$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: MUo+CTmJu3X8+11/2MqzOWscC0D/LlXI6GdBmlnJGHQ= Subject key identifier: 31:BB:4E:F5:1B:4F:10:C3:15:9A:01:73:89:4A:55:18:3D:18:7A:EF Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 1245 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 1236 Signing time: Tue 12 Aug 2025 17:15:12 +0000 Manifest this update: Tue 12 Aug 2025 17:15:11 +0000 Manifest next update: Tue 19 Aug 2025 17:15:11 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: SCda/IPzBB8fenKO/7E6vOSGUm6k/9UAPJyezu+8bKw=) 2: 698B3FA6986011EE969A225FC4F9AE02.roa (hash: IPMaIsA9uRnd6F5Aml0jreWHK2WPPMV0a6PLoDBBAuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4677 (0x1245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Aug 12 17:15:11 2025 GMT Not After : Aug 19 17:15:11 2025 GMT Subject: CN=689b769f-eca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:2b:66:78:3b:5c:65:54:e5:93:57:13:56: a8:e8:c7:b7:ec:a2:45:79:0d:62:00:26:ea:5e:45: 83:3e:de:93:49:e6:a3:01:22:14:8e:13:eb:d9:41: 1e:63:f6:30:fa:f0:10:c5:8c:43:da:54:6a:93:63: a4:15:fb:c9:ec:3a:a9:5a:4b:ff:0b:6a:a1:0e:10: 90:79:3a:55:6c:79:b4:35:60:d2:24:d3:94:0d:d1: 85:e5:ff:c5:15:f2:5d:19:88:a8:20:b7:14:cc:8b: fd:e8:9f:7d:fc:75:94:3d:71:3d:8b:1a:66:a9:7d: 0d:ca:82:84:8e:9a:8c:ae:f1:4b:c5:81:c0:20:c9: b1:87:98:2f:b1:bb:aa:a3:31:c1:4b:c2:1a:62:1f: 19:5b:3a:36:b0:ba:51:00:d3:d5:76:b2:a0:c7:d7: c8:c7:14:52:22:5f:19:8a:d4:4e:5d:a0:de:49:92: d5:76:ce:f2:bf:1e:15:a8:83:3c:50:a8:ae:30:9d: 48:9d:ae:0d:e8:58:fd:06:74:62:3c:4b:72:0b:46: 12:eb:1b:5f:8e:5c:83:dc:29:ac:b9:86:cb:f5:ee: 32:fc:0b:60:dc:80:ba:ad:c5:42:21:64:18:af:e5: 4a:13:cc:f2:79:4d:77:9c:f2:d1:2a:c1:34:92:f9: 9a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BB:4E:F5:1B:4F:10:C3:15:9A:01:73:89:4A:55:18:3D:18:7A:EF X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:58:f9:91:db:cb:d9:85:07:f5:0e:81:df:70:e2:f1:77:bb: 6b:26:97:f4:a0:dd:63:f4:49:b1:4e:8f:df:75:17:23:88:b4: bc:4a:89:1a:80:62:14:5b:fa:76:88:cf:51:53:7d:41:eb:30: b7:dc:31:6a:7b:12:84:20:7b:7d:0c:de:f8:a8:1e:0e:83:2a: 81:63:d8:03:12:52:d1:cd:64:ef:86:e8:ef:ae:b0:ab:0d:01: a0:01:3f:82:1a:39:3e:a4:9d:ab:55:1d:7a:54:c0:e1:ef:d3: 99:da:17:7b:30:52:e7:66:ef:76:9e:56:2f:11:07:c3:1a:76: aa:cb:f5:07:43:b6:1f:6b:94:d6:31:bd:64:19:ee:d8:4b:85: 28:cf:d3:60:cf:e8:db:64:38:28:d3:8e:5b:77:29:e5:96:b9: 89:b5:89:4b:f1:aa:6e:fa:08:01:62:77:1f:53:9c:72:45:74: 39:e9:32:ad:cf:16:c6:42:00:8e:37:f7:7a:28:67:c2:d4:20: 96:6a:93:b2:df:b5:0b:24:7c:51:a8:3c:f1:dd:3f:c2:8a:b2: b9:95:bf:9d:88:ba:fc:ea:ed:9d:cb:f4:f5:cc:0a:06:00:f8: e5:30:cd:b4:79:35:4c:9f:c9:46:30:36:49:35:c2:b7:9f:91: aa:50:76:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjUwODEyMTcxNTExWhcNMjUwODE5MTcxNTExWjAYMRYwFAYD VQQDEw02ODliNzY5Zi1lY2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwE0rZng7XGVU5ZNXE1ao6Me37KJFeQ1iACbqXkWDPt6TSeajASIUjhPr2UEe Y/Yw+vAQxYxD2lRqk2OkFfvJ7DqpWkv/C2qhDhCQeTpVbHm0NWDSJNOUDdGF5f/F FfJdGYioILcUzIv96J99/HWUPXE9ixpmqX0NyoKEjpqMrvFLxYHAIMmxh5gvsbuq ozHBS8IaYh8ZWzo2sLpRANPVdrKgx9fIxxRSIl8ZitROXaDeSZLVds7yvx4VqIM8 UKiuMJ1Ina4N6Fj9BnRiPEtyC0YS6xtfjlyD3CmsuYbL9e4y/Atg3IC6rcVCIWQY r+VKE8zyeU13nPLRKsE0kvmajwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDG7TvUb TxDDFZoBc4lKVRg9GHrvMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJWPmR28vZhQf1DoHfcOLxd7trJpf0oN1j9EmxTo/fdRcjiLS8Soka gGIUW/p2iM9RU31B6zC33DFqexKEIHt9DN74qB4OgyqBY9gDElLRzWTvhujvrrCr DQGgAT+CGjk+pJ2rVR16VMDh79OZ2hd7MFLnZu92nlYvEQfDGnaqy/UHQ7Yfa5TW Mb1kGe7YS4Uoz9Ngz+jbZDgo045bdynllrmJtYlL8apu+ggBYncfU5xyRXQ56TKt zxbGQgCON/d6KGfC1CCWapOy37ULJHxRqDzx3T/CirK5lb+diLr86u2dy/T1zAoG APjlMM20eTVMn8lGMDZJNcK3n5GqUHbu -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:23 2025 by rpki-client