$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: V2GwXsYnipaeoqCATg9LEsoNKR+lgf3MsSlHzoP6TbY= Subject key identifier: 1A:5E:36:3C:0A:B9:D2:77:71:1F:96:90:E7:95:F8:50:E5:FE:20:57 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 34B5 Signing time: Fri 18 Jul 2025 14:26:54 +0000 Manifest this update: Fri 18 Jul 2025 14:26:53 +0000 Manifest next update: Fri 25 Jul 2025 14:26:53 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: Oom1WZ+v0no3GfJzi8ZEael7+hVf3JYKPKPHpFyZiSs=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: lxqMNiae0D1WCp5yu5bfMqSlo/P+rEmoNXBcqzUVjb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Jul 18 14:26:53 2025 GMT Not After : Jul 25 14:26:53 2025 GMT Subject: CN=687a59ae-d948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d3:68:c0:28:73:c4:f9:4d:39:db:92:84:6e: ec:0d:24:d9:b9:c6:4c:f9:07:e1:18:c1:7b:e7:32: 63:15:99:61:29:13:42:00:d2:d9:89:e7:38:d9:44: 13:c5:bc:c4:a0:30:76:00:56:7d:6b:c7:9c:e3:0c: 44:62:e9:c9:0f:b6:b3:8a:e3:d0:bd:c6:09:5a:ed: ca:85:3f:28:a4:bf:7b:a5:b2:63:56:64:98:dd:74: e3:0c:1d:ce:98:8e:ec:c0:be:90:b6:24:00:bc:42: dd:96:94:9f:2f:1f:bb:70:99:59:f2:22:f5:6c:30: e5:49:d1:85:50:0b:65:60:01:7a:0e:9d:b2:0e:7c: 88:5b:fa:60:a3:5e:ee:44:61:cf:cd:b1:38:b4:5c: 32:2e:d8:bd:0b:82:e7:a2:5a:bf:f6:14:da:c6:cf: ec:f8:9f:89:4f:23:ab:50:7c:47:f7:a0:24:72:d4: 30:d5:2e:c3:4e:15:c2:b1:f1:65:9d:d5:ff:e8:36: ef:19:aa:61:0f:6c:74:7e:99:d9:ec:c3:02:d1:11: 92:76:d3:d5:e2:0d:bb:14:d1:e9:58:ac:78:4c:dc: f0:76:9d:da:b1:73:55:3b:cf:06:b9:2c:89:68:53: e7:eb:52:7e:ad:28:b6:fe:5d:ee:2d:e7:fe:32:08: 61:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5E:36:3C:0A:B9:D2:77:71:1F:96:90:E7:95:F8:50:E5:FE:20:57 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:d5:d9:02:0a:e1:60:18:b0:ad:b6:f3:1d:d1:36:e7:f0:5d: fb:56:41:7c:95:81:dd:85:09:90:3c:cf:e4:dc:c6:b0:f7:4c: 92:82:7a:54:9c:f2:ad:4f:ce:a2:a3:46:dd:83:6a:09:52:61: ee:68:57:66:9c:a0:ca:e2:2a:d9:71:69:da:34:03:55:f0:7f: 29:fd:c0:7e:c3:24:c9:1b:c1:4c:94:f4:82:46:f0:1e:d2:97: 0a:87:f3:88:3b:be:6b:ef:cf:d1:b9:3a:b0:59:cf:1a:88:12: f5:f4:d0:b0:99:c2:7d:89:1c:c9:1f:c3:98:b8:e0:d7:4a:59: ea:40:71:d4:33:25:3f:e8:0f:d1:0f:12:77:b9:a8:8f:6c:8c: ac:4a:f0:6c:fc:a6:b7:c2:ca:bd:60:48:bf:62:6e:4c:c5:90: 4d:94:5d:3e:58:4f:f4:59:99:b2:6e:8f:53:3c:91:f2:15:a3: 33:0f:54:a6:3b:41:ea:b6:e5:bc:6d:5e:c5:7e:4c:87:73:d9: a7:96:09:b1:8f:39:c2:72:4b:47:74:30:43:86:bd:9b:cd:5a: 49:b4:94:8a:b6:b9:21:73:aa:ae:a2:d5:0a:15:63:d8:7d:3a: 65:6a:ae:ad:de:45:5d:42:3a:ab:18:8b:be:cb:da:ed:bf:8e: ba:c6:8a:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUwNzE4MTQyNjUzWhcNMjUwNzI1MTQyNjUzWjAYMRYwFAYD VQQDEw02ODdhNTlhZS1kOTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNNowChzxPlNOduShG7sDSTZucZM+QfhGMF75zJjFZlhKRNCANLZiec42UQT xbzEoDB2AFZ9a8ec4wxEYunJD7aziuPQvcYJWu3KhT8opL97pbJjVmSY3XTjDB3O mI7swL6QtiQAvELdlpSfLx+7cJlZ8iL1bDDlSdGFUAtlYAF6Dp2yDnyIW/pgo17u RGHPzbE4tFwyLti9C4Lnolq/9hTaxs/s+J+JTyOrUHxH96AkctQw1S7DThXCsfFl ndX/6DbvGaphD2x0fpnZ7MMC0RGSdtPV4g27FNHpWKx4TNzwdp3asXNVO88GuSyJ aFPn61J+rSi2/l3uLef+Mghh/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpeNjwK udJ3cR+WkOeV+FDl/iBXMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ1dkCCuFgGLCttvMd0Tbn8F37VkF8lYHdhQmQPM/k3Maw90ySgnpU nPKtT86io0bdg2oJUmHuaFdmnKDK4irZcWnaNANV8H8p/cB+wyTJG8FMlPSCRvAe 0pcKh/OIO75r78/RuTqwWc8aiBL19NCwmcJ9iRzJH8OYuODXSlnqQHHUMyU/6A/R DxJ3uaiPbIysSvBs/Ka3wsq9YEi/Ym5MxZBNlF0+WE/0WZmybo9TPJHyFaMzD1Sm O0HqtuW8bV7FfkyHc9mnlgmxjznCcktHdDBDhr2bzVpJtJSKtrkhc6quotUKFWPY fTplaq6t3kVdQjqrGIu+y9rtv466xoph -----END CERTIFICATE-----Generated at Sun Jul 20 02:52:05 2025 by rpki-client