$ rpki-client -vvf rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft File: H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft (raw, json) Hash identifier: Wri3ThiBza/h6wlBU/5/DzyKtER74D/RJsA9Xjat5SY= Subject key identifier: CC:B2:E5:09:7D:61:99:6D:0E:79:87:A3:21:98:F3:43:9B:54:14:53 Authority key identifier: 1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB Certificate issuer: /CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft Manifest number: 05D4 Signing time: Sun 20 Jul 2025 23:12:46 +0000 Manifest this update: Sun 20 Jul 2025 23:12:45 +0000 Manifest next update: Sun 27 Jul 2025 23:12:45 +0000 Files and hashes: 1: H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl (hash: I+Cw3D0QbhJhoz0pTVAbpt2qdvZFkH6tfblWvpX8uag=) 2: 8AA59866C55511EBA7DB557EC4F9AE02.roa (hash: Vhi1JgNRZObirmNIX1fnf2q21PbGnP/JOntHIC3xnJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912708C, serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Validity Not Before: Jul 20 23:12:45 2025 GMT Not After : Jul 27 23:12:45 2025 GMT Subject: CN=687d77ee-03ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:12:9a:3c:cd:24:51:49:b8:c1:4d:5e:86:45: d7:2c:31:df:33:d1:42:96:fe:d8:55:f0:9c:0f:85: ec:55:b1:e5:9f:ee:4f:be:b8:0c:cc:c4:ac:a4:e1: 7e:c8:57:92:e7:0a:1d:db:90:48:fa:74:01:e3:a3: 0b:55:0f:e8:1a:9b:cf:56:12:5c:72:26:65:c5:71: 6d:21:02:25:4b:88:e3:e1:ae:98:3b:f4:b1:81:c0: 45:63:7f:d2:32:26:51:4f:d7:24:04:e5:37:98:dd: c1:15:a5:9d:06:34:43:53:f3:3c:52:80:af:7b:67: a8:0a:2b:6f:a0:39:12:ce:d8:f0:23:8c:76:9c:9b: 77:43:f1:15:91:f4:f0:bf:1a:06:9d:a5:7f:24:b0: 30:cf:9a:b8:9d:58:ca:a8:de:4e:45:4b:ca:76:2b: ca:62:54:1b:4e:53:c9:99:20:79:87:f6:6d:ba:2d: cc:42:2e:79:0e:56:09:10:4e:52:c4:77:c8:32:c0: dc:3f:60:7d:b0:55:2d:6e:ac:0a:73:c4:58:06:b9: 5c:6b:a0:a5:1d:99:25:ea:ae:a8:4c:56:20:0c:85: 6d:fd:4e:24:26:4e:85:6a:a1:d7:16:68:c0:87:38: 8f:5a:31:d5:79:e9:d1:cf:91:7b:6e:71:6d:07:6c: c1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B2:E5:09:7D:61:99:6D:0E:79:87:A3:21:98:F3:43:9B:54:14:53 X509v3 Authority Key Identifier: keyid:1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:82:6a:7e:d3:4f:75:a3:a5:92:16:66:94:dc:a0:eb:2c:7e: b4:55:25:ec:1c:bc:6e:40:5e:e2:5a:5c:b7:83:84:82:aa:22: 9c:55:ea:29:7a:db:75:8c:ca:36:09:b4:33:f8:7b:47:83:77: d4:e6:f1:e4:9a:86:f1:5b:cb:c0:ad:86:81:58:62:12:0e:5c: f7:15:c5:e9:55:cf:06:cd:99:1a:39:ef:24:26:d9:4f:3e:60: e5:4e:4e:6e:4d:66:27:7e:b3:ca:32:fc:f6:d2:1e:8d:5f:69: 3c:e9:e9:30:4d:03:c1:b1:01:c1:55:05:5f:5d:32:9e:57:ad: 1b:f5:a7:c2:1a:97:ea:af:a0:ef:e6:31:52:90:c2:5e:71:37: 4c:0e:ab:c1:80:2d:e7:bc:8a:5e:4b:ec:4b:5e:07:97:91:ec: c3:b4:7c:a9:88:49:d0:f1:0d:89:ce:31:c4:7f:3b:f0:c1:17: 1f:5a:60:23:da:92:25:f4:6b:09:c9:64:4d:3f:90:ff:6f:36: ce:db:54:70:4c:43:6e:0e:9e:48:a5:93:42:5a:d7:ef:75:8f: 41:9e:23:63:04:c9:9b:17:ff:4c:4f:8a:d3:d0:20:e6:e7:a1: 6c:70:f7:e7:01:b2:4b:a9:ad:32:58:6f:41:72:5b:46:e4:90: fe:08:2a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcwOEMxMTAvBgNVBAUTKDFGRDVBMTgyRDU5MzM0NzU3MEYyRDkxODZEMjQ4NEM5 MDk1QzVGRkIwHhcNMjUwNzIwMjMxMjQ1WhcNMjUwNzI3MjMxMjQ1WjAYMRYwFAYD VQQDEw02ODdkNzdlZS0wM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BKaPM0kUUm4wU1ehkXXLDHfM9FClv7YVfCcD4XsVbHln+5PvrgMzMSspOF+ yFeS5wod25BI+nQB46MLVQ/oGpvPVhJcciZlxXFtIQIlS4jj4a6YO/SxgcBFY3/S MiZRT9ckBOU3mN3BFaWdBjRDU/M8UoCve2eoCitvoDkSztjwI4x2nJt3Q/EVkfTw vxoGnaV/JLAwz5q4nVjKqN5ORUvKdivKYlQbTlPJmSB5h/Ztui3MQi55DlYJEE5S xHfIMsDcP2B9sFUtbqwKc8RYBrlca6ClHZkl6q6oTFYgDIVt/U4kJk6FaqHXFmjA hziPWjHVeenRz5F7bnFtB2zBfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyy5Ql9 YZltDnmHoyGY80ObVBRTMB8GA1UdIwQYMBaAFB/VoYLVkzR1cPLZGG0khMkJXF/7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzA4Qy8xNjgwMzRGRUM1 NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5IVnc4dGtZYlNTRXlRbGNY X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5V2hndFdUTkhWdzh0a1liU1NFeVFsY1hfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzA4Qy8xNjgwMzRGRUM1NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5I Vnc4dGtZYlNTRXlRbGNYX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCogmp+0091o6WSFmaU3KDrLH60VSXsHLxuQF7iWly3g4SCqiKcVeop ett1jMo2CbQz+HtHg3fU5vHkmobxW8vArYaBWGISDlz3FcXpVc8GzZkaOe8kJtlP PmDlTk5uTWYnfrPKMvz20h6NX2k86ekwTQPBsQHBVQVfXTKeV60b9afCGpfqr6Dv 5jFSkMJecTdMDqvBgC3nvIpeS+xLXgeXkezDtHypiEnQ8Q2JzjHEfzvwwRcfWmAj 2pIl9GsJyWRNP5D/bzbO21RwTENuDp5IpZNCWtfvdY9BniNjBMmbF/9MT4rT0CDm 56FscPfnAbJLqa0yWG9BcltG5JD+CCob -----END CERTIFICATE-----Generated at Mon Jul 21 12:32:08 2025 by rpki-client