$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: cCI9SEMwyucnHpaK4SgluwnyIT98KceK0+7dxDMoCQ0= Subject key identifier: 20:3C:D0:7E:A2:CE:DC:29:3E:5A:E9:BE:7A:05:20:98:A5:02:EB:B4 Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 28EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 2878 Signing time: Sun 10 Aug 2025 15:34:12 +0000 Manifest this update: Sun 10 Aug 2025 15:34:11 +0000 Manifest next update: Sun 17 Aug 2025 15:34:11 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: UxaTEPf2ZWKABcS2IhDQpe4/+rk9yfxIazjHemOrRcw=) 2: 57D5BBF870F211F086293675C4F9AE02.roa (hash: MfxJKHAl2OU7PVOYPpiK4bilcuV1ajcVyr3SRatYOEw=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: r2GAe+G1s6g34WU+Ia+gD4xaBN9kiFwzFN+koW6QJQs=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: Oiuj+Kbic3HQuA1OyKape4/HDdacy+ZxoCUL9iL91SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10476 (0x28ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Aug 10 15:34:11 2025 GMT Not After : Aug 17 15:34:11 2025 GMT Subject: CN=6898bbf4-cff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:e0:bb:f8:c1:02:f7:fd:ce:3c:83:cc:7b: 20:c4:32:fd:a4:cc:67:fd:92:0b:b8:c9:ae:cf:b8: a2:f4:df:53:60:6e:d5:f6:4f:3e:74:13:e8:9e:b9: 03:55:79:02:ba:fe:f8:5b:02:82:01:35:d0:9e:d2: 6c:22:88:b7:69:19:0c:5d:f9:04:42:65:af:9f:e4: 2a:f0:bf:81:8d:28:02:9f:0a:a5:e3:7f:3c:c9:04: 8c:a5:d5:4c:48:9f:23:8a:12:22:81:e5:a8:ab:a7: f4:53:80:ec:a6:40:85:37:3d:5c:fc:c9:44:45:cb: 8a:15:19:17:13:ec:07:67:5e:d0:4b:1a:aa:9e:ac: a6:7b:7c:11:8c:69:36:54:21:87:dd:9f:ff:4c:16: ca:42:de:e9:2a:8b:62:63:29:7e:7f:8b:6d:0e:05: 26:9f:e4:13:18:30:5a:b0:74:b1:96:f1:63:ca:59: 90:d3:67:1e:35:96:da:b3:df:2d:eb:d7:9b:6c:a7: 26:78:be:6a:5b:bd:e0:20:b2:73:2e:93:25:0c:ba: 0c:28:c6:4b:5d:ae:e6:3e:cc:1b:3a:bf:d0:a0:31: f2:5a:7a:53:d3:11:a5:15:f3:fa:a0:fd:f6:f5:e7: 2f:66:73:a5:f3:22:5d:ab:1a:f8:f0:41:07:b7:b2: 88:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3C:D0:7E:A2:CE:DC:29:3E:5A:E9:BE:7A:05:20:98:A5:02:EB:B4 X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d5:d0:44:3a:60:dc:8e:41:1f:f6:bf:a2:9f:f1:05:d0:98: 2c:c3:3c:20:6b:0c:52:62:bb:24:44:d2:f6:24:b6:e2:61:cd: 5a:c2:35:dc:46:e7:ff:4d:e9:9f:34:94:fd:3a:f9:61:17:80: d5:e6:96:d1:2d:13:e5:19:ec:05:d2:5a:43:34:8f:8e:13:77: 1b:6a:75:43:bc:a2:d5:0d:0e:bf:ce:b0:e4:65:d3:f3:f3:e0: 23:21:7d:2e:00:25:4d:7d:65:52:59:b9:56:bc:bf:14:ee:f6: fe:35:f7:e6:bd:81:19:37:6c:24:5c:78:00:1d:64:ee:32:2d: 74:4e:f0:f6:15:4c:d2:0a:fd:32:6c:f2:c5:80:33:6c:9a:6b: 9d:28:19:a2:93:d3:a1:d1:88:59:3a:0b:38:bf:b8:bf:eb:e0: ec:c4:86:73:84:6a:95:81:aa:ab:58:89:b3:8d:01:03:03:8f: 66:91:ad:72:12:0a:67:44:b4:b0:1d:c5:50:a4:e9:68:29:79: 61:f9:97:4d:df:25:f8:99:3c:3c:a9:f4:46:a3:6d:e8:08:0d: eb:89:15:26:7a:8e:2d:ab:8f:05:7f:3e:b5:d5:1f:c7:75:0b: ae:52:4e:89:2b:c1:47:ff:b3:ec:58:8a:40:aa:d7:ce:d1:86: e4:8b:e6:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjUwODEwMTUzNDExWhcNMjUwODE3MTUzNDExWjAYMRYwFAYD VQQDEw02ODk4YmJmNC1jZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10ngu/jBAvf9zjyDzHsgxDL9pMxn/ZILuMmuz7ii9N9TYG7V9k8+dBPonrkD VXkCuv74WwKCATXQntJsIoi3aRkMXfkEQmWvn+Qq8L+BjSgCnwql4388yQSMpdVM SJ8jihIigeWoq6f0U4DspkCFNz1c/MlERcuKFRkXE+wHZ17QSxqqnqyme3wRjGk2 VCGH3Z//TBbKQt7pKotiYyl+f4ttDgUmn+QTGDBasHSxlvFjylmQ02ceNZbas98t 69ebbKcmeL5qW73gILJzLpMlDLoMKMZLXa7mPswbOr/QoDHyWnpT0xGlFfP6oP32 9ecvZnOl8yJdqxr48EEHt7KIyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCA80H6i ztwpPlrpvnoFIJilAuu0MB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS1dBEOmDcjkEf9r+in/EF0JgswzwgawxSYrskRNL2JLbiYc1awjXc Ruf/TemfNJT9OvlhF4DV5pbRLRPlGewF0lpDNI+OE3cbanVDvKLVDQ6/zrDkZdPz 8+AjIX0uACVNfWVSWblWvL8U7vb+NffmvYEZN2wkXHgAHWTuMi10TvD2FUzSCv0y bPLFgDNsmmudKBmik9Oh0YhZOgs4v7i/6+DsxIZzhGqVgaqrWImzjQEDA49mka1y EgpnRLSwHcVQpOloKXlh+ZdN3yX4mTw8qfRGo23oCA3riRUmeo4tq48Ffz611R/H dQuuUk6JK8FH/7PsWIpAqtfO0Ybki+ZF -----END CERTIFICATE-----Generated at Sun Aug 10 19:00:02 2025 by rpki-client