$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: su8GD/Zx0E9Ze5e1dtW+BctuFPZIYWnylnV+E3KuA/8= Subject key identifier: B7:A5:82:59:50:5B:1A:34:8E:C6:C3:00:20:D8:F9:16:E3:06:FC:67 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C4E Signing time: Mon 04 Aug 2025 18:46:15 +0000 Manifest this update: Mon 04 Aug 2025 18:46:15 +0000 Manifest next update: Mon 11 Aug 2025 18:46:15 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: yQzgaVNnmO6tpNvwl4+MypZOmCNxgn+CvxX3mn2CtLk=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Aug 4 18:46:15 2025 GMT Not After : Aug 11 18:46:15 2025 GMT Subject: CN=6890fff7-df8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:38:19:75:52:07:76:2c:d8:ff:8a:28:0d: 50:f0:29:2f:df:8e:de:7c:62:10:ca:6e:c8:9d:5e: d4:ad:5f:53:be:fe:e1:8c:54:9b:51:c8:38:b7:07: 13:cc:10:bd:ca:1e:ba:5c:01:6d:14:00:19:eb:a4: c9:02:78:fe:74:cd:d3:a3:e7:bf:eb:ec:16:e8:6e: 37:c8:04:84:e4:31:c6:e4:0a:a2:69:ba:9c:2f:fc: e2:55:ed:2c:cc:e2:93:04:42:a3:00:45:e5:c5:76: 67:f3:14:d5:21:a7:5c:d7:91:72:54:e5:99:c7:03: ea:25:e8:ed:de:e5:a7:88:25:1b:fc:44:db:ad:dd: 0d:15:dd:9e:b5:bb:ca:ae:05:17:e7:73:36:44:a4: 47:02:2a:d6:b0:a9:44:99:b7:69:c5:d5:7e:e0:c9: 3d:fa:02:5c:fb:85:4a:01:cf:11:96:ad:8a:7e:5b: 39:69:bc:7b:e6:0f:43:0f:32:d5:34:6a:8f:73:78: 5b:f8:91:78:34:87:b3:bf:f9:96:52:a5:e5:8b:56: ed:47:10:45:a7:33:9f:2d:b8:65:34:14:94:c8:03: d1:66:6d:05:cc:48:40:5c:1d:56:06:17:26:0f:41: ee:e8:06:f4:ba:ad:38:83:eb:31:59:e5:2a:57:c7: 67:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A5:82:59:50:5B:1A:34:8E:C6:C3:00:20:D8:F9:16:E3:06:FC:67 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:30:53:ec:71:db:d1:be:8a:81:1d:4c:d2:13:cc:bc:2d:6f: 24:4c:ec:8f:63:3a:2b:49:14:c7:62:03:30:e0:5c:f1:88:46: b6:dc:50:ba:77:4a:d2:2e:aa:47:4b:95:2f:17:26:62:b8:09: 14:8a:ea:80:cb:f7:51:9c:1f:e3:5f:bb:f7:13:ee:61:18:70: 00:c9:b9:13:9d:dc:e9:6b:7a:19:e5:dc:f9:09:a7:8e:d8:63: 37:57:cf:69:66:e6:49:2a:3c:d6:79:c9:6e:8d:d3:24:c3:79: 21:f9:6c:16:10:ab:ee:7e:c4:53:19:0e:9b:31:cb:70:02:39: bc:f3:d7:80:65:d8:7e:78:7f:b6:72:04:9d:32:84:5b:39:02: 62:41:63:1f:ec:d6:d3:6d:00:c0:a4:1e:cd:fc:44:0c:2a:ce: db:28:3f:74:39:a7:db:d3:7f:12:a6:55:a9:e0:e6:9c:db:f0: 0d:6b:92:f0:09:f7:eb:12:52:f9:15:41:e8:c2:05:51:65:cf: 24:39:84:95:c8:f6:c7:c3:4b:61:60:82:0f:6f:70:e5:8c:d8: 7b:ee:6c:b2:c2:45:bd:80:db:f6:b6:9e:fa:09:b4:b5:31:f9: ec:2f:2f:1d:54:f5:2f:62:c5:e8:01:ee:ba:a1:f0:34:26:dc: ee:49:12:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwODA0MTg0NjE1WhcNMjUwODExMTg0NjE1WjAYMRYwFAYD VQQDEw02ODkwZmZmNy1kZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm84GXVSB3Ys2P+KKA1Q8Ckv347efGIQym7InV7UrV9Tvv7hjFSbUcg4twcT zBC9yh66XAFtFAAZ66TJAnj+dM3To+e/6+wW6G43yASE5DHG5AqiabqcL/ziVe0s zOKTBEKjAEXlxXZn8xTVIadc15FyVOWZxwPqJejt3uWniCUb/ETbrd0NFd2etbvK rgUX53M2RKRHAirWsKlEmbdpxdV+4Mk9+gJc+4VKAc8Rlq2Kfls5abx75g9DDzLV NGqPc3hb+JF4NIezv/mWUqXli1btRxBFpzOfLbhlNBSUyAPRZm0FzEhAXB1WBhcm D0Hu6Ab0uq04g+sxWeUqV8dnrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLelgllQ Wxo0jsbDACDY+RbjBvxnMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYMFPscdvRvoqBHUzSE8y8LW8kTOyPYzorSRTHYgMw4FzxiEa23FC6 d0rSLqpHS5UvFyZiuAkUiuqAy/dRnB/jX7v3E+5hGHAAybkTndzpa3oZ5dz5CaeO 2GM3V89pZuZJKjzWeclujdMkw3kh+WwWEKvufsRTGQ6bMctwAjm889eAZdh+eH+2 cgSdMoRbOQJiQWMf7NbTbQDApB7N/EQMKs7bKD90Oafb038SplWp4Oac2/ANa5Lw CffrElL5FUHowgVRZc8kOYSVyPbHw0thYIIPb3DljNh77myywkW9gNv2tp76CbS1 MfnsLy8dVPUvYsXoAe66ofA0JtzuSRLJ -----END CERTIFICATE-----Generated at Wed Aug 6 09:31:19 2025 by rpki-client