$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: CcJPq8kxCemN7z3Hfxzwah++ZpwLYcq6qvVHo7fcBNY= Subject key identifier: 03:69:93:80:2A:B8:3D:CA:11:95:74:05:6E:C0:7B:28:B1:F1:55:68 Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0A90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0A8A Signing time: Wed 02 Jul 2025 19:47:54 +0000 Manifest this update: Wed 02 Jul 2025 19:47:53 +0000 Manifest next update: Wed 09 Jul 2025 19:47:53 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: bJ9E3e61fsGyYgWkbiHXdEYlhH3ZcznsDtw7pFaWAhE=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2704 (0xa90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Jul 2 19:47:53 2025 GMT Not After : Jul 9 19:47:53 2025 GMT Subject: CN=68658ce9-abb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1a:8f:55:61:00:c8:8b:fe:32:0e:42:15:fe: 10:cc:79:fa:56:c1:76:8c:7c:65:96:cc:2c:2a:c9: 2f:c6:a8:28:0c:7b:c4:0b:60:cc:6a:84:9d:a1:d7: 4c:12:38:58:f1:32:1a:62:53:ba:60:b2:c6:70:85: 0d:b1:8f:f7:52:2a:1f:a6:1a:c2:24:f3:d5:ec:7a: f4:68:c6:19:4f:86:45:f3:83:df:f8:6f:86:da:9b: 8d:36:18:b6:79:d9:56:72:12:b5:08:91:3f:72:04: 97:0b:19:c3:85:ab:99:73:2e:ad:d7:da:95:ae:12: 01:28:ec:3b:2d:3d:01:6e:5f:3f:6d:e2:74:69:55: 43:b8:b1:9e:37:5f:b4:e3:de:77:2d:ef:77:6c:ee: 21:a6:8c:23:ca:97:ba:5f:0a:59:7f:3b:50:b6:5f: 98:92:19:b5:46:92:e0:20:4e:2d:0b:24:92:3b:f6: e6:a7:18:1b:bd:3b:c8:4e:66:9b:15:56:c1:f1:31: e2:d3:6a:10:5f:a6:eb:d5:72:4e:49:64:01:bc:56: bc:e8:d3:d4:8b:e2:21:a0:d7:af:62:6b:fc:ba:eb: 86:c3:c8:f9:f9:de:2e:df:bd:2e:cd:1d:59:75:1b: 85:bf:9a:78:74:e0:92:dc:9a:5e:9c:ec:6c:5c:9a: bf:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:69:93:80:2A:B8:3D:CA:11:95:74:05:6E:C0:7B:28:B1:F1:55:68 X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:da:ff:d5:f6:ca:14:f8:18:17:ad:f0:a2:bf:fc:e0:20:58: a5:7c:66:71:67:51:09:6f:c5:49:fd:a0:e8:46:5a:2a:2a:d2: 6c:f1:f9:1e:40:5d:e6:ef:58:44:75:fe:59:02:57:a2:1e:6e: 10:77:ad:8f:a5:48:c0:30:dd:3d:23:93:5b:a2:56:72:a0:0c: 29:dc:f5:a1:5c:ab:a0:60:9e:7c:60:6b:18:5d:53:02:64:42: c0:04:d6:a1:13:68:f4:73:21:f0:7b:5b:0e:d7:79:cd:fd:26: ed:23:db:11:e4:f4:ae:ef:16:15:00:51:b2:b6:63:0b:a6:84: 4f:6b:7c:b0:f9:38:9a:5b:5e:bb:63:90:5f:05:ec:7c:86:2b: 17:15:9d:83:a3:3d:a6:5d:56:19:e7:b2:fb:1d:b0:e8:ea:87: 63:54:98:da:16:7b:16:4e:07:a4:42:93:a9:b5:e1:e3:34:6e: 8a:b8:7d:2b:dc:52:68:70:3d:62:3f:c5:00:8b:ea:f5:59:7c: fb:3d:de:e4:c3:e7:d0:2a:e1:65:80:00:87:13:83:66:eb:94: 0a:5c:07:18:98:c0:28:db:73:82:31:e6:64:bc:1e:27:97:73: f4:4a:0c:b8:f5:cd:e3:cb:8a:54:02:db:65:d8:f8:11:47:49: 2f:59:50:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUwNzAyMTk0NzUzWhcNMjUwNzA5MTk0NzUzWjAYMRYwFAYD VQQDEw02ODY1OGNlOS1hYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RqPVWEAyIv+Mg5CFf4QzHn6VsF2jHxllswsKskvxqgoDHvEC2DMaoSdoddM EjhY8TIaYlO6YLLGcIUNsY/3UiofphrCJPPV7Hr0aMYZT4ZF84Pf+G+G2puNNhi2 edlWchK1CJE/cgSXCxnDhauZcy6t19qVrhIBKOw7LT0Bbl8/beJ0aVVDuLGeN1+0 4953Le93bO4hpowjype6XwpZfztQtl+Ykhm1RpLgIE4tCySSO/bmpxgbvTvITmab FVbB8THi02oQX6br1XJOSWQBvFa86NPUi+IhoNevYmv8uuuGw8j5+d4u370uzR1Z dRuFv5p4dOCS3JpenOxsXJq/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANpk4Aq uD3KEZV0BW7Aeyix8VVoMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA2v/V9soU+BgXrfCiv/zgIFilfGZxZ1EJb8VJ/aDoRloqKtJs8fke QF3m71hEdf5ZAleiHm4Qd62PpUjAMN09I5NbolZyoAwp3PWhXKugYJ58YGsYXVMC ZELABNahE2j0cyHwe1sO13nN/SbtI9sR5PSu7xYVAFGytmMLpoRPa3yw+TiaW167 Y5BfBex8hisXFZ2Doz2mXVYZ57L7HbDo6odjVJjaFnsWTgekQpOpteHjNG6KuH0r 3FJocD1iP8UAi+r1WXz7Pd7kw+fQKuFlgACHE4Nm65QKXAcYmMAo23OCMeZkvB4n l3P0Sgy49c3jy4pUAttl2PgRR0kvWVCv -----END CERTIFICATE-----Generated at Thu Jul 3 09:52:26 2025 by rpki-client