$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: rEeERo+sd+LIjUcXDYH2lHgs9OVM6G8MfkmZbLt0zCw= Subject key identifier: AF:E5:08:80:9E:A5:D7:BE:39:60:D9:80:63:33:43:56:D3:99:B3:68 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 0144 Signing time: Sat 09 Aug 2025 04:43:45 +0000 Manifest this update: Sat 09 Aug 2025 04:43:44 +0000 Manifest next update: Sat 16 Aug 2025 04:43:44 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: aVsPmUpg/ts0kQXdTwcCCJGaU8HB0iLuxxSFKtlLbcI=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: u2PF7jLRF87OSxNEo/O16Z0DeQ7rzjbmi4fJ4Gt3Ltw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Aug 9 04:43:44 2025 GMT Not After : Aug 16 04:43:44 2025 GMT Subject: CN=6896d200-f3d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a8:b5:9c:29:5c:6e:e1:93:7b:82:d4:ad:e0: 28:57:1a:65:34:95:61:1d:c8:3b:7a:96:bc:3e:52: 80:b1:59:ba:27:8c:bc:88:1c:eb:08:96:3d:88:2b: d3:d6:ea:82:e1:e7:ec:0f:44:fc:83:9a:7a:95:eb: ae:28:d5:3b:65:d9:1e:a9:07:ef:16:97:06:6e:cc: 61:2e:34:11:01:2c:22:f3:0f:c6:dc:67:9e:78:9d: 6d:f3:58:11:c7:a2:57:71:44:3a:41:a5:3b:e5:fb: 1e:73:85:0b:da:d2:62:22:0f:bd:fa:94:ea:1b:60: ef:a8:fc:92:1c:60:d7:06:c6:c8:24:77:c6:98:4f: de:ef:c5:2f:ac:68:1e:c1:b5:15:14:36:4a:c2:8f: 9c:38:42:16:36:30:eb:2c:ee:d4:ff:8a:91:73:e6: 4c:c2:97:d5:d6:16:e6:f1:5a:c2:fc:ed:36:04:16: 4f:61:32:c3:73:08:38:06:7d:af:85:34:73:ac:cf: 28:bc:83:ab:4b:a1:42:15:7b:97:0d:d0:12:63:43: cd:04:d0:45:03:10:ec:95:cb:be:66:be:2d:c2:a6: 1e:da:d4:a1:e0:e4:37:fc:40:da:fd:f4:a7:89:88: 39:46:ce:f5:83:d6:fd:92:12:aa:f9:7f:0a:6d:85: d7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E5:08:80:9E:A5:D7:BE:39:60:D9:80:63:33:43:56:D3:99:B3:68 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c7:77:3a:68:f5:28:c0:2d:23:ec:53:27:eb:70:fc:f4:98: e7:6b:e8:b4:aa:d8:77:b9:d9:ca:f1:d4:73:1d:9c:23:76:21: 77:cc:76:d9:92:75:62:d0:97:21:df:f9:7c:d6:9d:3c:90:30: bb:08:22:c1:cb:70:ad:59:e9:f3:51:05:07:38:67:51:5d:08: 7a:72:7f:0e:3b:a9:15:7f:cd:07:a1:a8:6c:cd:30:b8:93:72: a6:ea:b6:40:bd:b7:cf:09:70:61:b6:28:dd:9b:3e:e1:25:73: 44:f5:96:d1:e9:fc:9c:43:22:5a:bb:0d:c5:3d:f1:0f:df:da: 4b:59:ee:56:c2:51:3c:97:01:cf:e5:a0:a6:f6:4e:81:50:a9: 56:07:67:c9:e7:9d:ef:7f:1e:fc:d4:a2:3c:37:83:40:b2:1c: 18:ee:ae:bb:08:28:44:f3:c2:93:a7:77:0c:da:2d:72:dc:36: 48:af:2d:fc:c2:09:f8:ad:3c:7d:3d:60:ad:f9:ba:db:27:d4: 45:99:f6:0e:ac:36:b6:34:6a:df:28:3f:93:3e:41:a1:b9:1b: 2d:68:b4:a1:d7:c4:a3:45:01:88:e0:87:74:90:e0:ab:5c:24: 35:49:25:78:02:c9:36:15:e1:26:db:aa:28:10:8d:8b:be:2a: 6a:e0:d9:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwODA5MDQ0MzQ0WhcNMjUwODE2MDQ0MzQ0WjAYMRYwFAYD VQQDEw02ODk2ZDIwMC1mM2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKi1nClcbuGTe4LUreAoVxplNJVhHcg7epa8PlKAsVm6J4y8iBzrCJY9iCvT 1uqC4efsD0T8g5p6leuuKNU7ZdkeqQfvFpcGbsxhLjQRASwi8w/G3GeeeJ1t81gR x6JXcUQ6QaU75fsec4UL2tJiIg+9+pTqG2DvqPySHGDXBsbIJHfGmE/e78UvrGge wbUVFDZKwo+cOEIWNjDrLO7U/4qRc+ZMwpfV1hbm8VrC/O02BBZPYTLDcwg4Bn2v hTRzrM8ovIOrS6FCFXuXDdASY0PNBNBFAxDslcu+Zr4twqYe2tSh4OQ3/EDa/fSn iYg5Rs71g9b9khKq+X8KbYXXVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/lCICe pde+OWDZgGMzQ1bTmbNoMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByx3c6aPUowC0j7FMn63D89Jjna+i0qth3udnK8dRzHZwjdiF3zHbZ knVi0Jch3/l81p08kDC7CCLBy3CtWenzUQUHOGdRXQh6cn8OO6kVf80HoahszTC4 k3Km6rZAvbfPCXBhtijdmz7hJXNE9ZbR6fycQyJauw3FPfEP39pLWe5WwlE8lwHP 5aCm9k6BUKlWB2fJ553vfx781KI8N4NAshwY7q67CChE88KTp3cM2i1y3DZIry38 wgn4rTx9PWCt+brbJ9RFmfYOrDa2NGrfKD+TPkGhuRstaLSh18SjRQGI4Id0kOCr XCQ1SSV4Ask2FeEm26ooEI2Lvipq4NnO -----END CERTIFICATE-----Generated at Sat Aug 9 10:46:04 2025 by rpki-client