$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: k+I7Hxcl6DruG9FRITMgylBnpPycWgaHTWDaR5Xq77Q= Subject key identifier: 9C:F0:A0:E8:5D:0D:61:AB:E7:B1:B4:5F:30:A6:A4:92:F0:E0:86:06 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 050C Signing time: Sat 09 Aug 2025 00:11:53 +0000 Manifest this update: Sat 09 Aug 2025 00:11:52 +0000 Manifest next update: Sat 16 Aug 2025 00:11:52 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: H6Q4guIx16uk64ejd78BiH/A2qMOfx1EpQBAOoPNZfc=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Aug 9 00:11:52 2025 GMT Not After : Aug 16 00:11:52 2025 GMT Subject: CN=68969249-f2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8e:ff:ea:2d:aa:59:88:f1:1f:16:09:d4:a0: be:90:7c:16:b9:7f:e0:2a:11:3a:4c:08:18:b5:4e: 2d:ba:6b:62:a3:6f:14:46:13:0c:3d:8b:1f:b7:c4: eb:b9:20:d9:c2:82:6b:1b:42:1b:f5:8e:fd:63:a6: b1:96:b3:da:87:69:3b:fb:19:85:9b:1a:2f:b3:98: 14:f1:cc:d2:65:83:5c:58:eb:91:a1:9e:af:9e:cd: 20:13:45:6a:a3:ca:1f:a6:3f:bc:7a:c4:1c:fe:e3: 10:c6:68:70:c8:67:e9:98:eb:d0:c0:e1:cc:af:bc: 2f:09:84:43:88:1c:1b:e7:5f:68:9b:1a:15:13:6c: 8c:e6:d8:d6:08:4c:39:cd:61:b2:55:23:97:e3:f0: c0:af:ce:30:3a:16:45:bc:c8:3a:1a:9d:a0:b1:13: 8e:16:42:72:57:1c:ba:92:b6:cf:07:2a:8a:8e:c3: 0f:77:d6:0d:29:62:43:22:54:15:89:d3:bf:49:e3: f1:04:4d:0e:a5:44:be:b7:62:a2:8c:03:f1:64:54: 28:3b:89:da:ae:49:f9:06:9f:cc:26:01:31:76:84: 11:26:34:ac:eb:4a:02:2b:29:fd:0a:ce:3e:0e:52: bb:73:94:70:03:9f:87:b1:72:7a:37:33:27:86:dd: f6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F0:A0:E8:5D:0D:61:AB:E7:B1:B4:5F:30:A6:A4:92:F0:E0:86:06 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:46:e3:d6:aa:c8:c8:d0:36:d9:72:03:ec:66:bb:11:14:1e: d5:e6:51:cf:00:26:ff:78:21:55:7d:2a:2e:11:44:83:d7:08: a7:66:13:fc:dd:c3:c6:96:d9:91:b9:9f:ee:57:31:58:b3:83: 38:0e:1c:dc:49:bf:2a:05:31:bc:39:51:2f:18:9e:45:d3:d2: 33:58:ec:23:1c:47:c1:86:bc:81:1e:81:77:08:d0:53:84:9b: a5:95:a1:9b:0e:4c:d1:04:b7:26:59:9c:66:c6:38:26:e0:42: 8b:46:e7:70:df:7d:f2:79:a9:aa:35:1e:8a:f8:1d:a5:49:b2: 0f:ca:83:90:d9:d4:7b:95:b2:d7:4f:cf:03:12:28:9f:67:47: 88:40:d8:83:ec:f8:69:0d:63:c3:30:6b:58:7c:b6:bf:09:40: 88:b1:c9:1c:4a:fa:28:c2:84:4d:2d:6c:45:c2:f4:c3:75:12: e4:3a:62:91:e9:22:c6:7a:0a:65:be:81:33:f9:6c:ea:27:33: 0f:64:1d:eb:7b:18:ec:0b:55:e7:2b:a2:2f:5c:94:59:e4:fe: 7f:a8:ed:e6:b4:71:d3:71:99:73:ad:c9:9e:32:b9:06:30:81: d0:a6:0e:9c:63:88:16:66:15:32:a1:47:0a:42:c3:62:43:fe: 4a:cb:c9:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUwODA5MDAxMTUyWhcNMjUwODE2MDAxMTUyWjAYMRYwFAYD VQQDEw02ODk2OTI0OS1mMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY7/6i2qWYjxHxYJ1KC+kHwWuX/gKhE6TAgYtU4tumtio28URhMMPYsft8Tr uSDZwoJrG0Ib9Y79Y6axlrPah2k7+xmFmxovs5gU8czSZYNcWOuRoZ6vns0gE0Vq o8ofpj+8esQc/uMQxmhwyGfpmOvQwOHMr7wvCYRDiBwb519omxoVE2yM5tjWCEw5 zWGyVSOX4/DAr84wOhZFvMg6Gp2gsROOFkJyVxy6krbPByqKjsMPd9YNKWJDIlQV idO/SePxBE0OpUS+t2KijAPxZFQoO4narkn5Bp/MJgExdoQRJjSs60oCKyn9Cs4+ DlK7c5RwA5+HsXJ6NzMnht32TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzwoOhd DWGr57G0XzCmpJLw4IYGMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRuPWqsjI0DbZcgPsZrsRFB7V5lHPACb/eCFVfSouEUSD1winZhP8 3cPGltmRuZ/uVzFYs4M4DhzcSb8qBTG8OVEvGJ5F09IzWOwjHEfBhryBHoF3CNBT hJullaGbDkzRBLcmWZxmxjgm4EKLRudw333yeamqNR6K+B2lSbIPyoOQ2dR7lbLX T88DEiifZ0eIQNiD7PhpDWPDMGtYfLa/CUCIsckcSvoowoRNLWxFwvTDdRLkOmKR 6SLGegplvoEz+WzqJzMPZB3rexjsC1XnK6IvXJRZ5P5/qO3mtHHTcZlzrcmeMrkG MIHQpg6cY4gWZhUyoUcKQsNiQ/5Ky8lw -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:03 2025 by rpki-client