$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft File: hDGOgbLln2EUsQL6RQgzfekVw5M.mft (raw, json) Hash identifier: 2ACJE41ByoE7Q8q7/z/FLnsQOGhcxh7ouqYdY9yCFRk= Subject key identifier: CA:D9:DD:D1:B3:33:D4:5F:A9:3B:DE:EE:B2:38:B4:DD:9E:67:18:22 Authority key identifier: 84:31:8E:81:B2:E5:9F:61:14:B1:02:FA:45:08:33:7D:E9:15:C3:93 Certificate issuer: /CN=A9176632/serialNumber=84318E81B2E59F6114B102FA4508337DE915C393 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft Manifest number: 18 Signing time: Sat 23 Aug 2025 08:12:00 +0000 Manifest this update: Sat 23 Aug 2025 08:11:59 +0000 Manifest next update: Sat 30 Aug 2025 08:11:59 +0000 Files and hashes: 1: hDGOgbLln2EUsQL6RQgzfekVw5M.crl (hash: gpmK0Uu0kaDcaaRQ8k0yAMCnWmz5Mh5mU6OCT9DdSJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.crl rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=84318E81B2E59F6114B102FA4508337DE915C393 Validity Not Before: Aug 23 08:11:59 2025 GMT Not After : Aug 30 08:11:59 2025 GMT Subject: CN=68a977d0-cf45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:17:de:ae:b8:6b:d6:08:a5:01:be:50:9d: ad:0f:f2:24:7c:e1:d4:08:19:93:e8:2b:19:9b:aa: fe:f1:50:05:fc:2e:6b:da:b9:6f:11:13:7b:e5:25: 62:df:8f:07:2b:e6:01:47:5d:20:ae:41:c6:9b:87: bb:1a:86:b7:f2:ff:a3:0f:20:5d:d6:11:7a:08:f1: 1b:28:7f:8f:4f:24:f6:9f:63:d0:b0:1a:d1:61:39: 0c:b5:9b:cd:13:12:35:16:2f:55:36:12:38:93:a9: 70:e7:9d:ba:cd:a9:b9:55:81:1a:94:c3:3b:08:a4: a6:1f:bb:eb:2b:4f:e2:26:9a:40:2e:36:11:38:1e: 3f:d7:1f:f0:28:54:78:01:0d:7d:ac:f1:e7:ab:c8: 03:df:6b:95:5c:ac:2a:2e:ac:b3:c0:e4:ab:0c:c2: 9d:a3:bc:8e:4e:c9:e7:d8:2f:f5:6e:e3:6e:83:c0: a0:ba:fb:33:be:a3:a5:5e:93:9c:a9:71:c7:19:6e: 66:64:67:03:ca:2c:53:ad:85:fe:b8:2a:f4:96:9c: 9e:e9:03:8d:e5:94:fe:06:ff:ee:eb:85:17:a6:e7: 38:8a:48:8f:60:9d:b4:f5:80:ef:cc:9f:da:c2:1e: ba:54:d2:ff:42:29:67:18:6f:83:89:ce:97:ab:4e: 70:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D9:DD:D1:B3:33:D4:5F:A9:3B:DE:EE:B2:38:B4:DD:9E:67:18:22 X509v3 Authority Key Identifier: keyid:84:31:8E:81:B2:E5:9F:61:14:B1:02:FA:45:08:33:7D:E9:15:C3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDGOgbLln2EUsQL6RQgzfekVw5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/AB5A87065E0D11F094762F13C4F9AE02/hDGOgbLln2EUsQL6RQgzfekVw5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:56:53:af:ab:f0:e3:be:27:81:05:83:e2:16:44:46:12:66: 72:f1:e5:0c:36:ed:e8:be:d1:83:20:dd:43:a9:ba:f9:12:cd: 12:e7:3c:19:fa:74:c7:55:9f:5e:d3:00:77:8b:a9:b5:b4:7f: df:20:b8:06:97:ec:97:cd:91:00:40:b7:03:67:fd:cd:97:69: 82:19:97:31:b1:7a:ae:2b:ac:e2:c2:b5:59:a0:99:19:46:5b: 73:7b:c0:5d:f3:21:35:23:10:8b:ed:f8:18:54:4d:34:b0:8a: b5:63:1f:f9:c9:a4:af:30:ae:45:11:5c:c5:7c:4b:12:f3:18: 36:63:14:4d:c7:c8:10:28:1c:82:f2:80:54:45:ad:a4:c6:ea: a7:c4:81:77:27:8f:ef:78:27:d8:8e:f8:43:41:e1:5d:7f:fd: 1a:46:3b:7d:21:6e:7e:7e:88:ea:8a:6b:b9:45:4e:8d:1a:82: d7:8c:b3:29:1c:96:5f:2d:14:3f:34:34:b9:2b:df:1a:f5:c2: 9a:19:59:45:2c:50:c4:e4:43:6f:3d:62:db:97:23:7e:85:52: c8:14:38:42:08:3f:57:0e:21:58:32:2f:b1:76:e9:5e:17:ad: ad:99:21:9c:7e:34:f3:17:91:5c:48:8f:b2:7a:dc:70:77:c6: b3:ad:3a:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODQzMThFODFCMkU1OUY2MTE0QjEwMkZBNDUwODMzN0RF OTE1QzM5MzAeFw0yNTA4MjMwODExNTlaFw0yNTA4MzAwODExNTlaMBgxFjAUBgNV BAMTDTY4YTk3N2QwLWNmNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTBBferrhr1gilAb5Qna0P8iR84dQIGZPoKxmbqv7xUAX8LmvauW8RE3vlJWLf jwcr5gFHXSCuQcabh7sahrfy/6MPIF3WEXoI8Rsof49PJPafY9CwGtFhOQy1m80T EjUWL1U2EjiTqXDnnbrNqblVgRqUwzsIpKYfu+srT+ImmkAuNhE4Hj/XH/AoVHgB DX2s8eeryAPfa5VcrCourLPA5KsMwp2jvI5OyefYL/Vu426DwKC6+zO+o6Vek5yp cccZbmZkZwPKLFOthf64KvSWnJ7pA43llP4G/+7rhRem5ziKSI9gnbT1gO/Mn9rC HrpU0v9CKWcYb4OJzperTnAtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUytnd0bMz 1F+pO97usji03Z5nGCIwHwYDVR0jBBgwFoAUhDGOgbLln2EUsQL6RQgzfekVw5Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0FCNUE4NzA2NUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2hER09nYkxsbjJFVXNRTDZSUWd6ZmVrVnc1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaERHT2diTGxuMkVVc1FMNlJRZ3pmZWtWdzVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0FCNUE4NzA2NUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2hER09nYkxsbjJF VXNRTDZSUWd6ZmVrVnc1TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEFWU6+r8OO+J4EFg+IWREYSZnLx5Qw27ei+0YMg3UOpuvkSzRLnPBn6 dMdVn17TAHeLqbW0f98guAaX7JfNkQBAtwNn/c2XaYIZlzGxeq4rrOLCtVmgmRlG W3N7wF3zITUjEIvt+BhUTTSwirVjH/nJpK8wrkURXMV8SxLzGDZjFE3HyBAoHILy gFRFraTG6qfEgXcnj+94J9iO+ENB4V1//RpGO30hbn5+iOqKa7lFTo0agteMsykc ll8tFD80NLkr3xr1wpoZWUUsUMTkQ289YtuXI36FUsgUOEIIP1cOIVgyL7F26V4X ra2ZIZx+NPMXkVxIj7J63HB3xrOtOvA= -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:57 2025 by rpki-client