$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: IRGjFU4mIIJa27NtUYEUvqBc5qSOPDlWJBg4kLfidCs= Subject key identifier: FC:24:FC:DA:48:A0:83:6E:F8:B8:70:40:6C:7E:7C:DC:DF:68:3D:3E Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0AA4 Signing time: Fri 22 Aug 2025 19:39:22 +0000 Manifest this update: Fri 22 Aug 2025 19:39:22 +0000 Manifest next update: Fri 29 Aug 2025 19:39:22 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: 4X5Ihx4RXB18tJBly+KIPmbf5e8a+iwhUjGAjuXJ21I=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Aug 22 19:39:22 2025 GMT Not After : Aug 29 19:39:22 2025 GMT Subject: CN=68a8c76a-570c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f9:ac:4a:56:b9:db:53:b6:1c:77:87:02:01: 84:aa:ee:66:1c:46:fc:52:0b:90:68:75:e5:ce:ce: e9:bd:80:84:f1:8a:2b:33:19:3a:4e:f2:89:25:fc: 4c:59:96:03:fd:c4:a3:c8:54:35:ea:1c:2c:51:df: d6:45:9f:b4:38:f4:e0:6c:ae:1a:00:28:7c:e9:07: 01:97:c2:35:6c:7e:c0:b3:b9:eb:6a:39:e4:e0:bc: 39:4c:f6:9e:a2:06:c6:3d:a5:05:97:35:8c:79:b6: e1:c5:0a:c3:9c:74:e7:21:2a:b5:3f:a9:8d:68:36: 75:85:eb:ef:ae:c1:4c:1c:3c:6a:c3:8a:71:32:cc: 59:07:df:52:c7:f9:9a:f7:80:fd:1f:4b:cf:90:70: c6:ad:f2:25:1a:31:76:42:e6:bf:fb:a0:66:d4:eb: 9f:9a:04:84:61:09:d2:61:41:8d:0e:ef:bd:43:17: 46:2f:e5:8d:5b:fe:94:b1:47:11:fd:d9:75:46:10: 28:8d:eb:7c:04:94:aa:69:14:d5:4b:b1:ba:53:06: 4a:63:66:78:7c:6d:01:c9:f7:dd:7c:06:4f:fa:12: 4f:1d:5e:4a:0f:3b:df:bf:1f:07:11:2b:8e:4f:46: 57:4d:70:9f:95:ff:c9:a7:39:21:39:a3:ea:f9:49: 33:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:24:FC:DA:48:A0:83:6E:F8:B8:70:40:6C:7E:7C:DC:DF:68:3D:3E X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:6b:de:30:7e:6b:a9:6d:af:20:09:cd:55:d4:85:38:3f:d1: fb:2c:66:f7:0b:f6:4f:7a:14:8e:37:ed:da:ba:03:e7:80:bb: 42:21:b0:16:22:b8:a8:cb:41:ff:05:b6:57:7e:f4:95:18:4e: 1d:b8:08:1b:9a:29:f5:db:f9:a0:61:d7:a4:f1:79:53:2c:e9: 70:69:ca:59:6a:8c:7d:49:c3:2c:8a:aa:80:a8:b5:c6:e9:21: 74:05:e8:06:bb:10:af:7e:be:79:58:06:5e:ed:8a:6b:5e:e7: ac:cd:51:c7:66:fa:eb:e3:04:93:ec:dc:5f:90:92:15:8a:9d: 5d:07:cc:b9:da:7e:8f:1c:97:57:0b:d3:1f:d3:ea:b6:31:a9: b9:4c:5f:0f:a7:ec:1c:f3:5a:41:7e:15:4a:ae:45:32:af:b0: 3d:c1:e0:30:2c:c6:1f:84:4e:e2:ad:81:82:14:cf:09:19:58: 70:02:a9:6d:e4:9c:93:93:5a:78:cf:4a:aa:20:56:28:93:6d: ac:9a:58:50:eb:a3:7a:98:bd:a8:30:12:3e:dd:c5:65:fd:1e: d9:5b:00:a8:10:b6:4b:ff:a7:60:24:10:09:26:98:61:6f:6c: 9a:2a:13:53:0c:eb:e6:a4:94:a8:ea:48:41:d4:10:07:55:2a: 02:4c:ed:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUwODIyMTkzOTIyWhcNMjUwODI5MTkzOTIyWjAYMRYwFAYD VQQDEw02OGE4Yzc2YS01NzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PmsSla521O2HHeHAgGEqu5mHEb8UguQaHXlzs7pvYCE8YorMxk6TvKJJfxM WZYD/cSjyFQ16hwsUd/WRZ+0OPTgbK4aACh86QcBl8I1bH7As7nrajnk4Lw5TPae ogbGPaUFlzWMebbhxQrDnHTnISq1P6mNaDZ1hevvrsFMHDxqw4pxMsxZB99Sx/ma 94D9H0vPkHDGrfIlGjF2Qua/+6Bm1OufmgSEYQnSYUGNDu+9QxdGL+WNW/6UsUcR /dl1RhAojet8BJSqaRTVS7G6UwZKY2Z4fG0ByffdfAZP+hJPHV5KDzvfvx8HESuO T0ZXTXCflf/JpzkhOaPq+UkzywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwk/NpI oINu+LhwQGx+fNzfaD0+MB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGa94wfmupba8gCc1V1IU4P9H7LGb3C/ZPehSON+3augPngLtCIbAW Irioy0H/BbZXfvSVGE4duAgbmin12/mgYdek8XlTLOlwacpZaox9ScMsiqqAqLXG 6SF0BegGuxCvfr55WAZe7YprXueszVHHZvrr4wST7NxfkJIVip1dB8y52n6PHJdX C9Mf0+q2Mam5TF8Pp+wc81pBfhVKrkUyr7A9weAwLMYfhE7irYGCFM8JGVhwAqlt 5JyTk1p4z0qqIFYok22smlhQ66N6mL2oMBI+3cVl/R7ZWwCoELZL/6dgJBAJJphh b2yaKhNTDOvmpJSo6khB1BAHVSoCTO2M -----END CERTIFICATE-----Generated at Sat Aug 23 20:28:46 2025 by rpki-client