$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: tLSG9kWqMo7BgvFG8Maqc2VA+lWTBXXv+UHRCFo/A9c= Subject key identifier: 09:FC:E4:AF:3F:54:4D:52:90:A4:C6:82:CE:3A:C8:42:9E:29:01:FE Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 0622 Signing time: Fri 22 Aug 2025 22:57:24 +0000 Manifest this update: Fri 22 Aug 2025 22:57:23 +0000 Manifest next update: Fri 29 Aug 2025 22:57:23 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: k2CzW3QvUodN2ZZZQL4ncNxC2tWPpYWSD2HQON64BU0=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Aug 22 22:57:23 2025 GMT Not After : Aug 29 22:57:23 2025 GMT Subject: CN=68a8f5d4-bdb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:af:fd:f3:9b:ce:28:69:af:c2:a2:08:56:e1: 3b:c7:cc:2b:a5:43:af:fa:d7:65:8d:1e:7c:2e:d8: 89:f4:3a:85:53:03:ee:9e:be:9b:43:34:d5:36:63: 68:76:a0:b0:8f:99:34:ef:f2:a6:0d:0c:bf:7b:c1: 1f:33:5b:20:54:2b:6e:ec:54:76:ff:17:27:99:d6: 87:9e:08:8b:95:f9:3f:ea:f4:6c:87:2b:4c:39:0d: fe:a3:3d:2e:02:a8:00:b5:5f:df:e6:cd:04:15:24: 90:02:95:26:b6:6d:5d:b3:76:26:1c:05:41:c7:1a: 9d:f3:19:75:f9:6f:03:43:96:da:80:38:e7:cc:fb: b3:12:7a:0b:5b:2f:03:bb:2e:cf:73:5c:ce:89:6d: 22:9c:64:16:18:cc:6f:33:4f:08:c6:cc:46:8d:3f: b3:11:09:d8:54:be:01:5c:24:ea:ee:7a:54:8e:bc: 23:77:f3:d6:67:83:ff:44:7f:77:13:5e:74:25:f2: 9e:52:86:a5:fb:f0:a1:75:69:0d:f8:82:0f:a0:46: 14:1e:02:cc:bd:36:75:c1:8b:2b:e3:83:6a:b6:16: 96:76:7b:9e:3f:2a:53:63:6d:6d:0c:e4:39:fe:af: 12:0b:9f:01:7d:a8:cf:22:c8:d5:2d:e5:c7:9e:a2: 10:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FC:E4:AF:3F:54:4D:52:90:A4:C6:82:CE:3A:C8:42:9E:29:01:FE X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:79:b6:f7:4c:5e:bf:ab:e3:99:4f:b0:ee:09:ce:f9:12:ed: 88:b1:42:b2:e6:61:ad:41:7f:ad:a7:f3:62:a4:4d:df:42:9c: 23:d3:3b:ad:6e:65:03:c0:5b:e3:cf:6f:e0:35:9d:6f:c4:5e: 2e:3b:11:c7:bb:e8:4f:e3:9e:31:7a:e4:89:17:79:e0:3d:d2: 73:0b:a2:cf:14:9a:6f:5e:79:dc:48:ca:91:db:cf:d3:bb:41: 9a:e1:e2:38:7c:99:46:20:f3:70:68:92:8d:bf:f8:87:cb:f9: 90:70:3f:de:cd:60:9e:e6:6a:27:49:23:af:eb:4a:08:a4:a2: a3:71:34:ae:60:ca:02:36:8e:f8:ce:91:51:29:ca:93:33:47: 5a:34:3d:2f:20:c3:45:10:b9:92:85:50:9a:46:5e:a0:72:c9: af:4e:e6:5c:51:54:63:92:bd:cf:f6:82:ae:cc:4d:f1:c0:3e: e7:7e:a6:fd:7c:bc:ae:ec:14:08:6e:78:43:58:52:2c:5e:57: ef:f0:7a:4b:ff:4d:33:04:df:4a:aa:d0:b2:48:e1:09:aa:41: ae:6c:21:47:4d:b8:72:6d:bb:d2:3a:ae:f2:18:03:00:2e:f4: b0:1b:3e:55:57:bb:51:55:c6:97:04:9c:1b:60:b3:d5:9f:09: 4e:78:6d:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwODIyMjI1NzIzWhcNMjUwODI5MjI1NzIzWjAYMRYwFAYD VQQDEw02OGE4ZjVkNC1iZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq/985vOKGmvwqIIVuE7x8wrpUOv+tdljR58LtiJ9DqFUwPunr6bQzTVNmNo dqCwj5k07/KmDQy/e8EfM1sgVCtu7FR2/xcnmdaHngiLlfk/6vRshytMOQ3+oz0u AqgAtV/f5s0EFSSQApUmtm1ds3YmHAVBxxqd8xl1+W8DQ5bagDjnzPuzEnoLWy8D uy7Pc1zOiW0inGQWGMxvM08IxsxGjT+zEQnYVL4BXCTq7npUjrwjd/PWZ4P/RH93 E150JfKeUoal+/ChdWkN+IIPoEYUHgLMvTZ1wYsr44NqthaWdnuePypTY21tDOQ5 /q8SC58BfajPIsjVLeXHnqIQowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAn85K8/ VE1SkKTGgs46yEKeKQH+MB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANebb3TF6/q+OZT7DuCc75Eu2IsUKy5mGtQX+tp/NipE3fQpwj0zut bmUDwFvjz2/gNZ1vxF4uOxHHu+hP454xeuSJF3ngPdJzC6LPFJpvXnncSMqR28/T u0Ga4eI4fJlGIPNwaJKNv/iHy/mQcD/ezWCe5monSSOv60oIpKKjcTSuYMoCNo74 zpFRKcqTM0daND0vIMNFELmShVCaRl6gcsmvTuZcUVRjkr3P9oKuzE3xwD7nfqb9 fLyu7BQIbnhDWFIsXlfv8HpL/00zBN9KqtCySOEJqkGubCFHTbhybbvSOq7yGAMA LvSwGz5VV7tRVcaXBJwbYLPVnwlOeG04 -----END CERTIFICATE-----Generated at Sat Aug 23 18:44:29 2025 by rpki-client