$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: DAHSUwFh65/Fc2/ArT+4SVhMGCkKC68Yxe9YC5vuVsY= Subject key identifier: F6:8A:EC:05:49:F8:28:83:98:31:55:D7:25:6B:98:B5:05:F5:02:67 Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 07FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07E1 Signing time: Fri 18 Jul 2025 21:20:16 +0000 Manifest this update: Fri 18 Jul 2025 21:20:15 +0000 Manifest next update: Fri 25 Jul 2025 21:20:15 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: Khe11pSOH2FYLWaOnhrU/nGr6iHvtOV5dRgJfv3+thg=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Jul 18 21:20:15 2025 GMT Not After : Jul 25 21:20:15 2025 GMT Subject: CN=687aba8f-7332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:a2:d8:45:c7:13:54:36:f9:8c:19:73:ca: ae:6f:00:d6:a9:88:d7:d8:8d:97:f5:59:e6:2f:cf: 51:90:b7:02:57:50:26:9e:46:9d:4f:de:67:a8:63: fe:d9:57:36:ae:69:7f:db:1d:83:98:d9:22:6a:c4: 6b:85:02:d6:2c:99:1a:7d:72:e9:4e:1e:5c:fb:72: 47:d4:a0:9e:28:fa:38:13:4e:80:06:a4:d2:e5:13: c1:b1:29:b5:0b:66:a7:d0:e3:8d:ae:23:9d:e3:d6: 62:90:c4:9b:43:bb:cd:a0:0a:9d:75:9f:f9:90:8a: c8:03:fe:74:a6:44:29:b9:20:8f:95:8e:69:4f:63: 08:3c:c5:67:4f:f2:4e:cc:34:7e:52:b6:10:5b:6a: f7:28:cd:91:03:69:e0:1b:7a:3d:0f:69:09:a8:50: 53:c4:a5:2b:0a:4f:ab:0f:2b:ac:b4:a2:a2:a1:9c: 64:c6:30:53:c6:64:33:8b:6f:a0:c4:9b:13:8b:31: 4d:48:86:c5:46:59:de:86:d0:98:7d:ac:20:a4:ef: 2b:33:d7:ab:b6:ec:c7:34:1c:58:dc:5e:45:af:be: af:5c:0c:75:80:53:d4:34:aa:aa:6a:6b:a5:30:fb: 52:5e:d9:e5:e6:16:ba:cf:a2:01:2d:a9:8c:5e:fc: d4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8A:EC:05:49:F8:28:83:98:31:55:D7:25:6B:98:B5:05:F5:02:67 X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:4a:fb:82:6c:74:5f:72:db:b0:f7:9e:92:2f:17:52:bc:8a: 93:0f:a8:3a:20:60:95:66:9c:de:57:29:95:f0:09:d9:26:bf: 86:9d:29:f6:2b:97:df:a5:ea:99:8a:cb:f7:f2:a0:53:64:c7: 76:56:1c:bf:d4:29:f1:68:ac:a7:ec:0c:c2:66:b6:ec:9a:3b: 00:10:7f:c6:91:bb:de:01:fe:e3:10:fb:51:6c:b2:ce:2a:18: 01:ce:e4:be:2f:cd:4d:71:8a:3d:25:90:84:8c:dc:fd:92:92: 2c:0f:d7:82:ec:07:ca:4e:9e:bd:e9:27:a2:2c:23:d8:e2:26: 0e:e4:ca:fd:e0:45:6b:dd:c7:93:75:4e:b1:f0:a6:f2:ad:69: 98:2d:cd:6e:12:4a:76:f7:9c:e0:dd:fe:40:fd:6f:62:96:9e: 35:85:21:a0:b1:87:40:9e:41:9d:c7:e6:38:8e:31:14:57:95: 8b:bb:04:0c:32:db:23:3e:b2:e2:c2:91:63:1e:98:2e:00:6e: 64:89:73:92:8b:9c:b8:7c:80:2b:e1:2f:92:2c:60:53:c0:21: 18:77:76:98:68:94:be:96:24:16:32:40:91:57:8e:0a:f8:23: 11:92:d9:44:24:61:73:b4:ec:5f:ee:9e:d9:ae:9d:fb:24:7f: f4:2d:9d:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwNzE4MjEyMDE1WhcNMjUwNzI1MjEyMDE1WjAYMRYwFAYD VQQDEw02ODdhYmE4Zi03MzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoGi2EXHE1Q2+YwZc8qubwDWqYjX2I2X9VnmL89RkLcCV1AmnkadT95nqGP+ 2Vc2rml/2x2DmNkiasRrhQLWLJkafXLpTh5c+3JH1KCeKPo4E06ABqTS5RPBsSm1 C2an0OONriOd49ZikMSbQ7vNoAqddZ/5kIrIA/50pkQpuSCPlY5pT2MIPMVnT/JO zDR+UrYQW2r3KM2RA2ngG3o9D2kJqFBTxKUrCk+rDyustKKioZxkxjBTxmQzi2+g xJsTizFNSIbFRlnehtCYfawgpO8rM9ertuzHNBxY3F5Fr76vXAx1gFPUNKqqamul MPtSXtnl5ha6z6IBLamMXvzUIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaK7AVJ +CiDmDFV1yVrmLUF9QJnMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkSvuCbHRfctuw956SLxdSvIqTD6g6IGCVZpzeVymV8AnZJr+GnSn2 K5ffpeqZisv38qBTZMd2Vhy/1CnxaKyn7AzCZrbsmjsAEH/GkbveAf7jEPtRbLLO KhgBzuS+L81NcYo9JZCEjNz9kpIsD9eC7AfKTp696SeiLCPY4iYO5Mr94EVr3ceT dU6x8KbyrWmYLc1uEkp295zg3f5A/W9ilp41hSGgsYdAnkGdx+Y4jjEUV5WLuwQM MtsjPrLiwpFjHpguAG5kiXOSi5y4fIAr4S+SLGBTwCEYd3aYaJS+liQWMkCRV44K +CMRktlEJGFztOxf7p7Zrp37JH/0LZ1e -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:41 2025 by rpki-client