$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: AlXrggJkFZp3VuKzW7ljnHMKHkiS4tIzUwAyA2lDL9A= Subject key identifier: 7C:A8:9F:0F:9B:2B:B3:12:AF:AF:38:5E:65:FD:BB:12:50:DE:E8:17 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BF3 Signing time: Sun 10 Aug 2025 16:11:53 +0000 Manifest this update: Sun 10 Aug 2025 16:11:52 +0000 Manifest next update: Sun 17 Aug 2025 16:11:52 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: epxSuwa93dmeMz0uapu8cjpn61xJybElSZ1O00JxkmE=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7168 (0x1c00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Aug 10 16:11:52 2025 GMT Not After : Aug 17 16:11:52 2025 GMT Subject: CN=6898c4c8-314f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:c1:45:68:f1:c9:2c:c5:ba:c7:20:88:25: dd:9f:65:7f:37:96:95:33:90:84:7c:0e:2a:be:8f: 34:3d:18:78:99:f8:9d:56:62:b6:00:88:3e:c1:ee: 7e:71:9e:e5:a7:3c:4b:2d:33:a9:45:51:0a:fb:7f: 49:56:8d:c3:98:96:60:65:4d:3e:8c:74:9d:23:81: 7f:4a:e3:80:90:b5:09:8d:0a:03:2f:0f:86:ef:fb: 7e:a5:67:dd:9f:3f:b2:98:e1:cf:e9:c8:be:db:fa: 48:bc:8a:9c:49:b3:34:3a:de:56:81:6a:1f:1c:e7: 2f:02:63:7d:47:a5:6e:13:f4:2d:14:e0:69:44:a7: f6:c6:21:32:41:58:ff:3c:ff:99:ac:f4:2a:a0:d2: 3d:df:0e:54:07:ea:e7:f0:b9:85:65:12:5f:50:07: 8f:f8:b4:d2:8f:69:ab:ad:0e:01:a5:10:7e:ef:f0: 6a:c8:ac:4d:10:0f:c3:fe:9a:05:bc:4b:97:e7:8c: 88:76:93:6a:94:4b:55:73:55:ee:4b:1f:5e:07:e8: 03:9f:64:b9:8c:11:bc:6c:e1:d9:51:7b:c1:50:19: 1f:66:27:4b:86:81:47:99:88:8a:32:b1:9f:14:26: 2e:9f:6b:ac:eb:99:6d:6b:06:2d:9c:75:d6:47:78: ad:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A8:9F:0F:9B:2B:B3:12:AF:AF:38:5E:65:FD:BB:12:50:DE:E8:17 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:81:12:59:18:e4:ae:dc:51:9c:52:ce:a4:c1:82:37:70:2b: a0:9d:ec:63:4c:b0:8a:1c:97:7d:2b:ca:79:55:f9:dc:47:f7: 47:08:87:c2:f1:75:dc:3e:25:ca:ec:6a:c6:3b:57:c9:a7:27: 4c:8b:82:b9:4b:76:36:2b:ae:d6:57:c0:95:ae:ae:ed:c4:81: 33:bc:66:ad:fd:e0:cf:bc:3d:b7:51:27:69:b3:a5:41:8a:bc: 5e:ff:b1:a1:10:de:36:0f:66:0c:46:26:8f:a2:7b:e5:5e:39: 62:31:38:9d:80:2c:22:26:74:0c:69:5f:65:d6:58:a9:26:54: 36:20:8d:23:2a:ce:e2:81:86:98:29:ea:16:51:47:b4:eb:7a: 0c:83:23:34:74:e6:88:c7:c2:09:85:94:58:50:04:6b:9b:db: ef:58:9f:17:c0:12:13:a9:8c:28:b3:d8:a0:c7:27:9a:53:e2: 83:fa:51:03:e5:d4:b8:3d:52:cc:a8:ad:94:9a:99:d0:f6:cf: 01:5b:d8:db:12:9d:71:36:4d:90:29:e8:b2:fd:23:82:7b:0d: cb:fa:15:d4:5c:4a:00:82:d7:2e:fb:21:1b:00:e4:d9:eb:be: ef:6c:18:0d:ce:58:36:ae:6f:2e:f1:2a:49:b5:20:44:c3:f5: 8f:0b:e0:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwODEwMTYxMTUyWhcNMjUwODE3MTYxMTUyWjAYMRYwFAYD VQQDEw02ODk4YzRjOC0zMTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmnBRWjxySzFuscgiCXdn2V/N5aVM5CEfA4qvo80PRh4mfidVmK2AIg+we5+ cZ7lpzxLLTOpRVEK+39JVo3DmJZgZU0+jHSdI4F/SuOAkLUJjQoDLw+G7/t+pWfd nz+ymOHP6ci+2/pIvIqcSbM0Ot5WgWofHOcvAmN9R6VuE/QtFOBpRKf2xiEyQVj/ PP+ZrPQqoNI93w5UB+rn8LmFZRJfUAeP+LTSj2mrrQ4BpRB+7/BqyKxNEA/D/poF vEuX54yIdpNqlEtVc1XuSx9eB+gDn2S5jBG8bOHZUXvBUBkfZidLhoFHmYiKMrGf FCYun2us65ltawYtnHXWR3itowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyonw+b K7MSr684XmX9uxJQ3ugXMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfgRJZGOSu3FGcUs6kwYI3cCugnexjTLCKHJd9K8p5VfncR/dHCIfC 8XXcPiXK7GrGO1fJpydMi4K5S3Y2K67WV8CVrq7txIEzvGat/eDPvD23USdps6VB irxe/7GhEN42D2YMRiaPonvlXjliMTidgCwiJnQMaV9l1lipJlQ2II0jKs7igYaY KeoWUUe063oMgyM0dOaIx8IJhZRYUARrm9vvWJ8XwBITqYwos9igxyeaU+KD+lED 5dS4PVLMqK2UmpnQ9s8BW9jbEp1xNk2QKeiy/SOCew3L+hXUXEoAgtcu+yEbAOTZ 677vbBgNzlg2rm8u8SpJtSBEw/WPC+Ai -----END CERTIFICATE-----Generated at Mon Aug 11 07:27:39 2025 by rpki-client