$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: sTmN6X4HtxWSmKmYx4231/yLADWTWG2z8J6v0Ibto1I= Subject key identifier: 8D:B2:89:9D:F8:46:85:C2:05:5C:F7:85:2E:23:D9:BE:FB:3B:B8:CE Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 1B Signing time: Fri 04 Jul 2025 07:13:27 +0000 Manifest this update: Fri 04 Jul 2025 07:13:27 +0000 Manifest next update: Fri 11 Jul 2025 07:13:27 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: IFzQyFGAI9DBQMC9wkik5Oj4uv4W1y43Exi+XptUUOo=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: Rm2y9XYNOuLaJLPo5EgOIcrmYm6wYWaPwijgwTBKrVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Jul 4 07:13:27 2025 GMT Not After : Jul 11 07:13:27 2025 GMT Subject: CN=68677f17-d73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4f:01:e3:08:74:76:b6:de:1b:07:f4:e8:22: 4a:a2:bb:35:9d:c9:d7:73:98:fc:f9:d5:0e:fb:3b: dc:92:c9:16:3c:10:c4:46:71:14:7f:a8:9c:e2:35: e5:8c:c3:96:6a:9b:b5:09:1b:28:4b:97:d7:24:f9: 9e:56:c5:e3:c9:1e:62:2d:9f:7f:d9:39:38:e1:b9: bf:45:66:81:d0:25:f2:3c:e3:6d:a9:73:92:33:cf: 6f:51:21:bd:0a:02:c3:39:80:a4:17:8d:31:ac:67: c3:07:32:35:a0:7d:c5:db:28:04:18:18:b0:77:29: 46:9e:b2:50:83:52:4c:b4:a2:04:bb:0c:2f:6b:6a: fd:68:57:2e:19:d4:72:65:ea:1f:07:6d:a0:81:22: 6f:c4:b2:51:1e:5e:70:37:4f:23:ac:0c:99:a0:9f: 2d:2f:22:48:88:67:b3:34:42:f6:f1:99:8f:f1:2d: 8c:b0:f9:5c:e4:16:6c:3c:aa:f7:60:67:20:c2:56: db:3a:e4:dd:76:af:00:fc:6b:17:66:fa:d9:f2:88: a1:e2:9b:39:5c:9b:04:40:27:35:b6:fb:76:3c:2d: 87:b2:db:dc:71:47:21:75:60:05:9a:2f:96:d1:11: 1c:66:1e:a9:2e:f8:3c:18:aa:a6:ff:2c:ea:7f:b0: ed:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B2:89:9D:F8:46:85:C2:05:5C:F7:85:2E:23:D9:BE:FB:3B:B8:CE X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:81:cd:6c:26:aa:5c:dd:9c:68:30:f6:37:93:37:e0:d9:ee: 79:08:aa:69:c6:42:6a:41:f1:60:79:94:8f:a1:b9:4c:c4:56: 45:f2:42:78:cc:65:2e:b8:24:be:e0:83:0c:de:85:a2:b9:b9: ab:b2:44:6e:23:34:02:be:af:3b:ba:0f:c7:bb:80:a5:f4:18: 0e:9c:5e:46:86:e9:06:02:50:bc:b1:3d:7b:2e:cd:f4:58:06: ba:3c:43:d5:49:f3:cd:9a:68:92:23:d2:f8:15:6f:b5:83:07: b1:c8:f2:da:96:c4:37:89:4c:9b:3c:08:74:be:fd:21:53:2b: 3f:30:4a:05:c5:4c:97:9c:48:b2:65:34:f6:50:3a:ac:f4:b6: 48:a7:dd:f4:93:8d:c7:b2:f2:67:03:5c:21:73:92:0b:ff:de: b2:a5:6b:a2:5d:b0:21:b4:54:92:79:d8:69:5e:be:1b:60:fa: d1:39:15:eb:67:8a:a8:38:e5:85:47:64:d3:bc:a8:e7:92:4a: 48:72:7f:e0:fd:e0:c0:d3:ec:a5:bf:ba:f0:ce:ea:0d:48:72: 04:a0:ac:83:24:0c:5a:89:44:2f:a7:e9:dd:0d:56:bd:83:75: a3:51:0d:6a:89:70:8f:7a:5c:a7:5e:5c:44:5e:ce:c9:3e:a4: a1:d5:cf:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTA3MDQwNzEzMjdaFw0yNTA3MTEwNzEzMjdaMBgxFjAUBgNV BAMTDTY4Njc3ZjE3LWQ3M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOTwHjCHR2tt4bB/ToIkqiuzWdyddzmPz51Q77O9ySyRY8EMRGcRR/qJziNeWM w5Zqm7UJGyhLl9ck+Z5WxePJHmItn3/ZOTjhub9FZoHQJfI8422pc5Izz29RIb0K AsM5gKQXjTGsZ8MHMjWgfcXbKAQYGLB3KUaeslCDUky0ogS7DC9rav1oVy4Z1HJl 6h8HbaCBIm/EslEeXnA3TyOsDJmgny0vIkiIZ7M0QvbxmY/xLYyw+VzkFmw8qvdg ZyDCVts65N12rwD8axdm+tnyiKHimzlcmwRAJzW2+3Y8LYey29xxRyF1YAWaL5bR ERxmHqku+DwYqqb/LOp/sO3lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjbKJnfhG hcIFXPeFLiPZvvs7uM4wHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKKBzWwmqlzdnGgw9jeTN+DZ7nkIqmnGQmpB8WB5lI+huUzEVkXyQnjM ZS64JL7ggwzehaK5uauyRG4jNAK+rzu6D8e7gKX0GA6cXkaG6QYCULyxPXsuzfRY Bro8Q9VJ882aaJIj0vgVb7WDB7HI8tqWxDeJTJs8CHS+/SFTKz8wSgXFTJecSLJl NPZQOqz0tkin3fSTjcey8mcDXCFzkgv/3rKla6JdsCG0VJJ52Glevhtg+tE5Fetn iqg45YVHZNO8qOeSSkhyf+D94MDT7KW/uvDO6g1IcgSgrIMkDFqJRC+n6d0NVr2D daNRDWqJcI96XKdeXERezsk+pKHVz+o= -----END CERTIFICATE-----Generated at Fri Jul 4 12:05:30 2025 by rpki-client