$ rpki-client -vvf rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft File: 0fHal9jt-Zxl369uyp87Umxgq0E.mft (raw, json) Hash identifier: e2dGP4CkXgx65dc3Wb6h8PIe/rNeV+7ZkWttEEghEIE= Subject key identifier: A5:51:E4:F2:58:29:1E:3E:03:56:77:7B:ED:DD:37:CC:FE:63:4D:F8 Authority key identifier: D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 Certificate issuer: /CN=A912185F/serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft Manifest number: A5 Signing time: Sat 19 Jul 2025 06:31:14 +0000 Manifest this update: Sat 19 Jul 2025 06:31:13 +0000 Manifest next update: Sat 26 Jul 2025 06:31:13 +0000 Files and hashes: 1: 0fHal9jt-Zxl369uyp87Umxgq0E.crl (hash: bRgf5q1SKLwlbDmuGVGAOJMkyjIJA66OApmZQ5m1LoE=) 2: F33FD8F8EA5611EF8C0DD984C4F9AE02.roa (hash: CyE/igdPfW2RYSF3wOEJ7cJivf90Ng4geSYtO0ZaU/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912185F, serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41 Validity Not Before: Jul 19 06:31:13 2025 GMT Not After : Jul 26 06:31:13 2025 GMT Subject: CN=687b3bb1-8153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:56:65:34:43:66:33:61:f7:89:a2:39:56:02: 6c:3f:8b:0f:9c:9d:9a:56:80:a4:69:20:61:82:ae: 3a:7c:3d:dc:24:b5:a3:c2:eb:7a:ab:1b:e3:63:c7: c2:5e:d7:1f:6c:d5:98:df:78:53:61:6f:1a:62:d1: d9:21:1d:de:5e:31:93:3f:66:de:68:e9:56:8b:cd: d8:c8:64:d4:7d:c4:7a:b4:c3:77:f7:b6:04:4c:49: 8d:1b:4d:38:2b:50:8d:09:1a:94:8a:02:18:41:06: ef:44:46:5f:8d:ec:78:94:44:4e:46:27:14:5e:12: c8:19:bd:bf:10:0a:a8:45:d1:5a:70:d6:b9:d9:a3: 44:ba:93:67:8b:ed:28:a4:c9:dc:19:04:5b:03:a4: 02:78:f7:bd:71:51:29:be:dc:9f:c3:69:a7:40:d5: d4:88:4c:52:d8:7b:78:b4:83:09:c6:4f:3d:e9:34: 41:38:f6:c5:a7:f4:b5:15:b2:20:73:26:17:c2:f2: 60:b4:a8:a3:73:11:ac:8e:36:0b:b6:61:9c:b1:e7: ad:30:f1:fe:d6:af:58:89:7d:73:eb:08:28:eb:f3: 39:bb:01:ce:e2:8c:ef:2b:10:3e:62:e1:50:bf:a4: f1:bc:a2:8b:e0:0a:90:37:7f:ed:09:61:2a:2c:05: 86:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:51:E4:F2:58:29:1E:3E:03:56:77:7B:ED:DD:37:CC:FE:63:4D:F8 X509v3 Authority Key Identifier: keyid:D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:cb:90:a1:dd:f5:20:c3:2f:39:34:81:1d:39:92:64:cf:5a: f2:03:bd:6a:c3:0f:88:fc:43:e0:fb:8f:79:dc:1c:d4:ab:91: aa:f3:b1:46:9a:45:a2:17:71:12:44:f0:68:d9:b2:86:0a:5e: f2:eb:8f:e3:da:dc:a6:d8:3f:65:18:13:b7:bf:22:ad:9a:c4: 76:76:08:d2:7c:71:a1:5b:7f:25:6d:7c:42:9d:a2:85:8f:c6: 1d:2f:a2:92:13:67:3a:27:33:cc:b3:4a:4c:ff:81:41:9a:61: 15:b5:b2:0e:b2:0d:da:0c:f9:f1:99:19:5e:0b:06:11:16:d3: 01:5b:04:65:fc:41:d8:0d:48:f6:a4:1b:d2:f0:62:6d:ba:3f: e0:cc:93:71:b9:02:4f:be:c2:bf:17:ce:16:49:82:0c:ec:04: 8a:17:7e:7e:0c:d2:b4:6d:0d:ba:8f:90:ff:25:df:84:44:36: cb:ac:ab:77:ed:0a:3f:9b:dc:0a:df:3b:e1:91:19:7c:8b:3d: 20:fd:19:dc:83:11:5b:da:aa:38:1a:91:cd:f2:6e:17:68:2f: f7:df:a3:7f:01:66:82:1c:83:7d:a4:ab:a8:b1:37:35:4b:5a: bb:91:9a:f4:3d:4b:b1:52:66:02:6a:6d:1e:e6:99:22:4b:07: 3c:bf:ba:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4NUYxMTAvBgNVBAUTKEQxRjFEQTk3RDhFREY5OUM2NURGQUY2RUNBOUYzQjUy NkM2MEFCNDEwHhcNMjUwNzE5MDYzMTEzWhcNMjUwNzI2MDYzMTEzWjAYMRYwFAYD VQQDEw02ODdiM2JiMS04MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21ZlNENmM2H3iaI5VgJsP4sPnJ2aVoCkaSBhgq46fD3cJLWjwut6qxvjY8fC XtcfbNWY33hTYW8aYtHZIR3eXjGTP2beaOlWi83YyGTUfcR6tMN397YETEmNG004 K1CNCRqUigIYQQbvREZfjex4lERORicUXhLIGb2/EAqoRdFacNa52aNEupNni+0o pMncGQRbA6QCePe9cVEpvtyfw2mnQNXUiExS2Ht4tIMJxk896TRBOPbFp/S1FbIg cyYXwvJgtKijcxGsjjYLtmGcseetMPH+1q9YiX1z6wgo6/M5uwHO4ozvKxA+YuFQ v6TxvKKL4AqQN3/tCWEqLAWG7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVR5PJY KR4+A1Z3e+3dN8z+Y034MB8GA1UdIwQYMBaAFNHx2pfY7fmcZd+vbsqfO1JsYKtB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTg1Ri8yMEZCNkQyNjc1 NEUxMUVGOUM3OUFGNkVDNEY5QUUwMi8wZkhhbDlqdC1aeGwzNjl1eXA4N1VteGdx MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmSGFsOWp0LVp4bDM2OXV5cDg3VW14Z3EwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTg1Ri8yMEZCNkQyNjc1NEUxMUVGOUM3OUFGNkVDNEY5QUUwMi8wZkhhbDlqdC1a eGwzNjl1eXA4N1VteGdxMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4y5Ch3fUgwy85NIEdOZJkz1ryA71qww+I/EPg+4953BzUq5Gq87FG mkWiF3ESRPBo2bKGCl7y64/j2tym2D9lGBO3vyKtmsR2dgjSfHGhW38lbXxCnaKF j8YdL6KSE2c6JzPMs0pM/4FBmmEVtbIOsg3aDPnxmRleCwYRFtMBWwRl/EHYDUj2 pBvS8GJtuj/gzJNxuQJPvsK/F84WSYIM7ASKF35+DNK0bQ26j5D/Jd+ERDbLrKt3 7Qo/m9wK3zvhkRl8iz0g/RncgxFb2qo4GpHN8m4XaC/336N/AWaCHIN9pKuosTc1 S1q7kZr0PUuxUmYCam0e5pkiSwc8v7or -----END CERTIFICATE-----Generated at Sun Jul 20 07:11:47 2025 by rpki-client