$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft File: Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json) Hash identifier: tZCXgFhRSb427JqllJ1C+gkkKoWbWVMcYmLIUl7i0oI= Subject key identifier: 14:06:16:9B:84:6E:B5:C6:EE:74:22:E3:C2:33:24:9A:D2:F3:E4:2A Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 Certificate issuer: /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Certificate serial: 0AD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft Manifest number: 0AD8 Signing time: Sun 10 Aug 2025 19:25:33 +0000 Manifest this update: Sun 10 Aug 2025 19:25:33 +0000 Manifest next update: Sun 17 Aug 2025 19:25:33 +0000 Files and hashes: 1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: t/npPAP9hA8VXM70jsYJEnEtB9lDhGzSRf26s1szfvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918711E, serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Validity Not Before: Aug 10 19:25:33 2025 GMT Not After : Aug 17 19:25:33 2025 GMT Subject: CN=6898f22d-687e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a5:40:7e:02:bb:15:39:f9:96:20:bb:79:80: 70:6e:1d:a2:45:ca:f2:1d:69:8f:93:db:19:61:ea: 0a:6e:7f:cc:86:9f:1d:b1:3a:75:5e:f4:58:29:be: 0e:ba:39:b7:a9:2d:20:bd:d5:55:e4:c1:f6:83:38: b1:6f:8e:19:ee:8e:c3:35:51:e7:be:5b:9e:9e:4f: 80:9c:38:47:54:7f:98:65:da:0b:6b:11:47:3a:98: eb:43:0f:8f:00:00:dc:ae:9b:cd:3b:f0:1d:eb:8d: d5:06:1d:7d:f6:4e:32:b1:a7:0e:fc:2f:d7:ad:3a: e4:b6:2c:a6:3e:39:80:78:97:05:27:38:0d:53:53: 6f:ec:bf:e9:9e:88:ee:4f:46:07:b0:db:a2:59:02: 7c:a0:26:7a:84:5f:28:35:be:e8:b6:99:b4:47:e9: 53:0a:ba:ea:17:26:8a:00:e8:d6:92:a2:83:02:86: c6:e5:65:ab:a8:6d:9a:9d:17:3e:ab:42:77:6b:18: 57:1b:cb:5d:ea:ed:8c:f8:66:4f:d4:e3:e6:4f:53: 82:c5:08:82:95:b5:ff:dc:ec:45:53:e9:a4:21:2c: c0:99:5e:6c:24:ef:9c:72:0e:44:0b:b9:b8:cc:57: dd:52:80:e3:4e:09:97:de:ce:c9:37:8f:af:50:28: 79:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:06:16:9B:84:6E:B5:C6:EE:74:22:E3:C2:33:24:9A:D2:F3:E4:2A X509v3 Authority Key Identifier: keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:19:4c:33:f7:3a:10:28:85:74:6f:bd:53:c0:eb:31:91: f2:bc:1c:82:3b:a8:50:50:12:57:5d:7a:54:fa:51:a6:5b:bf: 2a:18:eb:35:fa:01:06:3c:95:93:3c:16:c4:4e:85:8c:43:35: ca:2e:e5:51:50:d3:76:c3:be:91:07:7e:de:67:0a:f7:08:bf: ec:e9:df:4e:30:49:03:4d:cd:4a:91:f7:74:b7:a5:e5:0d:1e: 59:b5:50:27:fd:10:e0:b7:e0:72:d3:8d:c2:c1:7d:df:da:95: 40:bc:5b:3f:7e:de:7f:5b:6d:3e:11:f6:76:89:82:14:0c:db: a5:44:3b:92:48:45:10:f2:13:cc:a5:90:40:54:63:22:7d:ab: c6:8a:9d:ea:01:ec:bb:51:45:c0:54:8d:25:a1:95:55:0b:6d: 51:a0:3c:e4:82:61:72:dd:88:7d:07:81:9d:fe:c0:8c:67:51: 06:7a:54:aa:6b:b3:10:67:2a:df:1f:15:7b:c0:57:21:02:1c: 0a:47:3b:a8:e0:ba:ee:21:64:c7:dc:2e:15:d6:c8:85:9e:e7: 3f:5a:43:be:b1:78:f4:c2:d7:01:5f:0d:b4:01:8e:08:9f:d5: 65:1f:e5:96:96:e7:d7:a3:0a:d9:c0:dd:92:bf:3a:c7:f8:5b: d4:4f:0b:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxMUUxMTAvBgNVBAUTKDQ2MUMyRkUyNzdBMjhCQzg5N0YwRkNDQTRGN0M5MTA4 REQ5NzQ5MDMwHhcNMjUwODEwMTkyNTMzWhcNMjUwODE3MTkyNTMzWjAYMRYwFAYD VQQDEw02ODk4ZjIyZC02ODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36VAfgK7FTn5liC7eYBwbh2iRcryHWmPk9sZYeoKbn/Mhp8dsTp1XvRYKb4O ujm3qS0gvdVV5MH2gzixb44Z7o7DNVHnvluenk+AnDhHVH+YZdoLaxFHOpjrQw+P AADcrpvNO/Ad643VBh199k4ysacO/C/XrTrktiymPjmAeJcFJzgNU1Nv7L/pnoju T0YHsNuiWQJ8oCZ6hF8oNb7otpm0R+lTCrrqFyaKAOjWkqKDAobG5WWrqG2anRc+ q0J3axhXG8td6u2M+GZP1OPmT1OCxQiClbX/3OxFU+mkISzAmV5sJO+ccg5EC7m4 zFfdUoDjTgmX3s7JN4+vUCh59QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQGFpuE brXG7nQi48IzJJrS8+QqMB8GA1UdIwQYMBaAFEYcL+J3oovIl/D8yk98kQjdl0kD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzExRS8wQjU4NEM3ODUx MzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4aVg4UHpLVDN5UkNOMlhT UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jod3Y0bmVpaThpWDhQektUM3lSQ04yWFNRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzExRS8wQjU4NEM3ODUxMzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4 aVg4UHpLVDN5UkNOMlhTUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLiRlMM/c6ECiFdG+9U8DrMZHyvByCO6hQUBJXXXpU+lGmW78qGOs1 +gEGPJWTPBbEToWMQzXKLuVRUNN2w76RB37eZwr3CL/s6d9OMEkDTc1Kkfd0t6Xl DR5ZtVAn/RDgt+By043CwX3f2pVAvFs/ft5/W20+EfZ2iYIUDNulRDuSSEUQ8hPM pZBAVGMifavGip3qAey7UUXAVI0loZVVC21RoDzkgmFy3Yh9B4Gd/sCMZ1EGelSq a7MQZyrfHxV7wFchAhwKRzuo4LruIWTH3C4V1siFnuc/WkO+sXj0wtcBXw20AY4I n9VlH+WWlufXowrZwN2SvzrH+FvUTwtC -----END CERTIFICATE-----Generated at Sun Aug 10 21:07:22 2025 by rpki-client