$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: xMfUnmgGx/swYCiBjg/vxRkNMah0mZiUxC1MO1f8LGk= Subject key identifier: 96:85:25:B2:39:3E:40:BC:8D:15:3B:B0:FD:FB:3F:0D:89:B1:E7:85 Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 061A Signing time: Wed 06 Aug 2025 23:12:26 +0000 Manifest this update: Wed 06 Aug 2025 23:12:26 +0000 Manifest next update: Wed 13 Aug 2025 23:12:26 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: XuL7zsSuYdzCwqohu+4AWQtvE1eewADwN9WTZ/l/RX4=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Aug 6 23:12:26 2025 GMT Not After : Aug 13 23:12:26 2025 GMT Subject: CN=6893e15a-27c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:49:57:c8:32:91:b9:64:e5:97:97:2c:d7:64: ec:f2:5b:7d:c4:b5:00:a9:b9:eb:4f:74:03:73:b3: 4c:f5:45:fb:0b:a0:6e:fc:1e:52:3d:3b:66:dc:7b: 38:32:a8:a8:b7:7f:cf:6b:c4:aa:74:de:c4:f8:62: 73:f7:dd:42:67:cc:b3:8d:11:51:ff:40:2e:22:2e: ef:6e:08:d7:76:d4:a6:3b:66:4d:29:55:58:18:a8: 38:76:3d:58:a0:8d:fb:9f:53:90:ee:34:29:87:4d: 79:f9:48:c2:44:2f:e5:5c:0c:9d:05:ad:5a:10:e2: a1:ad:ed:35:53:34:89:60:92:bd:12:87:34:2f:47: d5:3b:8b:ee:e4:27:06:7f:4c:2f:93:a5:a4:61:a1: d5:6f:44:ff:5e:a5:ad:59:2a:2d:ab:04:02:45:20: 4c:56:a3:fa:90:3a:be:3e:8a:0c:d8:e2:dc:f1:a4: a7:67:3f:07:35:da:d5:6f:6d:a7:d0:71:ff:16:fc: 49:07:6d:a4:87:45:1d:e0:76:09:87:96:3d:2e:c3: db:a1:d1:9d:50:cb:99:e5:26:73:5b:58:65:ab:58: 8b:3c:45:08:23:2f:23:ea:2d:92:bc:e5:d6:1b:38: 7a:fb:5b:4d:33:ee:55:a6:e6:8c:8b:dc:4f:6b:5b: 0a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:85:25:B2:39:3E:40:BC:8D:15:3B:B0:FD:FB:3F:0D:89:B1:E7:85 X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:47:55:6d:bb:5c:5f:73:61:b8:de:bf:62:b1:0e:e5:6e:b3: 84:08:39:d0:13:1a:46:4b:98:8e:db:57:d3:ec:ed:0b:0f:b0: 69:ad:09:37:05:0b:37:78:97:94:de:e4:70:c1:87:f0:09:9e: a5:26:19:f5:58:53:e7:b6:84:d9:1a:37:54:62:de:72:b7:7b: 77:b0:1e:13:4b:07:45:62:72:20:06:4d:8d:92:55:8b:c3:81: 01:66:b6:e0:52:81:55:e4:5b:02:d9:53:48:25:49:45:58:2b: fc:e1:48:ea:5c:af:d2:6a:d8:87:00:5e:d3:14:36:62:91:9c: 35:83:00:8f:d4:c6:49:97:3a:1a:23:1a:86:9b:4b:5f:a7:c1: eb:25:54:b4:61:ed:e7:16:b7:d4:20:7e:f7:4a:8e:d5:82:b9: 67:75:88:6d:14:d5:f2:5f:f4:ec:a0:c7:5a:96:d8:69:4c:64: 79:03:c9:47:47:3f:14:73:e8:64:7d:19:1f:6a:f7:0d:0c:28: eb:23:e2:e3:1c:ee:6b:08:75:1f:ea:b2:8f:61:ce:e7:52:d2: 59:51:12:ae:b0:5a:1d:29:38:78:da:32:35:a5:e0:dc:1d:db: 61:41:68:3f:e1:af:36:8f:db:a9:7b:e7:b4:bd:cb:b1:33:5f: 73:df:ad:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwODA2MjMxMjI2WhcNMjUwODEzMjMxMjI2WjAYMRYwFAYD VQQDEw02ODkzZTE1YS0yN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqElXyDKRuWTll5cs12Ts8lt9xLUAqbnrT3QDc7NM9UX7C6Bu/B5SPTtm3Hs4 Mqiot3/Pa8SqdN7E+GJz991CZ8yzjRFR/0AuIi7vbgjXdtSmO2ZNKVVYGKg4dj1Y oI37n1OQ7jQph015+UjCRC/lXAydBa1aEOKhre01UzSJYJK9Eoc0L0fVO4vu5CcG f0wvk6WkYaHVb0T/XqWtWSotqwQCRSBMVqP6kDq+PooM2OLc8aSnZz8HNdrVb22n 0HH/FvxJB22kh0Ud4HYJh5Y9LsPbodGdUMuZ5SZzW1hlq1iLPEUIIy8j6i2SvOXW Gzh6+1tNM+5VpuaMi9xPa1sKsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaFJbI5 PkC8jRU7sP37Pw2JseeFMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaR1Vtu1xfc2G43r9isQ7lbrOECDnQExpGS5iO21fT7O0LD7BprQk3 BQs3eJeU3uRwwYfwCZ6lJhn1WFPntoTZGjdUYt5yt3t3sB4TSwdFYnIgBk2NklWL w4EBZrbgUoFV5FsC2VNIJUlFWCv84UjqXK/SatiHAF7TFDZikZw1gwCP1MZJlzoa IxqGm0tfp8HrJVS0Ye3nFrfUIH73So7VgrlndYhtFNXyX/TsoMdalthpTGR5A8lH Rz8Uc+hkfRkfavcNDCjrI+LjHO5rCHUf6rKPYc7nUtJZURKusFodKTh42jI1peDc HdthQWg/4a82j9upe+e0vcuxM19z360e -----END CERTIFICATE-----Generated at Thu Aug 7 14:36:42 2025 by rpki-client