$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: v+tGVM3LjbMKFWGnmZgm/qxhm4D74pxZyBnd1wKwxJo= Subject key identifier: 7B:05:B7:AC:B9:A0:5A:C5:8F:EE:6A:03:2D:8D:F8:6A:E8:C2:76:F7 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 0642 Signing time: Fri 08 Aug 2025 23:05:08 +0000 Manifest this update: Fri 08 Aug 2025 23:05:07 +0000 Manifest next update: Fri 15 Aug 2025 23:05:07 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: FlH9DL6RhwJuBDD1OpPtOzXJ06eZSx73sW9mW3Tyj0s=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Aug 8 23:05:07 2025 GMT Not After : Aug 15 23:05:07 2025 GMT Subject: CN=689682a4-ae2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9d:73:6f:bd:e3:0f:10:60:6e:da:a1:50:df: 8d:84:6f:db:b5:66:35:e8:cb:39:9d:dc:a4:ac:12: e8:d6:b2:63:77:db:87:21:73:e4:63:78:63:7c:84: 95:4c:2d:00:8f:4c:1e:62:0e:7e:ce:1c:f3:45:35: 93:e7:17:92:46:c9:4b:27:99:3a:90:87:ca:9f:9e: 6c:48:cf:16:f1:03:38:36:84:c4:08:73:9c:51:3e: 42:c9:95:63:74:88:ba:ae:c1:5a:8c:91:0a:1c:7d: 65:a2:87:c3:09:76:f2:11:86:4d:18:7f:b0:31:f2: 22:5a:e3:2c:9c:b0:e2:5f:a9:2c:e9:5c:7a:bd:7b: 7b:a0:ad:e9:98:a9:cf:d2:06:04:38:8b:3a:c2:a1: 86:0e:06:ea:06:50:74:d1:b7:48:30:47:da:a3:0f: 83:9d:09:09:dd:b7:3b:11:35:08:03:2a:d1:95:d1: 2f:7d:35:9d:ef:dc:2a:24:09:eb:01:72:62:c5:42: 11:25:a1:cb:1a:f0:c1:61:de:14:8f:5f:c0:53:f1: f7:3d:8b:94:94:9f:9a:94:05:4a:c6:fe:13:f6:ef: ed:a3:e3:cc:df:8d:f5:fc:e5:2e:f3:d6:fa:ea:fc: 70:f4:e8:2c:d3:06:3c:00:49:1d:0c:96:5f:f0:d4: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:05:B7:AC:B9:A0:5A:C5:8F:EE:6A:03:2D:8D:F8:6A:E8:C2:76:F7 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:b7:6d:aa:e8:81:f5:2e:08:84:c9:f2:8a:98:eb:4d:56:bd: a1:4c:a0:5d:5c:bf:5e:cd:dc:59:ef:cc:60:65:55:ac:0f:03: 72:76:d1:2e:96:af:ff:78:f8:81:cb:00:8c:f3:53:52:2f:b5: 3f:97:45:0a:55:9c:4a:38:55:a7:64:6c:11:df:03:ba:c2:d9: 2a:17:6a:b6:96:02:fa:3b:f3:2a:50:92:64:89:b5:93:a6:32: b1:77:b5:59:bd:3e:2f:6a:b9:2a:66:b2:a8:14:30:6f:20:21: 08:6d:d3:08:64:dc:19:d6:8b:53:ba:f6:c0:50:3b:c6:43:75: d2:ba:8d:7d:aa:fc:26:0c:b5:e3:28:b6:8e:31:4e:f4:23:94: 0d:30:db:93:3b:3c:08:c3:c1:9f:b3:54:6c:a5:25:48:51:c2: 53:33:ba:6e:30:c6:10:19:06:fa:d1:9b:c3:01:1a:69:3c:da: a2:0e:87:f0:d8:50:cb:a9:44:fe:54:ff:59:c4:05:4f:6d:fa: 53:bd:14:31:5a:a0:62:1a:ee:d4:0c:c7:b9:c6:e2:a7:25:7f: b7:53:2d:33:72:fd:62:7c:4b:6e:49:73:87:1f:dd:e9:1c:7d: 85:47:5a:dd:63:1e:da:0f:23:26:9c:cd:ee:2f:f0:5b:c8:12: 80:75:3e:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUwODA4MjMwNTA3WhcNMjUwODE1MjMwNTA3WjAYMRYwFAYD VQQDEw02ODk2ODJhNC1hZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo51zb73jDxBgbtqhUN+NhG/btWY16Ms5ndykrBLo1rJjd9uHIXPkY3hjfISV TC0Aj0weYg5+zhzzRTWT5xeSRslLJ5k6kIfKn55sSM8W8QM4NoTECHOcUT5CyZVj dIi6rsFajJEKHH1loofDCXbyEYZNGH+wMfIiWuMsnLDiX6ks6Vx6vXt7oK3pmKnP 0gYEOIs6wqGGDgbqBlB00bdIMEfaow+DnQkJ3bc7ETUIAyrRldEvfTWd79wqJAnr AXJixUIRJaHLGvDBYd4Uj1/AU/H3PYuUlJ+alAVKxv4T9u/to+PM3431/OUu89b6 6vxw9Ogs0wY8AEkdDJZf8NSXxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsFt6y5 oFrFj+5qAy2N+Grownb3MB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAct22q6IH1LgiEyfKKmOtNVr2hTKBdXL9ezdxZ78xgZVWsDwNydtEu lq//ePiBywCM81NSL7U/l0UKVZxKOFWnZGwR3wO6wtkqF2q2lgL6O/MqUJJkibWT pjKxd7VZvT4varkqZrKoFDBvICEIbdMIZNwZ1otTuvbAUDvGQ3XSuo19qvwmDLXj KLaOMU70I5QNMNuTOzwIw8Gfs1RspSVIUcJTM7puMMYQGQb60ZvDARppPNqiDofw 2FDLqUT+VP9ZxAVPbfpTvRQxWqBiGu7UDMe5xuKnJX+3Uy0zcv1ifEtuSXOHH93p HH2FR1rdYx7aDyMmnM3uL/BbyBKAdT7V -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:06 2025 by rpki-client