$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: a7MiU1dtmknKFhIobSb3K/a9tOnoP9qU9KTtHTijoYc= Subject key identifier: FA:05:C7:C6:84:24:8F:55:B9:A2:48:5D:F2:35:22:8D:DB:E0:B5:77 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 7F Signing time: Fri 08 Aug 2025 19:50:46 +0000 Manifest this update: Fri 08 Aug 2025 19:50:45 +0000 Manifest next update: Fri 15 Aug 2025 19:50:45 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: 2IsFiVdgk/YXUlkcLueDcbvCZMztggvh/mFgJofR75c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Aug 8 19:50:45 2025 GMT Not After : Aug 15 19:50:45 2025 GMT Subject: CN=68965516-d228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:07:57:77:4c:df:21:8a:28:e1:83:70:19: 7b:5f:a4:ca:49:88:db:e0:f1:9a:8f:48:2e:7e:e5: 22:36:36:45:53:39:62:ef:ed:b8:80:17:e3:2f:92: 1d:f8:e8:5f:16:60:5f:c9:8a:c8:0c:71:a2:46:ff: 8f:4a:98:a7:ad:3d:ff:df:f2:73:08:f4:5b:80:e9: ff:9e:24:43:2a:2e:6a:24:da:58:84:a3:df:9b:b8: d7:71:ed:90:85:56:5d:41:11:38:28:65:0d:39:a7: f2:9f:2c:b8:e5:78:d3:aa:7c:7b:f1:9c:30:02:b3: 9b:9b:0e:af:9d:69:3a:32:d5:d8:ef:b1:4f:09:33: 85:a2:3b:d1:af:ef:e7:11:50:d7:85:29:ce:9c:1b: 89:c3:de:dd:2a:f4:72:79:63:59:8f:07:1a:45:66: 2d:15:96:8e:73:2e:84:30:f0:8b:6d:9e:a3:b2:1c: 03:62:6d:29:4a:f4:b1:c8:ef:3a:ec:44:fb:1b:65: 86:9e:25:72:1e:7c:aa:60:5b:19:f1:e6:9c:57:63: 24:64:e5:74:40:44:33:ef:4e:dd:96:fb:cc:c2:f5: 33:e0:d7:41:a4:ae:dc:1b:15:ab:cd:0c:a2:12:bd: d9:08:d1:95:14:3a:59:49:bc:b6:28:48:54:a2:a2: da:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:05:C7:C6:84:24:8F:55:B9:A2:48:5D:F2:35:22:8D:DB:E0:B5:77 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0f:1e:cd:59:ec:32:0c:87:0f:42:28:03:d2:6b:c8:a3:34: 85:f5:ed:a7:e0:0e:93:d4:af:e1:42:e9:21:f9:b9:57:df:21: d6:d3:08:8b:74:e5:20:48:85:bb:34:d5:69:50:d9:f9:d9:10: 44:50:17:86:87:64:56:a4:a0:c1:4f:b8:bd:18:f3:23:80:1d: 51:bd:2d:a7:9a:7f:1b:80:86:0a:55:cd:4f:35:3b:e7:69:48: ef:97:ed:ed:d9:f1:5f:25:e9:0d:ec:09:e8:54:38:df:9d:3d: 97:9a:cc:ba:8d:b4:7a:40:eb:86:a2:07:ff:19:b7:63:52:13: 89:2d:87:b3:10:76:c9:26:a4:cc:f8:06:38:4c:ef:5c:40:72: 34:37:0f:ac:21:3e:97:c8:79:19:92:1b:4c:ce:74:d8:68:85: a6:53:02:41:fe:bf:6b:6f:36:99:5e:5c:3a:3d:39:98:1c:ae: bf:f7:69:c8:54:25:37:45:1e:f4:46:74:0d:c2:74:84:0e:48: ab:f2:ac:c6:19:a9:2c:0c:24:5a:9b:44:df:32:7a:00:d7:79: 60:f3:d7:c2:16:66:92:63:56:55:db:80:80:22:ac:0f:d3:b1: d9:5d:42:63:27:fa:d7:24:4b:d9:64:39:01:7d:9e:8e:7d:e1: f4:e2:71:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzhBRjExMC8GA1UEBRMoODQwRkQ2RjdFODkxRTM4MDRBN0RCMzA5RDA0Q0U4NUMx QUY3ODZEMTAeFw0yNTA4MDgxOTUwNDVaFw0yNTA4MTUxOTUwNDVaMBgxFjAUBgNV BAMTDTY4OTY1NTE2LWQyMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB3wdXd0zfIYoo4YNwGXtfpMpJiNvg8ZqPSC5+5SI2NkVTOWLv7biAF+Mvkh34 6F8WYF/JisgMcaJG/49KmKetPf/f8nMI9FuA6f+eJEMqLmok2liEo9+buNdx7ZCF Vl1BETgoZQ05p/KfLLjleNOqfHvxnDACs5ubDq+daToy1djvsU8JM4WiO9Gv7+cR UNeFKc6cG4nD3t0q9HJ5Y1mPBxpFZi0Vlo5zLoQw8IttnqOyHANibSlK9LHI7zrs RPsbZYaeJXIefKpgWxnx5pxXYyRk5XRARDPvTt2W+8zC9TPg10GkrtwbFavNDKIS vdkI0ZUUOllJvLYoSFSiotpnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+gXHxoQk j1W5okhd8jUijdvgtXcwHwYDVR0jBBgwFoAUhA/W9+iR44BKfbMJ0EzoXBr3htEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDOEFGLzE5N0ZGN0EyQjQw OTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEFfVzktaVI0NEJLZmJNSjBFem9YQnIzaHRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD OEFGLzE5N0ZGN0EyQjQwOTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRC S2ZiTUowRXpvWEJyM2h0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACMPHs1Z7DIMhw9CKAPSa8ijNIX17afgDpPUr+FC6SH5uVffIdbTCIt0 5SBIhbs01WlQ2fnZEERQF4aHZFakoMFPuL0Y8yOAHVG9LaeafxuAhgpVzU81O+dp SO+X7e3Z8V8l6Q3sCehUON+dPZeazLqNtHpA64aiB/8Zt2NSE4kth7MQdskmpMz4 BjhM71xAcjQ3D6whPpfIeRmSG0zOdNhohaZTAkH+v2tvNpleXDo9OZgcrr/3achU JTdFHvRGdA3CdIQOSKvyrMYZqSwMJFqbRN8yegDXeWDz18IWZpJjVlXbgIAirA/T sdldQmMn+tckS9lkOQF9no594fTicec= -----END CERTIFICATE-----Generated at Sun Aug 10 13:55:27 2025 by rpki-client