$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: oQ8RWMugLuwLeMkMy9T3c782OeajvcqA/ZvsSAizCY0= Subject key identifier: 7F:88:4D:CF:53:04:67:80:35:EA:9B:FD:A5:01:85:69:1C:A5:33:8D Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 080A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07EC Signing time: Fri 08 Aug 2025 21:25:15 +0000 Manifest this update: Fri 08 Aug 2025 21:25:15 +0000 Manifest next update: Fri 15 Aug 2025 21:25:15 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: V2sJfnd0Tf7UvzZ7QWFLYen06+K+yY9CY4f6gt/RHxo=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Aug 8 21:25:15 2025 GMT Not After : Aug 15 21:25:15 2025 GMT Subject: CN=68966b3b-3254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:3b:db:48:55:b1:38:d1:66:8f:1f:bd:94: 7b:8c:cc:c5:41:4e:fc:d9:cb:60:96:a9:bb:1c:ac: 18:58:50:a5:a1:6e:97:7f:6b:ae:cc:0f:04:7d:79: c5:00:11:65:47:63:9a:62:a8:8d:6b:b4:eb:86:1f: 4f:a6:c7:5c:ca:6f:c5:f0:76:97:3d:5e:7b:e4:17: 44:ce:5c:d5:d0:cd:bf:25:5a:6a:10:51:92:23:83: 76:ed:6f:df:7f:4f:84:0f:e8:68:92:40:78:c8:d9: 37:05:a0:13:6a:fa:e9:2c:f9:77:55:05:ea:3a:09: e4:fd:ec:a0:d2:5f:80:82:03:81:f6:1d:91:12:37: 7c:9e:05:92:2a:0f:84:60:1f:95:43:ce:38:19:04: 55:df:68:47:45:dc:4e:2d:cf:89:17:88:b8:83:7d: 4c:cd:a9:ea:68:78:72:fe:a9:2b:6e:a1:5b:a8:af: c1:66:db:a2:bb:79:7a:2f:50:c7:3e:65:75:01:67: 30:c9:12:5e:21:7d:9c:f6:87:62:92:bf:03:25:9a: e4:a7:48:a1:4d:fb:03:b0:34:b4:03:da:c7:fa:3f: cd:79:e3:ec:34:c7:11:db:71:4f:09:eb:80:2e:a4: 70:75:9b:86:a9:96:1a:3d:ae:85:32:64:6f:88:d5: 26:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:88:4D:CF:53:04:67:80:35:EA:9B:FD:A5:01:85:69:1C:A5:33:8D X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2f:45:70:40:f6:ad:9b:37:6d:6d:dd:47:c1:20:81:b7:77: 44:14:e3:6f:5c:1d:85:83:3c:79:40:e9:79:79:da:31:a8:b3: 00:ca:b1:9f:47:04:0e:86:ff:5f:d3:d0:64:cf:7a:09:e3:2b: 4d:0d:e1:0f:7b:5d:3f:61:3a:5c:fa:d9:b3:07:1c:83:3e:0c: 4f:22:b1:17:97:a8:03:38:a7:3f:b8:0b:36:c0:0f:a9:a2:d3: 1d:55:d3:8f:2d:72:c8:a7:2a:9a:2e:cd:d4:75:cb:bf:e2:2c: 62:60:70:af:b0:f4:bf:81:25:4b:ec:9a:ae:fe:58:a2:82:7b: 7b:62:2c:f1:df:0e:42:73:ca:59:ad:25:37:c2:49:92:fa:b4: 4b:3d:8d:6e:5d:83:9c:11:6c:a8:47:1a:9b:7f:3d:d8:a5:19: c2:2f:04:da:ff:8a:60:81:de:fd:c0:ef:2f:eb:3c:97:f2:df: 9d:9a:20:0c:a3:cd:9e:76:63:9e:57:cb:a9:b5:0b:53:a9:06: d9:a2:7c:44:e7:92:32:ff:1e:da:1c:9e:77:34:c2:ed:17:55: c0:a3:65:0b:ca:70:d1:73:ea:54:2c:28:5f:a7:c5:8c:e0:37: 9a:4d:de:51:9c:42:b0:44:61:91:3a:78:2d:70:9d:be:79:3d: 8e:dc:84:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwODA4MjEyNTE1WhcNMjUwODE1MjEyNTE1WjAYMRYwFAYD VQQDEw02ODk2NmIzYi0zMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoM720hVsTjRZo8fvZR7jMzFQU782ctglqm7HKwYWFCloW6Xf2uuzA8EfXnF ABFlR2OaYqiNa7Trhh9Ppsdcym/F8HaXPV575BdEzlzV0M2/JVpqEFGSI4N27W/f f0+ED+hokkB4yNk3BaATavrpLPl3VQXqOgnk/eyg0l+AggOB9h2REjd8ngWSKg+E YB+VQ844GQRV32hHRdxOLc+JF4i4g31MzanqaHhy/qkrbqFbqK/BZtuiu3l6L1DH PmV1AWcwyRJeIX2c9odikr8DJZrkp0ihTfsDsDS0A9rH+j/NeePsNMcR23FPCeuA LqRwdZuGqZYaPa6FMmRviNUmCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+ITc9T BGeANeqb/aUBhWkcpTONMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBL0VwQPatmzdtbd1HwSCBt3dEFONvXB2Fgzx5QOl5edoxqLMAyrGf RwQOhv9f09Bkz3oJ4ytNDeEPe10/YTpc+tmzBxyDPgxPIrEXl6gDOKc/uAs2wA+p otMdVdOPLXLIpyqaLs3Udcu/4ixiYHCvsPS/gSVL7Jqu/liignt7Yizx3w5Cc8pZ rSU3wkmS+rRLPY1uXYOcEWyoRxqbfz3YpRnCLwTa/4pggd79wO8v6zyX8t+dmiAM o82edmOeV8uptQtTqQbZonxE55Iy/x7aHJ53NMLtF1XAo2ULynDRc+pULChfp8WM 4DeaTd5RnEKwRGGROngtcJ2+eT2O3IRq -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:52 2025 by rpki-client