$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: cv8cDVm5d0hrIofx1a3OFABI0DfvfFENAaJDPDtd3jc= Subject key identifier: 4D:EB:20:9A:1D:30:B9:54:36:EB:4F:40:B9:95:4B:B3:0F:A1:5F:A4 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B3A Signing time: Fri 22 Aug 2025 19:18:16 +0000 Manifest this update: Fri 22 Aug 2025 19:18:16 +0000 Manifest next update: Fri 29 Aug 2025 19:18:16 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: 0Y7iZObh83jVcepEm16tugoj6itvhXEe9+WJVXjpBPU=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Aug 22 19:18:16 2025 GMT Not After : Aug 29 19:18:16 2025 GMT Subject: CN=68a8c278-89a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2f:a5:6f:c4:20:84:98:5b:0b:73:d7:ca:15: 93:3e:3c:49:94:60:fb:b2:88:08:b3:35:75:1b:8d: 5c:fd:dc:19:30:54:d5:12:40:69:68:bd:ef:e2:0f: 67:36:44:7c:66:8b:f3:4f:d3:f6:5b:bc:da:78:2b: d2:12:d6:b1:92:e8:2a:cb:df:85:e8:07:ca:5a:11: a4:62:ec:48:bd:e3:f6:a4:38:81:11:6d:e7:56:a4: 98:a8:30:88:23:7c:0e:eb:7b:0d:f1:c7:84:c4:72: 4c:00:8c:f2:0d:52:e3:e9:dd:a7:e2:b1:c6:da:d4: cc:29:82:a2:da:9d:f3:cb:da:52:b3:34:d0:d5:01: 99:b2:b8:e6:60:29:52:3e:87:2d:8d:74:41:98:62: d8:70:2e:9e:d9:50:0f:ff:19:f6:77:50:22:59:bd: 1c:2c:84:67:cf:f2:bf:66:f7:81:c0:35:ec:e6:32: 67:3d:e6:9e:26:b7:7d:29:cc:bf:c5:76:30:a6:df: 81:30:5a:4a:c2:7c:c0:65:61:f6:17:9c:5d:48:97: 48:a8:fa:96:d7:63:7c:e3:a3:94:f2:11:fa:9e:1b: 42:9a:7c:fb:86:c8:6e:1d:dd:7e:ee:12:b4:68:f7: 6f:e4:a1:5b:f6:d7:52:6d:24:b8:a8:b9:9a:1a:71: 73:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EB:20:9A:1D:30:B9:54:36:EB:4F:40:B9:95:4B:B3:0F:A1:5F:A4 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:71:4f:e4:06:17:8f:64:01:61:b7:b5:f4:b4:03:8d:bc:04: f9:00:7b:29:83:14:d7:8d:5e:08:be:f6:94:85:a8:73:85:ad: 20:88:40:a1:52:59:ae:58:e5:98:fc:eb:3c:07:74:e9:ad:19: 1f:3d:d4:9e:1a:9c:09:97:1d:49:98:1c:4e:91:cc:2c:aa:d1: 14:88:c8:87:a7:ac:80:c3:88:ae:a8:7c:36:ca:04:95:30:9c: e7:1f:84:be:a5:67:be:f8:2a:1b:8a:25:7f:f5:ac:e9:5c:3c: 7c:ea:c6:b2:e8:ff:c5:ef:32:6f:2d:d0:ff:5a:e2:5f:d4:0a: ee:5b:87:94:52:9b:2b:de:a5:1f:53:a5:b9:b9:e1:1c:34:be: e9:f2:4d:ce:bf:5f:91:77:56:4b:85:12:9f:b1:25:ee:14:2a: 19:79:18:c8:24:54:83:eb:36:c1:83:db:28:d5:d0:5e:fa:34: 4d:a5:d3:cb:65:c3:39:45:e1:f1:6e:87:58:90:82:5b:27:9b: 08:a1:48:fd:d6:27:6e:f4:64:5c:ca:ba:d9:2c:13:64:45:a4: 71:fe:53:59:05:77:e1:56:f9:12:f0:76:2d:cd:16:e2:8d:d6: 0b:b9:35:df:44:81:e9:e4:91:bb:e7:f5:7e:aa:87:39:d3:c2: b9:51:b3:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUwODIyMTkxODE2WhcNMjUwODI5MTkxODE2WjAYMRYwFAYD VQQDEw02OGE4YzI3OC04OWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy+lb8QghJhbC3PXyhWTPjxJlGD7sogIszV1G41c/dwZMFTVEkBpaL3v4g9n NkR8ZovzT9P2W7zaeCvSEtaxkugqy9+F6AfKWhGkYuxIveP2pDiBEW3nVqSYqDCI I3wO63sN8ceExHJMAIzyDVLj6d2n4rHG2tTMKYKi2p3zy9pSszTQ1QGZsrjmYClS PoctjXRBmGLYcC6e2VAP/xn2d1AiWb0cLIRnz/K/ZveBwDXs5jJnPeaeJrd9Kcy/ xXYwpt+BMFpKwnzAZWH2F5xdSJdIqPqW12N846OU8hH6nhtCmnz7hshuHd1+7hK0 aPdv5KFb9tdSbSS4qLmaGnFzIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3rIJod MLlUNutPQLmVS7MPoV+kMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQcU/kBhePZAFht7X0tAONvAT5AHspgxTXjV4IvvaUhahzha0giECh UlmuWOWY/Os8B3TprRkfPdSeGpwJlx1JmBxOkcwsqtEUiMiHp6yAw4iuqHw2ygSV MJznH4S+pWe++CobiiV/9azpXDx86say6P/F7zJvLdD/WuJf1AruW4eUUpsr3qUf U6W5ueEcNL7p8k3Ov1+Rd1ZLhRKfsSXuFCoZeRjIJFSD6zbBg9so1dBe+jRNpdPL ZcM5ReHxbodYkIJbJ5sIoUj91idu9GRcyrrZLBNkRaRx/lNZBXfhVvkS8HYtzRbi jdYLuTXfRIHp5JG75/V+qoc508K5UbMu -----END CERTIFICATE-----Generated at Sat Aug 23 22:03:05 2025 by rpki-client