$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: 8gZKHRWRWABe906M0oKV8lvmNOG8uXhmAI3TQJt6I28= Subject key identifier: DC:0F:4A:6F:C6:4D:AE:DE:81:7D:C7:59:80:E3:E4:61:76:0D:F9:35 Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0A9D Signing time: Fri 08 Aug 2025 19:50:02 +0000 Manifest this update: Fri 08 Aug 2025 19:50:01 +0000 Manifest next update: Fri 15 Aug 2025 19:50:01 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: pLueyRPonUo03b15W8wRfIlZRAPrC1u+Rv6eXxxs/EY=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Aug 8 19:50:01 2025 GMT Not After : Aug 15 19:50:01 2025 GMT Subject: CN=689654e9-7623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:5a:33:51:da:7b:fb:c4:03:98:f1:43:65:73: f5:b2:ad:9e:f2:00:6d:ee:d0:c8:f4:59:50:5c:ed: 2d:0c:98:6e:fd:45:df:ac:46:2c:de:e8:f7:64:bb: ff:5d:be:ee:1c:2f:b7:fd:cd:00:c6:a6:b5:ab:6b: 42:22:19:7d:f7:c1:8f:87:16:d7:65:d0:81:0c:89: bd:a1:8e:52:09:b8:50:9e:2f:99:d3:aa:c2:77:81: 98:45:32:8e:8a:c4:5b:7f:f6:bc:a7:78:90:28:80: f8:59:2c:3e:76:e6:1b:d9:de:a9:d3:38:20:d1:1d: 5e:23:74:f0:20:65:43:d2:8d:f8:34:1e:1b:d8:2f: 95:da:a5:e0:b3:c8:71:32:c4:ae:37:1f:59:00:66: c1:fc:de:f4:57:9f:f9:ee:c5:d5:cf:2d:7d:77:57: 1e:bb:a7:f1:22:72:6f:1e:7e:74:13:72:03:8d:f9: 2c:49:58:cb:c1:39:6e:0d:6a:50:bd:da:ae:da:46: 8c:f7:18:1e:fa:aa:c3:22:f4:bd:dc:99:fa:bc:5e: 7c:9e:73:9b:0a:0e:1d:7b:bd:62:d7:02:21:e9:de: bc:a2:bc:2f:f0:e6:d5:31:03:31:6b:48:2e:a8:7f: 63:f2:fb:a9:8d:ab:6d:2c:ba:46:01:c5:47:42:0f: 1c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0F:4A:6F:C6:4D:AE:DE:81:7D:C7:59:80:E3:E4:61:76:0D:F9:35 X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:46:bf:ad:2e:f8:37:4a:e1:40:a0:11:0a:2d:3d:38:27:ca: 2a:87:28:16:ce:5e:c8:28:61:ec:24:80:1b:c0:bd:cf:bd:31: 76:df:e5:50:33:54:59:1b:5d:7d:53:a3:85:7d:6f:d8:67:5e: 5e:4a:fc:87:71:0d:33:91:fc:a2:d0:d5:46:a7:75:5a:a7:05: 14:7a:1b:1c:af:4b:69:2c:66:c0:6e:6e:63:be:2a:74:7c:12: a8:a1:78:8a:cc:58:27:79:4f:3a:20:07:42:07:4b:b4:61:b2: 8f:2d:e8:35:ef:b3:1d:02:56:47:b0:71:d8:ee:37:11:3a:b4: 1e:3a:cb:db:73:fb:e7:ea:ab:37:10:23:80:79:a3:2a:78:f6: d1:cb:46:28:fe:80:25:1f:a9:b9:63:ac:60:a0:c8:58:36:58: e3:4e:4d:04:86:e6:f8:de:01:fd:c4:81:93:e1:5e:66:1f:2d: 0f:e9:01:4b:67:e7:95:fa:37:8e:76:f7:49:2d:ad:16:d0:42: 57:31:fd:08:6b:8d:18:7f:0e:00:63:59:71:17:fd:f4:7d:2a: 85:37:05:f3:30:7a:2c:db:ef:e2:ce:d3:1d:2c:e9:3d:28:9d: e2:e6:5c:6e:e5:2f:f4:84:ce:ee:e6:3b:1d:6f:15:31:90:eb: 95:e8:ba:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUwODA4MTk1MDAxWhcNMjUwODE1MTk1MDAxWjAYMRYwFAYD VQQDEw02ODk2NTRlOS03NjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+1ozUdp7+8QDmPFDZXP1sq2e8gBt7tDI9FlQXO0tDJhu/UXfrEYs3uj3ZLv/ Xb7uHC+3/c0Axqa1q2tCIhl998GPhxbXZdCBDIm9oY5SCbhQni+Z06rCd4GYRTKO isRbf/a8p3iQKID4WSw+duYb2d6p0zgg0R1eI3TwIGVD0o34NB4b2C+V2qXgs8hx MsSuNx9ZAGbB/N70V5/57sXVzy19d1ceu6fxInJvHn50E3IDjfksSVjLwTluDWpQ vdqu2kaM9xge+qrDIvS93Jn6vF58nnObCg4de71i1wIh6d68orwv8ObVMQMxa0gu qH9j8vupjattLLpGAcVHQg8cPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwPSm/G Ta7egX3HWYDj5GF2Dfk1MB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAERr+tLvg3SuFAoBEKLT04J8oqhygWzl7IKGHsJIAbwL3PvTF23+VQ M1RZG119U6OFfW/YZ15eSvyHcQ0zkfyi0NVGp3VapwUUehscr0tpLGbAbm5jvip0 fBKooXiKzFgneU86IAdCB0u0YbKPLeg177MdAlZHsHHY7jcROrQeOsvbc/vn6qs3 ECOAeaMqePbRy0Yo/oAlH6m5Y6xgoMhYNljjTk0Ehub43gH9xIGT4V5mHy0P6QFL Z+eV+jeOdvdJLa0W0EJXMf0Ia40Yfw4AY1lxF/30fSqFNwXzMHos2+/iztMdLOk9 KJ3i5lxu5S/0hM7u5jsdbxUxkOuV6Lqo -----END CERTIFICATE-----Generated at Sun Aug 10 19:00:28 2025 by rpki-client