$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: iuJTgfUB4kUZMJCu/kECJNNe/l5lDCTivUlRsV/OUNk= Subject key identifier: 0B:9E:77:E5:43:B0:59:A7:6A:69:75:40:B5:05:F5:EB:D8:BE:BD:60 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 0362 Signing time: Sat 23 Aug 2025 01:10:29 +0000 Manifest this update: Sat 23 Aug 2025 01:10:28 +0000 Manifest next update: Sat 30 Aug 2025 01:10:28 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: AkzvyS4bZTbhvjmJ1xTGfRx7u2hmqXOQNRiCn4Bq04s=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Aug 23 01:10:28 2025 GMT Not After : Aug 30 01:10:28 2025 GMT Subject: CN=68a91504-1d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:38:77:e7:9d:d7:2e:9e:cc:42:b3:bf:ec:bf: 33:b5:42:55:9a:44:d1:0b:fc:18:b1:4c:d6:40:41: ec:c9:33:94:f9:3a:4d:15:92:c6:ca:4d:ae:4d:a7: 44:83:82:e9:a7:91:28:00:d9:32:97:5d:ad:fa:d2: 3e:51:73:59:20:ff:5f:5c:29:1f:53:a8:33:99:0e: 57:e0:ef:08:ec:1d:7a:52:64:f8:09:42:c6:0d:b4: 04:c8:74:96:b7:b5:92:9a:c8:af:b4:6c:54:65:a1: da:10:06:8a:c0:ae:e3:42:18:93:a1:18:09:a2:21: 8a:d6:1c:64:8c:4d:f3:b6:b0:dd:9f:f5:20:da:80: 96:3d:59:4e:a3:e1:ff:39:b2:4e:d4:81:3f:06:4e: 19:12:74:e4:7b:7e:ca:a6:e5:02:63:0a:a2:17:3d: 40:79:43:a7:bd:85:28:93:a6:aa:a1:b3:f7:e2:0b: ac:6c:cc:67:bd:8b:ff:33:28:91:4c:66:81:ed:6e: 85:94:03:df:7a:8b:77:3a:94:a3:c1:91:c7:60:b0: e4:fe:c3:9e:ca:a8:cb:ce:ac:7b:48:fb:74:13:38: 08:78:6a:b1:c5:f1:6f:51:ec:a6:38:8e:61:15:02: 65:32:12:a7:35:cc:de:9b:cf:67:93:ea:c2:35:dd: fd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9E:77:E5:43:B0:59:A7:6A:69:75:40:B5:05:F5:EB:D8:BE:BD:60 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:6d:96:f8:f0:4b:c0:b8:44:37:ad:ec:a6:de:37:2e:38:e9: 22:bd:34:22:2c:dd:e9:de:ad:68:2d:da:2a:82:6a:e8:ba:77: aa:30:2d:65:de:f2:18:2a:df:d5:85:f2:93:c6:85:bf:df:27: de:8e:e4:34:aa:0e:6b:d8:95:20:c2:7b:06:08:db:16:4b:9c: b2:dd:29:5b:48:73:87:fe:0a:c1:a9:f2:49:33:f9:56:ba:9c: 75:d7:2d:2e:47:34:56:bf:7b:e2:18:4b:20:06:ac:3c:77:f5: f8:85:f3:26:70:65:f6:92:fa:e3:de:e5:ff:72:f0:cd:6f:26: 2d:4a:48:e0:9b:f4:39:dc:5f:a2:0a:ec:14:0b:53:28:ef:1a: 95:35:e6:bb:b0:5f:fc:59:74:85:5e:fb:c3:fb:d3:58:6e:e9: f7:6b:a6:13:4e:ad:85:7b:16:5b:55:04:c8:13:77:e5:24:49: ff:ba:9b:18:b2:4c:b4:91:cd:8c:bd:59:29:a8:9e:22:22:2e: d2:b7:22:9b:cd:df:02:b6:6f:c8:63:26:ac:58:c4:6d:56:04: 35:ed:90:ca:18:2b:b5:c3:6d:08:8b:dd:63:9a:8f:22:56:d6: a2:4d:0a:2f:a0:04:c2:a9:aa:77:f7:a2:53:b5:3a:65:e1:00: b6:7f:11:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwODIzMDExMDI4WhcNMjUwODMwMDExMDI4WjAYMRYwFAYD VQQDEw02OGE5MTUwNC0xZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9jh3553XLp7MQrO/7L8ztUJVmkTRC/wYsUzWQEHsyTOU+TpNFZLGyk2uTadE g4Lpp5EoANkyl12t+tI+UXNZIP9fXCkfU6gzmQ5X4O8I7B16UmT4CULGDbQEyHSW t7WSmsivtGxUZaHaEAaKwK7jQhiToRgJoiGK1hxkjE3ztrDdn/Ug2oCWPVlOo+H/ ObJO1IE/Bk4ZEnTke37KpuUCYwqiFz1AeUOnvYUok6aqobP34gusbMxnvYv/MyiR TGaB7W6FlAPfeot3OpSjwZHHYLDk/sOeyqjLzqx7SPt0EzgIeGqxxfFvUeymOI5h FQJlMhKnNczem89nk+rCNd39iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAued+VD sFmnaml1QLUF9evYvr1gMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6bZb48EvAuEQ3reym3jcuOOkivTQiLN3p3q1oLdoqgmrouneqMC1l 3vIYKt/VhfKTxoW/3yfejuQ0qg5r2JUgwnsGCNsWS5yy3SlbSHOH/grBqfJJM/lW upx11y0uRzRWv3viGEsgBqw8d/X4hfMmcGX2kvrj3uX/cvDNbyYtSkjgm/Q53F+i CuwUC1Mo7xqVNea7sF/8WXSFXvvD+9NYbun3a6YTTq2FexZbVQTIE3flJEn/upsY sky0kc2MvVkpqJ4iIi7StyKbzd8Ctm/IYyasWMRtVgQ17ZDKGCu1w20Ii91jmo8i VtaiTQovoATCqap396JTtTpl4QC2fxEm -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:04 2025 by rpki-client