$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft File: Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft (raw, json) Hash identifier: zqWZBrJevIJlBxudaZWizkCUX+G30xqtThA6NDNBR6g= Subject key identifier: D1:FD:BE:BB:69:FE:93:F4:66:CB:2F:76:A2:E3:7E:8A:84:74:67:10 Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft Manifest number: 01EE Signing time: Sat 23 Aug 2025 02:39:23 +0000 Manifest this update: Sat 23 Aug 2025 02:39:23 +0000 Manifest next update: Sat 30 Aug 2025 02:39:23 +0000 Files and hashes: 1: Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl (hash: cuPGfBGj/wZTiQuOdoMeoNQXlmGImHtnNEXlANq/m7s=) 2: F56B35708C0011ED836F0539C4F9AE02.roa (hash: UfZMrxaB0qz4pcGB9q6XltymVUTNDZVQp2pT7h14Zqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B, serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Aug 23 02:39:23 2025 GMT Not After : Aug 30 02:39:23 2025 GMT Subject: CN=68a929db-1620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:64:cd:b1:b1:23:51:21:db:22:fa:df:a2: a6:9d:f2:62:bf:73:09:7a:c5:37:bb:5f:75:8e:f5: 16:ba:4d:e0:f2:fb:53:0b:f8:f8:27:6e:e7:f3:54: f3:27:85:ce:8a:fe:90:ac:eb:59:6b:61:e2:0e:3d: 2f:c6:3b:70:0a:59:09:35:96:eb:27:3e:7f:c5:7f: b5:02:06:f5:7d:38:b2:23:eb:e6:bc:cd:9e:3a:45: 30:c8:1a:f7:0b:90:01:e8:32:7e:95:7c:04:66:1e: 87:be:ee:25:a8:c7:af:ac:f8:f0:7a:c9:d9:ea:bf: 67:c6:76:d1:09:77:a1:a7:35:7a:38:4c:f3:81:ef: ca:9e:0e:6c:bc:63:52:52:7c:35:19:86:21:da:11: 58:83:09:91:a2:53:c7:c8:40:6e:ef:77:6d:a9:bd: 0f:98:9f:20:bd:34:97:04:ab:82:2f:c4:e9:a0:c8: 87:85:67:1c:08:76:61:5b:0c:9b:e9:5d:8f:e8:3b: ec:d0:9d:32:73:ec:ed:77:ea:2a:19:84:36:1c:0e: 12:04:96:4a:4c:38:a5:0a:95:dc:59:26:83:1d:76: f6:bf:d7:ec:14:a8:9b:cf:0a:ad:2c:36:9a:5b:de: ed:d1:e1:40:d7:ed:f1:b5:f5:c5:87:fc:7e:e4:35: 67:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FD:BE:BB:69:FE:93:F4:66:CB:2F:76:A2:E3:7E:8A:84:74:67:10 X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ce:51:f5:6c:5d:4a:53:12:b2:04:67:9b:69:57:67:a9:b2: 0a:2c:15:f5:45:a4:21:c2:45:4d:a9:52:3a:87:12:74:5f:58: 80:65:16:32:10:5a:73:51:85:fc:d7:2c:2d:4c:74:65:b4:61: 4a:49:8a:d9:fe:9d:8c:48:c2:dd:3f:b3:7f:0f:d8:f2:e5:74: 69:7b:c6:0e:9c:f1:97:63:f2:4c:7b:d5:61:cf:c2:76:fe:cf: 32:23:0f:b5:5d:90:17:93:3f:bd:4f:6d:ea:67:fc:71:39:a5: 23:cc:4e:72:f6:49:ab:c8:1c:11:8b:51:f7:37:7e:a2:be:3a: 59:7a:62:dc:c2:01:e5:3f:5a:57:23:83:81:21:0b:4d:db:ec: 0e:8c:51:b4:1f:d7:bd:75:af:6e:13:ed:8e:73:b8:33:f2:c3: ae:73:55:62:da:03:42:bb:ec:32:e5:3b:75:66:db:59:b1:17: f7:67:0c:6e:e4:ff:74:cd:57:26:92:c3:4d:97:33:45:ef:59: df:ce:95:8e:c1:72:63:6a:26:35:f8:75:fa:96:db:c3:39:dd: 74:ec:e5:15:6e:30:b9:e6:45:a9:c5:01:d1:1a:b2:5b:c6:0d: 6c:dc:a0:db:c7:70:7f:bb:e7:8e:18:66:e8:e3:91:c3:37:f4: fc:d4:0d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjUwODIzMDIzOTIzWhcNMjUwODMwMDIzOTIzWjAYMRYwFAYD VQQDEw02OGE5MjlkYi0xNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqBkzbGxI1Eh2yL636KmnfJiv3MJesU3u191jvUWuk3g8vtTC/j4J27n81Tz J4XOiv6QrOtZa2HiDj0vxjtwClkJNZbrJz5/xX+1Agb1fTiyI+vmvM2eOkUwyBr3 C5AB6DJ+lXwEZh6Hvu4lqMevrPjwesnZ6r9nxnbRCXehpzV6OEzzge/Kng5svGNS Unw1GYYh2hFYgwmRolPHyEBu73dtqb0PmJ8gvTSXBKuCL8TpoMiHhWccCHZhWwyb 6V2P6Dvs0J0yc+ztd+oqGYQ2HA4SBJZKTDilCpXcWSaDHXb2v9fsFKibzwqtLDaa W97t0eFA1+3xtfXFh/x+5DVnwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH9vrtp /pP0ZssvdqLjfoqEdGcQMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I4Qi9ERDA0NzNGQThCRkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZN bmhiTE00SlVEVVlpTmdJVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxzlH1bF1KUxKyBGebaVdnqbIKLBX1RaQhwkVNqVI6hxJ0X1iAZRYy EFpzUYX81ywtTHRltGFKSYrZ/p2MSMLdP7N/D9jy5XRpe8YOnPGXY/JMe9Vhz8J2 /s8yIw+1XZAXkz+9T23qZ/xxOaUjzE5y9kmryBwRi1H3N36ivjpZemLcwgHlP1pX I4OBIQtN2+wOjFG0H9e9da9uE+2Oc7gz8sOuc1Vi2gNCu+wy5Tt1ZttZsRf3Zwxu 5P90zVcmksNNlzNF71nfzpWOwXJjaiY1+HX6ltvDOd107OUVbjC55kWpxQHRGrJb xg1s3KDbx3B/u+eOGGbo45HDN/T81A2O -----END CERTIFICATE-----Generated at Sat Aug 23 16:32:26 2025 by rpki-client