$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft File: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft (raw, json) Hash identifier: h7m8RuDnF6X03tjgFSqxBhvvr91frOc90L+9rqcBLOA= Subject key identifier: 5E:AB:9E:E5:47:BF:82:04:A8:6F:DE:2F:3D:15:DF:FB:47:4B:80:3A Authority key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 Certificate issuer: /CN=A919DC79/serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Certificate serial: 0BDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft Manifest number: 0BCC Signing time: Fri 22 Aug 2025 19:04:00 +0000 Manifest this update: Fri 22 Aug 2025 19:04:00 +0000 Manifest next update: Fri 29 Aug 2025 19:04:00 +0000 Files and hashes: 1: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl (hash: be/ZZeXIvdwaFfxpjIXy8opzenrSieJ8iJw6mgeayy0=) 2: 7AC6992E655411F088401528C4F9AE02.roa (hash: uIcNx9LJmFIiFy1R//MYnp48SjiCyMS3BH2WDp6mT4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Validity Not Before: Aug 22 19:04:00 2025 GMT Not After : Aug 29 19:04:00 2025 GMT Subject: CN=68a8bf20-9a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e5:38:1f:29:b4:84:2f:1e:da:7b:66:6a:b2: b7:bc:e4:8c:b8:e1:59:db:4b:b4:7b:ea:16:67:09: 4c:77:3b:8a:eb:3e:e6:20:7a:5c:e2:1f:2e:6b:83: dd:f1:b0:b9:0e:d4:bd:6f:69:38:1d:21:c8:69:db: d0:01:9c:90:d2:78:dc:43:64:0f:30:4d:5b:39:76: 29:3b:75:bc:04:4b:db:71:a5:36:8e:bd:94:06:2f: 57:00:79:52:01:e9:39:45:81:c8:92:3b:49:01:76: 03:45:fb:ea:57:ba:1b:f8:7b:52:d0:04:39:3e:1a: 10:ee:7d:5f:97:d2:70:d9:d6:e2:e8:21:24:4a:0a: 36:a3:19:89:87:b0:36:01:11:f6:b3:ba:1a:a8:cc: 51:11:75:c9:e8:71:99:3e:4e:e5:58:c5:5e:13:6b: 9f:e5:51:cc:71:3f:64:e9:a1:f3:c9:25:76:8d:7c: 57:da:89:52:4b:e0:bf:35:8f:de:da:c7:bd:9f:d9: 54:24:a3:10:95:2d:a2:35:9d:7c:5b:77:35:ac:f3: 23:dc:74:3a:bc:11:f0:dc:0b:a5:a3:eb:15:02:f3: ee:f9:3e:3c:3b:57:50:4d:52:3c:c7:81:e5:b7:c9: eb:e0:c9:d5:8f:31:d4:83:81:33:58:2f:0a:b5:f1: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AB:9E:E5:47:BF:82:04:A8:6F:DE:2F:3D:15:DF:FB:47:4B:80:3A X509v3 Authority Key Identifier: keyid:76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:a7:9c:09:1f:3d:de:b5:07:14:20:49:7f:bc:c5:4f:23:d5: bd:3a:3d:d5:48:0e:da:4e:82:6e:7e:0b:ee:9c:fe:0b:75:48: b5:ea:a2:e1:81:28:04:ca:ad:01:af:59:55:c6:78:cc:30:2a: 89:66:04:c7:28:f2:7d:df:7d:33:15:dc:6a:b2:a2:90:5e:35: 4a:4a:14:f8:2b:f7:df:1d:c5:ac:b0:8f:fc:a4:10:bd:d9:15: d8:c6:7e:49:bd:3d:62:71:40:88:80:db:c1:c2:fb:08:e8:ee: 1a:26:c5:3e:5c:16:a5:3f:a8:d1:9b:ee:61:67:8c:8f:f4:80: cc:1b:37:3a:dd:3c:38:eb:3c:39:6f:48:55:c1:0d:c0:f5:9e: 6e:8a:04:11:8c:cd:51:b4:e4:37:17:da:6d:73:9b:3a:89:41: 18:e5:3d:09:8a:79:9e:4c:c6:c1:fa:39:94:3b:42:f7:52:45: 25:04:03:1b:c2:ea:0d:53:be:a7:49:ac:69:76:2b:16:44:40: 69:87:8d:88:ea:4b:32:27:2b:9f:e1:fe:97:7e:2f:19:1c:25: df:56:d3:b0:18:87:7d:d2:35:40:a9:05:d7:8a:f8:c0:92:5c: dd:88:fa:a0:47:63:6c:72:29:42:75:b8:16:78:ad:ba:56:8b: 8e:a7:ab:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzkxMTAvBgNVBAUTKDc2Q0QwMjFFMEMyODFEQTVGRTY0RDg3ODAzNTUzODA4 ODg5QTExNjcwHhcNMjUwODIyMTkwNDAwWhcNMjUwODI5MTkwNDAwWjAYMRYwFAYD VQQDEw02OGE4YmYyMC05YTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+U4Hym0hC8e2ntmarK3vOSMuOFZ20u0e+oWZwlMdzuK6z7mIHpc4h8ua4Pd 8bC5DtS9b2k4HSHIadvQAZyQ0njcQ2QPME1bOXYpO3W8BEvbcaU2jr2UBi9XAHlS Aek5RYHIkjtJAXYDRfvqV7ob+HtS0AQ5PhoQ7n1fl9Jw2dbi6CEkSgo2oxmJh7A2 ARH2s7oaqMxREXXJ6HGZPk7lWMVeE2uf5VHMcT9k6aHzySV2jXxX2olSS+C/NY/e 2se9n9lUJKMQlS2iNZ18W3c1rPMj3HQ6vBHw3Aulo+sVAvPu+T48O1dQTVI8x4Hl t8nr4MnVjzHUg4EzWC8KtfGjVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6rnuVH v4IEqG/eLz0V3/tHS4A6MB8GA1UdIwQYMBaAFHbNAh4MKB2l/mTYeANVOAiImhFn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3OS9BNjNGOTNENjI3 Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hhWC1aTmg0QTFVNENJaWFF V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMENIZ3dvSGFYLVpOaDRBMVU0Q0lpYUVXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REM3OS9BNjNGOTNENjI3Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hh WC1aTmg0QTFVNENJaWFFV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCip5wJHz3etQcUIEl/vMVPI9W9Oj3VSA7aToJufgvunP4LdUi16qLh gSgEyq0Br1lVxnjMMCqJZgTHKPJ9330zFdxqsqKQXjVKShT4K/ffHcWssI/8pBC9 2RXYxn5JvT1icUCIgNvBwvsI6O4aJsU+XBalP6jRm+5hZ4yP9IDMGzc63Tw46zw5 b0hVwQ3A9Z5uigQRjM1RtOQ3F9ptc5s6iUEY5T0JinmeTMbB+jmUO0L3UkUlBAMb wuoNU76nSaxpdisWREBph42I6ksyJyuf4f6Xfi8ZHCXfVtOwGId90jVAqQXXivjA klzdiPqgR2NscilCdbgWeK26VouOp6uh -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:50 2025 by rpki-client