$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: ZD3zjSYW3poEReorU31JqcVRcqyzM5MzJ/uNLI4yALQ= Subject key identifier: AE:29:1C:F2:33:91:15:7E:3D:7A:42:C5:61:83:E5:55:BB:82:83:4F Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0103 Signing time: Sat 23 Aug 2025 05:12:12 +0000 Manifest this update: Sat 23 Aug 2025 05:12:12 +0000 Manifest next update: Sat 30 Aug 2025 05:12:12 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: kg+LxHG2QHLuXQnPSHtoYUWr18rPyFRSeMXkKQBlvvs=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Aug 23 05:12:12 2025 GMT Not After : Aug 30 05:12:12 2025 GMT Subject: CN=68a94dac-2a0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:43:70:4d:3b:c3:7b:99:e2:f3:57:2d:61:ef: d3:cd:5c:41:2e:1e:43:27:07:96:f6:02:42:c0:f7: 3a:be:3e:5e:a3:cf:94:70:ba:2f:c3:f5:c9:74:5b: 34:6e:7f:08:8b:b4:9d:fc:fa:69:c4:5c:4b:05:a7: d1:d9:19:bb:ff:a2:df:b0:9e:a1:30:24:df:ad:5e: 61:a4:a1:53:ab:2a:e4:9c:a2:9a:5f:7d:05:74:f0: 2b:1e:fc:ab:3d:e7:02:fe:6a:ee:5c:69:ea:e5:7f: 63:cb:82:fd:0f:ca:03:b2:17:03:aa:3f:ff:0e:61: 0a:de:32:e2:02:da:73:34:81:c7:0d:20:3b:26:f9: d9:39:ee:d2:c4:24:14:eb:26:62:19:07:00:19:45: 0f:ea:ae:aa:4d:d5:9d:6f:07:83:52:62:59:50:a8: 8b:d6:9d:8b:79:80:59:c1:72:9a:cd:6b:4e:10:89: 52:05:f5:d4:8f:55:78:51:de:7e:4a:ba:d5:a1:76: b8:d4:d2:27:0a:19:7c:f3:b3:2e:e7:7e:d7:36:29: 57:ce:3d:3f:4c:fc:fa:8e:9b:7f:e6:d4:6d:ac:32: a4:95:3b:95:2e:61:1a:e4:b3:35:b0:dc:1c:5e:ea: 41:d3:91:94:f1:83:2f:16:37:cd:9f:16:0d:1b:90: 23:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:29:1C:F2:33:91:15:7E:3D:7A:42:C5:61:83:E5:55:BB:82:83:4F X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:7e:3b:54:7f:02:31:96:84:c0:41:46:60:12:1f:33:c2:53: 54:5f:80:51:68:26:ad:30:ba:59:8c:ad:03:a2:93:b5:af:27: d2:f2:9e:7a:89:8e:63:03:1a:77:80:3a:f5:64:09:7c:bd:29: 9e:5a:2e:51:cc:c8:88:e4:bd:e4:e4:20:a0:24:ed:bd:bc:ea: c6:d4:80:0f:77:07:4f:40:37:43:a7:81:62:2e:e9:43:4e:02: c3:bb:11:92:8e:05:b3:e4:fc:0e:dc:c4:e5:fd:80:a6:e6:15: b6:12:db:e4:08:a9:e9:06:3a:f7:d5:9e:f3:19:ed:8e:34:11: d4:da:a8:0a:09:71:08:7d:b8:ce:3b:ad:86:c3:20:18:a9:41: c2:76:c4:cb:ab:a7:15:77:a1:02:02:25:96:df:44:39:1f:5a: 20:41:1d:4a:3f:32:22:d6:e2:08:97:e2:ed:c8:2a:e0:42:97: af:54:58:37:d0:cc:dd:3f:ec:6d:c4:1f:f4:d9:75:28:39:a3: 14:75:ea:89:e4:2e:e3:b1:ff:b1:7e:54:9f:c7:64:b5:db:22: e2:16:6c:5b:7b:ad:ea:8f:4f:02:d0:de:cd:fb:e0:f3:5f:e7: db:bb:1e:c3:03:50:a8:c3:3b:55:8a:49:79:f3:c7:be:51:b6: 0c:13:c4:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwODIzMDUxMjEyWhcNMjUwODMwMDUxMjEyWjAYMRYwFAYD VQQDEw02OGE5NGRhYy0yYTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUNwTTvDe5ni81ctYe/TzVxBLh5DJweW9gJCwPc6vj5eo8+UcLovw/XJdFs0 bn8Ii7Sd/PppxFxLBafR2Rm7/6LfsJ6hMCTfrV5hpKFTqyrknKKaX30FdPArHvyr PecC/mruXGnq5X9jy4L9D8oDshcDqj//DmEK3jLiAtpzNIHHDSA7JvnZOe7SxCQU 6yZiGQcAGUUP6q6qTdWdbweDUmJZUKiL1p2LeYBZwXKazWtOEIlSBfXUj1V4Ud5+ SrrVoXa41NInChl887Mu537XNilXzj0/TPz6jpt/5tRtrDKklTuVLmEa5LM1sNwc XupB05GU8YMvFjfNnxYNG5AjpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4pHPIz kRV+PXpCxWGD5VW7goNPMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSfjtUfwIxloTAQUZgEh8zwlNUX4BRaCatMLpZjK0DopO1ryfS8p56 iY5jAxp3gDr1ZAl8vSmeWi5RzMiI5L3k5CCgJO29vOrG1IAPdwdPQDdDp4FiLulD TgLDuxGSjgWz5PwO3MTl/YCm5hW2EtvkCKnpBjr31Z7zGe2ONBHU2qgKCXEIfbjO O62GwyAYqUHCdsTLq6cVd6ECAiWW30Q5H1ogQR1KPzIi1uIIl+LtyCrgQpevVFg3 0MzdP+xtxB/02XUoOaMUdeqJ5C7jsf+xflSfx2S12yLiFmxbe63qj08C0N7N++Dz X+fbux7DA1CowztVikl588e+UbYME8TG -----END CERTIFICATE-----Generated at Sat Aug 23 10:44:28 2025 by rpki-client