$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft File: rN0Hh_30YaFfcqHizj449FTtIHI.mft (raw, json) Hash identifier: xOJTNPwqu94LWHpsB/MGeMHyiFMCGB+IWwu7uFU/yQQ= Subject key identifier: A9:FE:4B:1F:46:A6:8C:13:B0:A6:E2:1A:1D:D3:18:F9:04:5A:49:66 Authority key identifier: AC:DD:07:87:FD:F4:61:A1:5F:72:A1:E2:CE:3E:38:F4:54:ED:20:72 Certificate issuer: /CN=A9116D68/serialNumber=ACDD0787FDF461A15F72A1E2CE3E38F454ED2072 Certificate serial: 0F29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft Manifest number: 179D Signing time: Sun 10 Aug 2025 17:37:07 +0000 Manifest this update: Sun 10 Aug 2025 17:37:06 +0000 Manifest next update: Sun 17 Aug 2025 17:37:06 +0000 Files and hashes: 1: rN0Hh_30YaFfcqHizj449FTtIHI.crl (hash: 8jbzMW2WprGiJzu4mjajNFL/Us4Cai+HTcqC56JduhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3881 (0xf29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=ACDD0787FDF461A15F72A1E2CE3E38F454ED2072 Validity Not Before: Aug 10 17:37:06 2025 GMT Not After : Aug 17 17:37:06 2025 GMT Subject: CN=6898d8c2-008d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f2:a7:e3:0c:a6:62:01:4c:87:70:72:51:eb: bd:73:8e:aa:73:9c:3b:e3:3a:3b:42:03:ad:45:c8: 18:31:1c:51:8f:31:49:ed:1f:0e:d4:75:5f:8f:aa: 58:1b:e1:e8:11:2a:bd:17:9c:1c:98:f6:87:fc:60: 81:03:6e:3e:0b:05:e9:6c:18:c0:8e:d4:d6:24:f1: c4:b3:f9:ce:46:fc:81:80:db:03:4b:5b:7d:d8:04: 3a:47:62:e6:ea:4d:47:33:5a:47:33:38:61:7d:3e: f3:05:10:8a:88:fc:7c:64:0a:ac:ad:94:8c:4d:f7: 79:fe:e0:63:34:78:4c:25:cb:8d:05:04:f1:2f:74: 7d:10:4e:83:ff:c6:c9:21:81:9e:3d:b2:b6:35:77: c6:cb:06:94:16:e7:8f:6b:1e:74:3d:76:a7:d7:9a: 58:94:37:6f:09:81:15:91:f3:8d:25:ac:e4:b1:62: dd:8f:35:67:eb:ea:10:20:dc:45:f4:05:06:4f:82: 58:b2:0b:a0:ac:1e:ff:26:52:c8:26:14:d7:42:ec: ae:10:eb:ab:1b:8c:df:2b:fe:16:78:3f:28:7d:ab: ef:87:3a:24:d8:a8:d6:c6:a3:bf:c1:a8:ed:22:3f: be:fd:b3:ab:3b:5d:39:c0:97:44:91:54:2e:de:53: d1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FE:4B:1F:46:A6:8C:13:B0:A6:E2:1A:1D:D3:18:F9:04:5A:49:66 X509v3 Authority Key Identifier: keyid:AC:DD:07:87:FD:F4:61:A1:5F:72:A1:E2:CE:3E:38:F4:54:ED:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:70:60:c8:00:23:e7:9b:5e:b8:e9:50:24:2d:11:54:fb:6b: 51:ab:d6:4c:4b:b0:7e:c5:87:28:99:f8:29:40:51:d8:ce:21: 1d:e0:b0:51:7d:11:67:95:4e:c5:b8:8e:bd:44:c5:59:ef:40: 75:8a:28:16:f0:a8:ae:82:9c:8a:9d:d4:ba:66:f9:c5:3a:7c: 60:74:4f:5f:8d:4c:64:0d:a3:12:90:ff:ca:1e:fe:63:8f:92: 5e:b0:41:83:d8:40:29:53:f3:9e:1a:1e:4d:f3:98:e2:b8:7c: 20:0f:a7:bb:48:aa:8e:8c:d2:1e:64:54:73:cf:18:ae:a4:b3: 36:52:8d:0f:3c:95:8d:f4:8a:8c:06:67:3c:28:5b:2f:a1:e6: c4:74:b2:72:dd:b2:72:27:7a:5d:eb:f8:de:28:61:fe:bc:9f: 63:d8:23:c2:df:b1:80:aa:f7:3e:18:c0:d8:1b:b8:f3:89:dc: 65:ce:41:a9:d9:71:5b:95:6d:7b:1c:5c:2c:67:28:0e:9a:51: 64:73:c3:be:dd:c4:e9:21:37:22:97:0f:c1:31:c6:7c:00:bb: 20:eb:b3:57:92:53:48:aa:21:62:10:d8:55:4a:83:28:a9:cb: 7f:7c:99:d2:f8:28:4c:fd:4a:c3:bb:fc:8c:0b:6a:c7:7f:12: 5a:90:f5:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKEFDREQwNzg3RkRGNDYxQTE1RjcyQTFFMkNFM0UzOEY0 NTRFRDIwNzIwHhcNMjUwODEwMTczNzA2WhcNMjUwODE3MTczNzA2WjAYMRYwFAYD VQQDEw02ODk4ZDhjMi0wMDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfKn4wymYgFMh3ByUeu9c46qc5w74zo7QgOtRcgYMRxRjzFJ7R8O1HVfj6pY G+HoESq9F5wcmPaH/GCBA24+CwXpbBjAjtTWJPHEs/nORvyBgNsDS1t92AQ6R2Lm 6k1HM1pHMzhhfT7zBRCKiPx8ZAqsrZSMTfd5/uBjNHhMJcuNBQTxL3R9EE6D/8bJ IYGePbK2NXfGywaUFuePax50PXan15pYlDdvCYEVkfONJazksWLdjzVn6+oQINxF 9AUGT4JYsgugrB7/JlLIJhTXQuyuEOurG4zfK/4WeD8ofavvhzok2KjWxqO/wajt Ij++/bOrO105wJdEkVQu3lPR2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKn+Sx9G powTsKbiGh3TGPkEWklmMB8GA1UdIwQYMBaAFKzdB4f99GGhX3Kh4s4+OPRU7SBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9yTjBIaF8zMFlhRmZjcUhpemo0NDlGVHRJ SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOMEhoXzMwWWFGZmNxSGl6ajQ0OUZUdElISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkQ2OC83MjRDQzg0Qzc4ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9yTjBIaF8zMFlh RmZjcUhpemo0NDlGVHRJSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqcGDIACPnm1646VAkLRFU+2tRq9ZMS7B+xYcomfgpQFHYziEd4LBR fRFnlU7FuI69RMVZ70B1iigW8KiugpyKndS6ZvnFOnxgdE9fjUxkDaMSkP/KHv5j j5JesEGD2EApU/OeGh5N85jiuHwgD6e7SKqOjNIeZFRzzxiupLM2Uo0PPJWN9IqM Bmc8KFsvoebEdLJy3bJyJ3pd6/jeKGH+vJ9j2CPC37GAqvc+GMDYG7jzidxlzkGp 2XFblW17HFwsZygOmlFkc8O+3cTpITcilw/BMcZ8ALsg67NXklNIqiFiENhVSoMo qct/fJnS+ChM/UrDu/yMC2rHfxJakPUq -----END CERTIFICATE-----Generated at Sun Aug 10 21:00:43 2025 by rpki-client