$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: GKRKLthLL6r2U5dffvGQDIEMWsMolwJN2QznZ+aD90M= Subject key identifier: B1:65:8B:FD:D3:33:16:E3:A2:33:B7:54:2C:86:1C:71:97:35:1C:69 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BF9 Signing time: Fri 22 Aug 2025 16:18:12 +0000 Manifest this update: Fri 22 Aug 2025 16:18:12 +0000 Manifest next update: Fri 29 Aug 2025 16:18:12 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: vFftH0ktSmHtun7XeTcBB3hgdY8Wp53mDNstCw6xvO4=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7174 (0x1c06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Aug 22 16:18:12 2025 GMT Not After : Aug 29 16:18:12 2025 GMT Subject: CN=68a89844-a9d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b0:c0:bc:97:22:44:ed:12:11:f8:7f:7c:5a: df:2f:99:a4:e1:df:f7:ed:3f:b9:2c:fd:61:bd:9c: f6:19:bc:79:96:07:d5:d6:f9:4e:f8:84:2a:24:a9: 4c:95:c0:8a:3f:bd:8b:14:5b:7b:ff:25:5b:eb:d6: ff:73:8a:41:e9:e9:b2:1e:b3:c4:64:50:f4:01:10: 83:7c:b1:99:2d:d6:c9:9b:75:71:9e:8e:be:0e:42: 94:48:48:3c:d1:f1:87:92:c5:52:ad:85:17:00:78: c9:bd:f5:f7:8d:e4:c3:8b:36:39:5a:b1:8b:cb:48: c7:b6:a2:1a:72:77:e1:a2:00:18:8c:b0:c8:1e:0a: d5:88:7a:24:03:3a:ac:fc:88:33:90:27:4b:ee:59: 43:4f:62:a0:90:36:fc:93:7c:bb:b0:0c:61:45:d2: c8:a2:40:68:5a:30:1c:f5:04:5a:61:09:f4:61:c9: 22:eb:b1:0b:22:47:3b:68:da:3e:8b:c8:d4:b9:f8: fe:8f:83:0f:c1:5e:fd:b6:b1:40:c9:2d:3e:16:b6: 87:a3:c6:2e:68:af:d3:9b:5b:8f:a0:ab:39:c8:55: a5:3b:d9:e2:4a:60:e5:ae:f3:02:62:3a:9b:06:ae: 9a:ac:97:bd:88:fe:9c:02:d3:62:2a:82:53:e6:5c: cf:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:65:8B:FD:D3:33:16:E3:A2:33:B7:54:2C:86:1C:71:97:35:1C:69 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:01:f5:e3:f5:60:c3:de:4b:60:fa:31:24:d3:48:95:18:e7: 51:77:a9:e5:4d:2c:12:3f:d6:61:db:51:aa:d6:64:8e:d2:c4: 1c:25:c1:6b:31:c3:f5:68:91:0e:0f:ea:e7:39:72:f0:ea:8e: 0f:3b:3e:95:26:62:ed:82:27:3d:ce:43:bf:50:01:95:e8:54: 9b:0b:96:7c:de:30:01:10:b0:85:13:e5:e5:66:5b:1d:6f:ee: dd:81:e5:86:e5:89:de:1b:0f:fc:2b:d0:dc:6f:4f:20:2f:a0: 3c:73:70:ff:bf:10:d0:83:e0:f3:80:3e:d6:c4:d9:e4:7c:1f: 5b:dc:5c:47:1e:6c:dc:6c:c9:35:42:87:92:29:be:88:e5:fa: cd:65:43:5c:9a:75:47:84:d0:cd:42:d0:32:76:00:65:82:ae: 76:83:96:1a:93:33:11:89:46:83:d1:72:cc:70:ec:1a:0b:a3: 66:0e:b2:13:6c:8b:d3:2a:d2:90:ff:cc:11:b4:00:73:c1:ee: f8:f5:07:9a:f4:bc:37:04:fd:6b:0f:3f:57:6d:01:00:1f:1a: c8:83:fa:0c:e3:22:c6:f2:28:ec:3b:0e:e7:40:41:42:c3:9f: 3f:6d:10:8a:27:83:f8:79:30:9d:a1:e4:c7:a8:8e:ff:03:3d: b4:90:b4:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwODIyMTYxODEyWhcNMjUwODI5MTYxODEyWjAYMRYwFAYD VQQDEw02OGE4OTg0NC1hOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7DAvJciRO0SEfh/fFrfL5mk4d/37T+5LP1hvZz2Gbx5lgfV1vlO+IQqJKlM lcCKP72LFFt7/yVb69b/c4pB6emyHrPEZFD0ARCDfLGZLdbJm3Vxno6+DkKUSEg8 0fGHksVSrYUXAHjJvfX3jeTDizY5WrGLy0jHtqIacnfhogAYjLDIHgrViHokAzqs /IgzkCdL7llDT2KgkDb8k3y7sAxhRdLIokBoWjAc9QRaYQn0Ycki67ELIkc7aNo+ i8jUufj+j4MPwV79trFAyS0+FraHo8YuaK/Tm1uPoKs5yFWlO9niSmDlrvMCYjqb Bq6arJe9iP6cAtNiKoJT5lzP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFli/3T MxbjojO3VCyGHHGXNRxpMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsAfXj9WDD3ktg+jEk00iVGOdRd6nlTSwSP9Zh21Gq1mSO0sQcJcFr McP1aJEOD+rnOXLw6o4POz6VJmLtgic9zkO/UAGV6FSbC5Z83jABELCFE+XlZlsd b+7dgeWG5YneGw/8K9Dcb08gL6A8c3D/vxDQg+DzgD7WxNnkfB9b3FxHHmzcbMk1 QoeSKb6I5frNZUNcmnVHhNDNQtAydgBlgq52g5YakzMRiUaD0XLMcOwaC6NmDrIT bIvTKtKQ/8wRtABzwe749Qea9Lw3BP1rDz9XbQEAHxrIg/oM4yLG8ijsOw7nQEFC w58/bRCKJ4P4eTCdoeTHqI7/Az20kLTF -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:31 2025 by rpki-client