$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: 0CLYDCOrz6w+qHFLmEACvGc/nWIIemiLGpdppuaJ5PU= Subject key identifier: 46:D6:CF:4D:99:D5:76:C3:1D:54:35:BC:5D:99:F0:C8:A4:14:1E:37 Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C87 Signing time: Sun 10 Aug 2025 18:18:38 +0000 Manifest this update: Sun 10 Aug 2025 18:18:38 +0000 Manifest next update: Sun 17 Aug 2025 18:18:38 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: zP73V/pSLPLUFWfWUafMOXrm3xaXt1K4KEfIXy4Twyo=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Aug 10 18:18:38 2025 GMT Not After : Aug 17 18:18:38 2025 GMT Subject: CN=6898e27e-a1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:dc:89:61:0c:6a:34:ab:5d:d2:87:40:29: 31:73:24:c7:bf:38:36:4f:33:af:4a:d8:84:40:3c: 85:a8:af:39:59:6f:3b:6f:8d:b7:c8:29:41:52:b8: 61:92:ac:42:99:41:f1:a6:fc:a0:58:fb:76:c1:84: 90:98:ab:0f:ff:7b:7f:3b:37:f0:2f:16:db:30:f7: 19:55:b8:f4:60:b6:f9:eb:58:c8:c4:0a:cb:b4:c4: 29:b5:a0:93:dd:fd:98:23:15:78:47:f4:61:32:f4: c4:4b:09:1a:a6:55:50:76:83:88:2e:8d:a3:44:e5: 1c:fe:6f:26:32:70:57:bf:e9:f5:5b:cc:22:84:fd: a2:52:77:55:e1:34:f8:fe:56:ee:eb:cf:82:63:c3: f4:a0:12:77:5c:c3:42:7a:da:35:94:64:b4:dc:de: c2:d9:ab:f3:5e:21:18:66:29:4f:1c:f9:dc:d4:f5: b8:b1:c6:d7:40:a5:b6:d5:50:2a:6c:ef:86:d9:e2: 29:ea:6d:3f:3b:78:0d:c7:5f:f5:11:f8:72:52:ec: 02:5f:0a:29:ed:38:b9:92:d5:63:76:00:de:6d:41: e9:4b:7c:81:8a:39:6d:f6:9f:e9:d1:24:1c:1b:3b: a9:66:4a:32:34:6b:86:1e:3f:e8:a6:35:dc:f4:94: 2a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D6:CF:4D:99:D5:76:C3:1D:54:35:BC:5D:99:F0:C8:A4:14:1E:37 X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:db:99:96:c8:d7:41:b8:48:b8:d0:84:1e:21:47:df:d7:bc: fc:23:23:7c:6a:3e:fa:89:36:bd:35:08:2a:ec:76:8f:04:ab: dc:75:98:25:3d:7a:3e:c7:ae:e8:99:c1:e4:50:ab:d3:1e:d1: b8:e5:ad:8e:ba:bb:58:5d:1b:1b:59:7a:2b:a2:9e:61:94:62: 39:98:c0:12:43:93:47:62:58:d9:02:91:de:03:64:6a:42:12: 42:c5:02:10:16:aa:2a:a0:2b:95:26:ea:12:44:de:42:a0:de: c2:01:93:35:44:b8:41:04:58:e8:99:43:3f:0c:7d:26:32:61: 07:de:d7:43:0b:a0:15:3f:cc:22:a8:25:8d:99:c6:1f:71:50: c0:84:5e:eb:78:3f:0a:e0:ab:4b:9e:35:0c:e6:58:2a:f1:3c: 4a:78:89:09:72:11:b6:a1:8a:e7:3c:46:58:02:b9:ad:5b:4d: 73:ad:93:18:a0:2a:c8:bc:1e:a9:85:9f:64:bd:f4:69:e1:7e: 65:8e:4c:c5:3a:0b:51:09:92:58:72:4f:02:a4:b0:e0:fd:05: a3:a7:74:21:7c:ea:69:50:11:22:03:f6:c7:f1:60:2f:de:dc: fa:a9:53:88:a2:ea:e8:33:a8:ad:b0:27:67:5a:0b:5c:6f:b4: c7:8c:ab:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwODEwMTgxODM4WhcNMjUwODE3MTgxODM4WjAYMRYwFAYD VQQDEw02ODk4ZTI3ZS1hMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvrciWEMajSrXdKHQCkxcyTHvzg2TzOvStiEQDyFqK85WW87b423yClBUrhh kqxCmUHxpvygWPt2wYSQmKsP/3t/OzfwLxbbMPcZVbj0YLb561jIxArLtMQptaCT 3f2YIxV4R/RhMvTESwkaplVQdoOILo2jROUc/m8mMnBXv+n1W8wihP2iUndV4TT4 /lbu68+CY8P0oBJ3XMNCeto1lGS03N7C2avzXiEYZilPHPnc1PW4scbXQKW21VAq bO+G2eIp6m0/O3gNx1/1EfhyUuwCXwop7Ti5ktVjdgDebUHpS3yBijlt9p/p0SQc GzupZkoyNGuGHj/opjXc9JQqyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbWz02Z 1XbDHVQ1vF2Z8MikFB43MB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi25mWyNdBuEi40IQeIUff17z8IyN8aj76iTa9NQgq7HaPBKvcdZgl PXo+x67omcHkUKvTHtG45a2OurtYXRsbWXorop5hlGI5mMASQ5NHYljZApHeA2Rq QhJCxQIQFqoqoCuVJuoSRN5CoN7CAZM1RLhBBFjomUM/DH0mMmEH3tdDC6AVP8wi qCWNmcYfcVDAhF7reD8K4KtLnjUM5lgq8TxKeIkJchG2oYrnPEZYArmtW01zrZMY oCrIvB6phZ9kvfRp4X5ljkzFOgtRCZJYck8CpLDg/QWjp3QhfOppUBEiA/bH8WAv 3tz6qVOIouroM6itsCdnWgtcb7THjKu2 -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:30 2025 by rpki-client