$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: GYovGKBEwrc0RMNI8LKIvV0C8WeAVfZdVaOzurZ90Ok= Subject key identifier: 57:1E:00:7A:D7:DC:5D:DD:06:95:84:7C:FF:D3:0F:22:3D:B7:F4:BB Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0C4A Signing time: Sun 10 Aug 2025 18:34:47 +0000 Manifest this update: Sun 10 Aug 2025 18:34:47 +0000 Manifest next update: Sun 17 Aug 2025 18:34:47 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: SbMqOmcaacZ5IdGolRl8rgx1jhqR1eeErNFDZmzBxSY=) 2: 172E487A416911ECB6B11742C4F9AE02.roa (hash: jjQzstnlPYenRZWamhU8+OP/S56HuWE5rPwPEoYqLOI=) 3: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: FwxCipQAsBk9UBv8EDrb+Vo/Shz8I+uuiBIqO9LmFMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Aug 10 18:34:47 2025 GMT Not After : Aug 17 18:34:47 2025 GMT Subject: CN=6898e647-812f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7a:11:eb:ba:b1:d6:a2:6b:76:34:8c:b1:bb: cf:b6:91:f6:b6:3d:05:b0:e8:26:ce:2d:ed:db:f5: dd:8a:6e:4c:f8:6e:19:eb:af:ae:4f:66:ec:c3:40: 4e:57:77:0b:7a:22:9e:c1:d0:69:7a:df:04:11:b3: 87:c4:20:6d:92:07:11:fc:c8:16:df:41:02:57:97: b6:4e:15:58:f2:0b:0d:90:fd:2c:3c:63:6a:c2:81: 8e:41:a1:59:90:59:2d:56:71:73:19:48:45:8c:11: 1d:f6:5d:46:85:95:ec:2c:dd:b0:08:10:ae:00:33: b3:4b:64:3a:8b:76:b0:d1:5e:85:23:94:e7:24:72: 6c:52:6c:e7:9d:e0:aa:67:0a:0f:5e:f1:80:8c:ca: 14:d0:b0:2b:46:6f:65:53:7d:6c:26:93:c8:ce:94: 1a:ab:52:07:ee:62:21:6b:a1:e6:6c:6b:a7:6e:c5: 39:da:87:4a:2c:1b:ea:15:ac:fd:63:fd:c4:5c:91: ed:5f:d8:0f:a2:ec:ff:2c:81:d0:b1:7a:f5:fd:95: 53:af:f5:b4:c7:3e:1f:91:b9:b8:1e:eb:79:91:c8: e0:20:08:fa:3a:c6:0c:c5:2b:c6:4d:48:9b:70:22: 4b:a9:45:63:fd:2e:33:e4:b4:2d:88:eb:5c:80:2c: 8d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1E:00:7A:D7:DC:5D:DD:06:95:84:7C:FF:D3:0F:22:3D:B7:F4:BB X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:dc:81:0a:a6:5d:5e:ec:8e:b9:aa:33:f8:bf:4b:53:d8:99: 77:e3:10:69:74:b9:9e:41:45:ff:bf:ba:24:fe:24:f7:a7:41: 76:2f:e5:ef:b8:8a:b2:69:bc:3c:cb:16:8a:72:45:3b:fa:73: 74:7d:b2:34:3e:ad:2d:74:00:57:28:b9:3c:e0:4b:71:0b:5e: 9f:86:32:f1:87:3d:d1:fc:1a:08:af:49:4b:2d:ab:1c:61:25: 8f:cf:00:72:85:60:98:b4:5e:9e:01:c0:a5:57:6f:d3:ed:53: 42:7d:bc:72:47:de:6b:bc:6b:7c:e1:d6:ca:1a:65:f7:86:a7: c3:e7:57:e7:74:8f:a6:0b:5a:3c:5d:fc:25:3f:9a:cd:62:60: fa:14:69:7b:26:49:9d:08:be:c2:e0:c3:bc:a8:12:32:cd:f7: cb:bf:2a:a8:26:c2:05:fa:9f:d8:a3:59:7e:21:da:08:fa:a9: d4:f2:c8:fa:96:54:f7:16:67:63:3b:f9:73:31:1f:a4:61:dc: a3:d4:19:d7:9b:88:ec:5c:c5:c8:26:1e:d9:b9:69:d3:3a:51: e5:60:e3:72:ac:ba:d3:6e:b5:bc:c0:35:fd:be:be:af:b3:bd: c4:ea:7c:aa:b3:ba:e0:30:7c:8c:f1:ce:3f:35:e2:db:87:0f: cf:60:45:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUwODEwMTgzNDQ3WhcNMjUwODE3MTgzNDQ3WjAYMRYwFAYD VQQDEw02ODk4ZTY0Ny04MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXoR67qx1qJrdjSMsbvPtpH2tj0FsOgmzi3t2/Xdim5M+G4Z66+uT2bsw0BO V3cLeiKewdBpet8EEbOHxCBtkgcR/MgW30ECV5e2ThVY8gsNkP0sPGNqwoGOQaFZ kFktVnFzGUhFjBEd9l1GhZXsLN2wCBCuADOzS2Q6i3aw0V6FI5TnJHJsUmznneCq ZwoPXvGAjMoU0LArRm9lU31sJpPIzpQaq1IH7mIha6HmbGunbsU52odKLBvqFaz9 Y/3EXJHtX9gPouz/LIHQsXr1/ZVTr/W0xz4fkbm4Hut5kcjgIAj6OsYMxSvGTUib cCJLqUVj/S4z5LQtiOtcgCyN3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFceAHrX 3F3dBpWEfP/TDyI9t/S7MB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC63IEKpl1e7I65qjP4v0tT2Jl34xBpdLmeQUX/v7ok/iT3p0F2L+Xv uIqyabw8yxaKckU7+nN0fbI0Pq0tdABXKLk84EtxC16fhjLxhz3R/BoIr0lLLasc YSWPzwByhWCYtF6eAcClV2/T7VNCfbxyR95rvGt84dbKGmX3hqfD51fndI+mC1o8 XfwlP5rNYmD6FGl7JkmdCL7C4MO8qBIyzffLvyqoJsIF+p/Yo1l+IdoI+qnU8sj6 llT3FmdjO/lzMR+kYdyj1BnXm4jsXMXIJh7ZuWnTOlHlYONyrLrTbrW8wDX9vr6v s73E6nyqs7rgMHyM8c4/NeLbhw/PYEWM -----END CERTIFICATE-----Generated at Mon Aug 11 07:37:01 2025 by rpki-client