$ rpki-client -vvf rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft File: h1thdAzTcL1LSk9q6gqGCDiNuoo.mft (raw, json) Hash identifier: x3deO6xrgZvzc7/sm5sr5BIKJ2bdg/YyDUhFLW1n2MU= Subject key identifier: 4D:4F:E6:F9:6C:E2:B4:65:0C:6F:60:6C:54:E5:31:24:00:BC:F5:A4 Authority key identifier: 87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A Certificate issuer: /CN=A9125852/serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft Manifest number: 3C Signing time: Sat 09 Aug 2025 08:02:50 +0000 Manifest this update: Sat 09 Aug 2025 08:02:49 +0000 Manifest next update: Sat 16 Aug 2025 08:02:49 +0000 Files and hashes: 1: h1thdAzTcL1LSk9q6gqGCDiNuoo.crl (hash: M+2MZWDlu/168SlI4BxcHvbdiGh3BhV3BnT5fuJXCJ8=) 2: 36E3783A1BA311F0985A7C2DC4F9AE02.roa (hash: sfbcZk8SAWuxMbwQPAGFt07XT5Nj4mSWLUAB6k9yQMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125852, serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Validity Not Before: Aug 9 08:02:49 2025 GMT Not After : Aug 16 08:02:49 2025 GMT Subject: CN=689700aa-bdeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:db:bd:81:db:02:5a:d4:18:df:9e:93:39: b9:35:6b:5f:e2:0b:b8:3b:04:b3:82:30:73:43:4b: 92:af:14:07:6b:d6:aa:3b:40:89:4c:51:47:9d:0c: b5:ad:53:3c:f3:ab:ca:c8:8a:6c:64:3c:0b:3d:ed: 3c:59:79:8d:04:f8:2d:3c:57:f2:ea:db:cc:db:37: d1:51:68:12:d2:78:65:32:c0:80:94:e3:99:19:a8: ac:29:45:1e:4d:47:22:c6:77:8a:bd:1b:ea:0e:7a: 6d:86:66:6d:a9:1e:bc:69:f8:46:8b:ff:ce:a8:42: 05:6c:ee:8b:66:86:0a:ce:d8:1a:68:a0:26:d8:6f: 2c:a2:eb:1d:6c:77:33:9a:47:0f:c5:be:ee:12:32: 79:43:21:b5:a6:4d:29:4e:6b:a4:8b:65:1e:ea:c1: 1f:23:1f:66:1c:4e:34:a0:f4:44:48:6a:11:c1:b1: 4d:cb:23:90:83:4c:34:ec:ca:72:40:2a:01:8b:98: 07:72:3a:48:24:d8:7f:2a:1d:00:ef:33:39:49:76: b5:06:81:c8:1c:fb:09:6d:13:4a:53:77:7d:86:6e: 4c:8d:6f:0f:26:69:b2:a3:0b:b0:a3:7a:2c:0e:bc: 3f:e2:89:c8:5d:cb:ac:c9:ca:3b:ce:04:56:88:e4: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4F:E6:F9:6C:E2:B4:65:0C:6F:60:6C:54:E5:31:24:00:BC:F5:A4 X509v3 Authority Key Identifier: keyid:87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:11:d9:49:e4:48:b3:24:3c:18:ed:33:69:13:34:d5:92:d1: f8:ca:98:16:a7:03:80:d7:c0:3b:68:d3:20:39:bc:19:1c:2e: b7:f2:5b:fa:84:f6:87:98:58:a3:f0:39:f3:34:3c:f7:2b:40: 01:51:dc:8e:e2:3e:ec:8f:31:db:58:2b:ce:e2:38:7b:00:3b: 28:62:45:1d:dc:fa:ba:f0:a1:df:b4:83:8d:18:ad:5b:71:c2: 4b:ed:4c:83:55:11:96:de:49:eb:e0:b1:23:67:40:49:9e:08: 93:4d:32:a1:c1:99:2e:7e:e2:7d:4c:f7:b6:3e:a7:d5:f9:42: 3f:df:41:06:46:12:71:90:4b:96:77:7e:e1:f4:d4:89:74:c6: fe:04:88:4b:51:12:31:91:61:e7:ac:53:c3:d0:e4:06:86:6d: 07:a2:5a:c1:dc:77:fe:41:4b:7d:8b:77:0b:d7:45:5a:2d:5d: af:d4:00:57:c9:ee:ab:b2:63:f8:af:ee:00:29:b0:06:16:13: f2:e4:d1:ba:b5:82:32:e2:98:f9:63:18:33:76:07:e0:42:dc: 06:3f:2a:2a:0b:09:f8:c9:f3:5f:51:dd:5c:3e:71:1e:ba:75: 69:8a:1d:9e:6f:03:f4:18:15:61:ec:96:e5:75:76:82:a7:83: c1:63:d7:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTg1MjExMC8GA1UEBRMoODc1QjYxNzQwQ0QzNzBCRDRCNEE0RjZBRUEwQTg2MDgz ODhEQkE4QTAeFw0yNTA4MDkwODAyNDlaFw0yNTA4MTYwODAyNDlaMBgxFjAUBgNV BAMTDTY4OTcwMGFhLWJkZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDk59u9gdsCWtQY356TObk1a1/iC7g7BLOCMHNDS5KvFAdr1qo7QIlMUUedDLWt Uzzzq8rIimxkPAs97TxZeY0E+C08V/Lq28zbN9FRaBLSeGUywICU45kZqKwpRR5N RyLGd4q9G+oOem2GZm2pHrxp+EaL/86oQgVs7otmhgrO2BpooCbYbyyi6x1sdzOa Rw/Fvu4SMnlDIbWmTSlOa6SLZR7qwR8jH2YcTjSg9ERIahHBsU3LI5CDTDTsynJA KgGLmAdyOkgk2H8qHQDvMzlJdrUGgcgc+wltE0pTd32GbkyNbw8mabKjC7CjeiwO vD/iichdy6zJyjvOBFaI5IVfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTU/m+Wzi tGUMb2BsVOUxJAC89aQwHwYDVR0jBBgwFoAUh1thdAzTcL1LSk9q6gqGCDiNuoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODUyL0U5NTRGRDc4MUJB MjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wxTFNrOXE2Z3FHQ0RpTnVv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDF0aGRBelRjTDFMU2s5cTZncUdDRGlOdW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODUyL0U5NTRGRDc4MUJBMjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wx TFNrOXE2Z3FHQ0RpTnVvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADwR2UnkSLMkPBjtM2kTNNWS0fjKmBanA4DXwDto0yA5vBkcLrfyW/qE 9oeYWKPwOfM0PPcrQAFR3I7iPuyPMdtYK87iOHsAOyhiRR3c+rrwod+0g40YrVtx wkvtTINVEZbeSevgsSNnQEmeCJNNMqHBmS5+4n1M97Y+p9X5Qj/fQQZGEnGQS5Z3 fuH01Il0xv4EiEtREjGRYeesU8PQ5AaGbQeiWsHcd/5BS32LdwvXRVotXa/UAFfJ 7quyY/iv7gApsAYWE/Lk0bq1gjLimPljGDN2B+BC3AY/KioLCfjJ819R3Vw+cR66 dWmKHZ5vA/QYFWHsluV1doKng8Fj174= -----END CERTIFICATE-----Generated at Sat Aug 9 10:39:03 2025 by rpki-client