$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: QKB9JVb1xALGvavdSuOqMeOS82itz36iOmhiEzQHLJU= Subject key identifier: B9:2A:D4:27:32:7D:9F:06:9A:0F:B2:D7:6D:F3:C8:08:91:A7:CB:E5 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 0148 Signing time: Sat 09 Aug 2025 04:44:44 +0000 Manifest this update: Sat 09 Aug 2025 04:44:43 +0000 Manifest next update: Sat 16 Aug 2025 04:44:43 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: Fdf/HpfuoLWfx8akGMbsae/tH8/DB26So48rFsP5hxk=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: oBJXc8GYCJgJm/47m5fsAm6DbvpC1fTX4mDB8Bng8Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Aug 9 04:44:43 2025 GMT Not After : Aug 16 04:44:43 2025 GMT Subject: CN=6896d23b-edad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3d:b3:f0:51:5a:dd:9d:19:2c:69:07:34:f5: 8d:97:9c:07:89:3d:3c:5c:f4:1c:95:bf:c7:fb:0f: b7:bf:7f:c4:d3:94:03:48:9c:62:14:b8:94:4c:42: f9:30:86:62:1e:7d:36:eb:77:c5:26:bd:43:61:26: 94:b9:8c:0d:da:4d:4c:c2:20:77:9b:05:16:bc:1e: fa:ba:bf:b6:c5:2b:d9:61:17:4c:fe:92:f6:99:bc: 03:51:fe:d3:9e:53:01:b8:85:fb:73:74:97:90:e0: e2:1c:7c:f8:41:20:bd:ce:50:e4:da:1f:61:08:24: 8e:d4:4b:38:7d:79:0f:e6:89:0f:5c:c6:99:6e:bd: e3:8f:8b:e1:b1:44:00:92:38:3b:2a:65:8a:0c:19: c0:dd:46:98:13:73:5c:15:37:03:a0:0c:9b:b4:9d: 01:21:2d:86:f5:e9:ee:91:d4:c8:de:83:d5:1c:e3: 60:0a:20:da:c6:0a:6b:42:13:ba:19:7c:1b:99:c6: ca:42:c1:ca:e5:8c:4b:02:6a:4e:f3:ec:93:bc:e9: 69:20:cd:78:25:12:9e:5e:b3:c0:f5:8e:a0:12:20: 3a:30:13:e7:00:fa:d2:c4:27:ad:2a:e9:6d:ea:f7: 8b:65:8e:a9:df:82:3f:4f:d2:93:40:36:f3:0a:0b: 35:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2A:D4:27:32:7D:9F:06:9A:0F:B2:D7:6D:F3:C8:08:91:A7:CB:E5 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ff:32:43:0e:cd:ec:5e:35:62:a3:72:50:f1:80:ad:44:57: fe:ef:ae:e1:48:52:9b:77:e7:7f:a1:68:ac:e2:96:c6:b5:2f: 39:2d:6d:6c:fe:9a:86:c7:5d:6e:bf:0e:03:62:89:7a:d0:80: e6:1e:9b:22:86:13:d5:4e:02:5d:b4:d8:52:7c:f3:6b:e2:c0: d0:75:f4:a2:79:24:24:c8:74:64:e6:a1:ec:67:49:39:58:5b: 26:bc:7b:f5:96:ac:d2:be:ae:b5:54:ca:a1:39:b2:a0:58:a6: 01:f4:fc:d7:0e:ba:df:ec:f9:2a:11:44:ae:9d:22:5f:cb:2b: 39:7e:cd:2d:07:9d:65:03:74:7b:a7:73:37:2a:ec:80:ef:a1: c8:3e:18:8d:5e:63:2f:bc:57:fb:dc:56:48:0e:9b:af:47:c4: 19:82:71:87:6f:2b:3b:7e:c0:0d:01:f4:7c:2e:42:a8:43:4e: 16:90:58:ff:cf:d3:cb:8d:43:8f:0f:e5:e1:f3:a9:3a:b1:51: 73:b2:8e:f9:b5:7c:a6:cf:cb:ea:79:f4:4b:f8:79:41:3c:1e: c6:31:b1:89:f3:30:aa:49:54:65:1b:4a:5e:13:32:53:66:54: e3:2c:07:e6:6a:bf:af:5f:f7:22:d4:2d:04:b6:75:2b:a1:09: 42:0f:da:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUwODA5MDQ0NDQzWhcNMjUwODE2MDQ0NDQzWjAYMRYwFAYD VQQDEw02ODk2ZDIzYi1lZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4j2z8FFa3Z0ZLGkHNPWNl5wHiT08XPQclb/H+w+3v3/E05QDSJxiFLiUTEL5 MIZiHn0263fFJr1DYSaUuYwN2k1MwiB3mwUWvB76ur+2xSvZYRdM/pL2mbwDUf7T nlMBuIX7c3SXkODiHHz4QSC9zlDk2h9hCCSO1Es4fXkP5okPXMaZbr3jj4vhsUQA kjg7KmWKDBnA3UaYE3NcFTcDoAybtJ0BIS2G9enukdTI3oPVHONgCiDaxgprQhO6 GXwbmcbKQsHK5YxLAmpO8+yTvOlpIM14JRKeXrPA9Y6gEiA6MBPnAPrSxCetKult 6veLZY6p34I/T9KTQDbzCgs1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkq1Ccy fZ8Gmg+y123zyAiRp8vlMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi/zJDDs3sXjVio3JQ8YCtRFf+767hSFKbd+d/oWis4pbGtS85LW1s /pqGx11uvw4DYol60IDmHpsihhPVTgJdtNhSfPNr4sDQdfSieSQkyHRk5qHsZ0k5 WFsmvHv1lqzSvq61VMqhObKgWKYB9PzXDrrf7PkqEUSunSJfyys5fs0tB51lA3R7 p3M3KuyA76HIPhiNXmMvvFf73FZIDpuvR8QZgnGHbys7fsANAfR8LkKoQ04WkFj/ z9PLjUOPD+Xh86k6sVFzso75tXymz8vqefRL+HlBPB7GMbGJ8zCqSVRlG0peEzJT ZlTjLAfmar+vX/ci1C0EtnUroQlCD9r7 -----END CERTIFICATE-----Generated at Sat Aug 9 14:26:58 2025 by rpki-client