$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: dW8ZvqTZB0qn6S1EF+Rb/kuY2N2mT+qm0nrj+0eNNE0= Subject key identifier: 5B:73:62:31:39:23:45:61:49:92:AE:2C:3E:26:33:DF:3F:A2:B9:EC Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C4F Signing time: Fri 08 Aug 2025 18:45:33 +0000 Manifest this update: Fri 08 Aug 2025 18:45:32 +0000 Manifest next update: Fri 15 Aug 2025 18:45:32 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: LL9DsFxeDRdxBXjzFjaNCRN4x1QPJEiOApkHCl4WA9o=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: m+JE5pCglgWFiHYLAbZNmBupgcN+FxTJD3mSp1g3gfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Aug 8 18:45:32 2025 GMT Not After : Aug 15 18:45:32 2025 GMT Subject: CN=689645cd-9987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:80:6a:a8:c6:c7:83:32:be:d2:8c:e5:d3:e4: f5:79:d9:8c:ce:15:75:82:07:f3:c7:23:96:d1:d9: c2:07:10:50:37:3f:89:43:a6:7b:74:d2:9c:03:d2: 4a:c7:95:75:04:e7:ad:82:07:0b:57:56:59:a3:75: 4a:bf:7d:00:bd:7e:9f:fc:b6:d8:f6:ce:fb:49:f5: 51:d2:87:00:c6:c2:a8:3f:ea:b4:03:65:0b:c9:8e: 2a:7e:62:7b:46:14:f8:80:15:d6:d8:49:a5:16:57: 91:a4:7b:84:38:4a:bf:ac:db:6f:54:a4:7a:01:a7: e7:f6:6e:24:cc:20:f1:7c:29:cf:20:fa:5d:c0:59: 5d:a7:f0:58:2c:48:90:56:c8:8f:f7:ac:23:7d:9f: da:87:bb:92:b3:22:5a:e7:00:f2:99:66:47:d0:06: 1c:b7:b7:44:8a:1f:39:7b:2d:88:5d:da:4a:ff:e7: 9e:84:9c:8b:f7:77:e2:28:10:59:9e:09:eb:e1:d4: 16:98:cd:6e:39:d4:d9:66:fe:42:e8:bc:89:ac:85: 04:14:05:3c:41:df:ab:ea:33:e8:ca:9c:1a:d3:5d: 79:d7:67:1b:c1:24:94:16:ba:e7:31:7e:58:52:42: 6c:97:cd:a5:71:1a:79:d8:93:fb:26:bf:df:bb:02: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:73:62:31:39:23:45:61:49:92:AE:2C:3E:26:33:DF:3F:A2:B9:EC X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:bf:f0:9e:58:71:62:e0:7c:77:4e:4d:a8:65:a9:08:ab:98: 25:93:4f:a8:58:f5:4e:30:4f:d3:c4:cd:02:7f:74:05:61:21: 86:c3:08:8b:42:1f:5e:ae:8c:3c:d2:27:39:c7:4a:ff:cc:08: f5:d7:ba:d2:d5:09:7c:51:05:f4:6e:55:dd:cc:3b:ef:eb:64: 9e:8a:ea:e9:95:db:ee:cf:8c:6f:b0:d6:d3:b3:62:c8:a2:83: 4b:4b:1e:1b:27:28:b9:1d:c3:65:21:df:05:3a:80:62:5e:4b: 1c:e6:2e:2c:19:7f:0b:e1:61:a2:c2:6f:b4:ac:97:d8:8d:d3: b9:b9:1b:2b:78:0d:8d:61:b4:0d:d3:14:a8:3a:39:4f:3c:a2: c0:95:e4:c6:df:b1:d9:bd:f4:2b:a8:0c:79:40:ef:9c:c4:3c: 91:4f:bc:99:72:1b:18:78:54:a4:4f:be:3d:87:21:51:95:40: fa:40:40:73:f9:6e:c0:83:c0:72:de:57:39:10:34:cc:32:66: bf:d4:0c:97:04:ac:72:30:b4:6a:77:76:b7:7b:d7:88:6c:ff: 98:2c:ed:41:4f:3f:04:95:b5:ae:7d:87:e2:24:da:c4:ba:3b: d1:6f:25:18:a5:2f:83:0b:07:18:31:40:36:58:39:a0:52:c6: ce:64:5b:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUwODA4MTg0NTMyWhcNMjUwODE1MTg0NTMyWjAYMRYwFAYD VQQDEw02ODk2NDVjZC05OTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IBqqMbHgzK+0ozl0+T1edmMzhV1ggfzxyOW0dnCBxBQNz+JQ6Z7dNKcA9JK x5V1BOetggcLV1ZZo3VKv30AvX6f/LbY9s77SfVR0ocAxsKoP+q0A2ULyY4qfmJ7 RhT4gBXW2EmlFleRpHuEOEq/rNtvVKR6Aafn9m4kzCDxfCnPIPpdwFldp/BYLEiQ VsiP96wjfZ/ah7uSsyJa5wDymWZH0AYct7dEih85ey2IXdpK/+eehJyL93fiKBBZ ngnr4dQWmM1uOdTZZv5C6LyJrIUEFAU8Qd+r6jPoypwa011512cbwSSUFrrnMX5Y UkJsl82lcRp52JP7Jr/fuwIb7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtzYjE5 I0VhSZKuLD4mM98/ornsMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzv/CeWHFi4Hx3Tk2oZakIq5glk0+oWPVOME/TxM0Cf3QFYSGGwwiL Qh9erow80ic5x0r/zAj117rS1Ql8UQX0blXdzDvv62Seiurpldvuz4xvsNbTs2LI ooNLSx4bJyi5HcNlId8FOoBiXksc5i4sGX8L4WGiwm+0rJfYjdO5uRsreA2NYbQN 0xSoOjlPPKLAleTG37HZvfQrqAx5QO+cxDyRT7yZchsYeFSkT749hyFRlUD6QEBz +W7Ag8By3lc5EDTMMma/1AyXBKxyMLRqd3a3e9eIbP+YLO1BTz8ElbWufYfiJNrE ujvRbyUYpS+DCwcYMUA2WDmgUsbOZFtF -----END CERTIFICATE-----Generated at Sat Aug 9 14:31:06 2025 by rpki-client