZg9yQv0PDnw6Xse89lKIQvycN8h81tlLA iT8vcCtZMiSzXkUQSLKxGs04Sp3QWth4QdKL/TZmZnpVBmQ2Ai/YGF5qyScBDJ7S vLDXjiYrB0s2m/T4wFaNIJItdaIhzdaCPW5xFKOCBhSTXxozaBZ6NtUnBz7dl3We XhOeAKi1fGeI1RhMkl/P/aVh2qDYD+B7YQizKkHrfRN+MNaDp3rWq09ESffSgaer lh8NIJ82CnzGVQ1Eylnts66xD8AMrqw= -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:52 2025 by rpki-client