$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: 2yGyNYlJ9RDgAe4dHPk8ZBMLjK5qB6A4iPA5gGah1gI= Subject key identifier: C1:FC:F7:5C:EB:B4:4D:38:BD:4E:DD:5C:3F:E1:2A:C4:30:B0:29:78 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C57 Signing time: Fri 22 Aug 2025 18:39:16 +0000 Manifest this update: Fri 22 Aug 2025 18:39:16 +0000 Manifest next update: Fri 29 Aug 2025 18:39:16 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: 4cmhoISJ9F3hvRPDNIbmMGJ18d0cFcvTcVVqxTa6SfA=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Aug 22 18:39:16 2025 GMT Not After : Aug 29 18:39:16 2025 GMT Subject: CN=68a8b954-147a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:de:92:c0:f1:98:87:27:60:c0:46:aa:5a:82: 04:06:0e:44:c0:86:52:37:22:68:bd:94:93:de:e0: 86:7a:8a:8d:da:cc:24:6f:92:72:3b:62:6e:61:2d: 97:a3:e4:6f:61:3a:75:22:e0:39:7e:bc:11:42:6f: 0a:c4:f2:30:21:c5:20:83:4b:91:2b:97:27:57:45: 99:e0:8d:0b:f3:ee:26:af:65:57:b3:13:90:6d:f6: 92:8c:96:c2:5e:c9:cd:4c:8e:f7:2e:55:c8:18:47: 7b:23:a8:6c:65:29:7f:02:3a:86:bc:37:49:29:07: 5a:2d:e5:a6:f8:c9:30:ef:06:7b:7a:43:38:58:c2: 49:3d:ca:f4:82:3d:ce:54:97:d8:a1:63:e8:51:01: 68:9b:71:3d:08:80:e8:29:97:62:e5:48:04:35:d9: 6c:ea:3c:2d:64:40:7e:bd:ca:a9:c3:88:db:32:b0: b4:b2:e9:db:44:fb:9d:20:b7:27:6d:22:7d:d9:5f: f2:3b:78:a1:1a:65:3a:dd:50:c4:b3:3f:90:5d:52: 25:58:12:2a:2a:3a:64:53:b5:81:33:41:1b:23:3e: f9:07:91:aa:5e:0e:2e:b2:8d:44:74:67:c1:99:a5: 4f:1d:18:ad:f7:bd:9d:45:0c:c3:3c:0d:be:29:b3: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FC:F7:5C:EB:B4:4D:38:BD:4E:DD:5C:3F:E1:2A:C4:30:B0:29:78 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ea:ab:24:bd:c8:18:ab:9f:b1:9a:25:dd:7c:4c:95:3e:7f: 96:ce:69:0c:8e:8f:23:e9:af:db:dc:8e:90:2f:fa:61:35:45: ea:08:79:06:47:32:d6:49:66:77:0a:f7:2c:57:65:ea:4f:5f: c7:4b:42:4a:b4:94:2c:cf:4c:90:7d:36:cf:f4:2d:40:4b:b9: b0:37:0e:db:0a:56:f6:77:66:36:dd:c6:69:e0:52:03:20:e6: bf:5c:80:da:e9:2a:2b:c3:87:fe:f0:5d:4a:63:3a:b1:99:62: 6c:90:8c:77:38:51:49:5c:c1:58:c4:bb:dd:55:54:b3:70:e3: 81:d7:74:22:b7:d8:61:36:5c:5e:ba:ae:36:61:27:28:cf:44: c2:0b:5d:68:89:cb:41:24:24:bd:1f:8c:72:76:1d:c6:b2:19: 02:e6:93:41:2b:41:6c:99:29:ab:9a:25:a5:a9:38:ae:f2:36: 89:43:8f:aa:91:c3:f5:69:82:2c:64:18:e1:6f:70:16:b5:ce: 33:60:8b:50:42:f3:e7:f6:29:06:c8:70:e7:5c:dd:74:74:27: 26:16:64:63:8b:4e:92:81:84:1f:5c:b0:47:7f:cb:38:08:4b: 06:03:27:d0:72:04:1f:5a:08:a2:bc:89:fb:bc:68:1a:25:d3: 9a:08:9b:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwODIyMTgzOTE2WhcNMjUwODI5MTgzOTE2WjAYMRYwFAYD VQQDEw02OGE4Yjk1NC0xNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N6SwPGYhydgwEaqWoIEBg5EwIZSNyJovZST3uCGeoqN2swkb5JyO2JuYS2X o+RvYTp1IuA5frwRQm8KxPIwIcUgg0uRK5cnV0WZ4I0L8+4mr2VXsxOQbfaSjJbC XsnNTI73LlXIGEd7I6hsZSl/AjqGvDdJKQdaLeWm+Mkw7wZ7ekM4WMJJPcr0gj3O VJfYoWPoUQFom3E9CIDoKZdi5UgENdls6jwtZEB+vcqpw4jbMrC0sunbRPudILcn bSJ92V/yO3ihGmU63VDEsz+QXVIlWBIqKjpkU7WBM0EbIz75B5GqXg4uso1EdGfB maVPHRit972dRQzDPA2+KbMo8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMH891zr tE04vU7dXD/hKsQwsCl4MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr6qskvcgYq5+xmiXdfEyVPn+WzmkMjo8j6a/b3I6QL/phNUXqCHkG RzLWSWZ3CvcsV2XqT1/HS0JKtJQsz0yQfTbP9C1AS7mwNw7bClb2d2Y23cZp4FID IOa/XIDa6Sorw4f+8F1KYzqxmWJskIx3OFFJXMFYxLvdVVSzcOOB13Qit9hhNlxe uq42YScoz0TCC11oictBJCS9H4xydh3GshkC5pNBK0FsmSmrmiWlqTiu8jaJQ4+q kcP1aYIsZBjhb3AWtc4zYItQQvPn9ikGyHDnXN10dCcmFmRji06SgYQfXLBHf8s4 CEsGAyfQcgQfWgiivIn7vGgaJdOaCJsS -----END CERTIFICATE-----Generated at Sat Aug 23 20:57:39 2025 by rpki-client