$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft File: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json) Hash identifier: eIRHvvOk2/8KxqgtU+NyQYy1e9oRH2e8P9E70kM1+dY= Subject key identifier: C1:CE:D7:D4:55:EE:78:86:5B:6E:0C:78:A4:7F:F0:90:6F:50:32:2C Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 Certificate issuer: /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft Manifest number: 5F Signing time: Wed 23 Jul 2025 07:27:28 +0000 Manifest this update: Wed 23 Jul 2025 07:27:27 +0000 Manifest next update: Wed 30 Jul 2025 07:27:27 +0000 Files and hashes: 1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: H7B++7SEvNLecKZEAlMqAf+MJvL9HeXG0SrlFnK/m2s=) 2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Validity Not Before: Jul 23 07:27:27 2025 GMT Not After : Jul 30 07:27:27 2025 GMT Subject: CN=68808edf-d34d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:00:7e:f6:31:7d:db:3f:2d:0c:10:ac:d0:66: e6:fa:ed:53:f4:ea:ad:4f:85:81:50:7c:65:5a:8a: fa:e6:e0:9b:0a:66:93:04:a6:b7:50:21:a8:f5:20: d2:f4:21:d1:2f:db:55:dd:b3:25:f0:6e:38:2c:94: 5b:72:00:02:a7:e9:80:37:95:a0:66:c8:fe:fb:2c: 50:ba:92:6d:05:b5:36:56:4b:4c:10:32:73:e3:bf: c7:b3:d3:3c:59:8b:0b:af:19:05:56:3b:e1:ce:00: 0e:30:b9:e8:32:3b:f3:d7:fa:1b:95:ad:03:27:7b: d9:ed:d7:c7:a1:d7:4d:23:2c:9a:dc:78:6e:e7:2f: 1b:4b:9e:f0:b5:30:e0:60:fe:5e:52:30:95:0f:19: ef:df:9b:99:56:2d:42:c0:84:42:17:38:db:5c:29: a5:51:c9:5d:1a:dd:60:fd:63:b6:37:85:1f:ce:a0: d7:42:9c:96:3f:e8:1e:ff:19:0f:f3:72:64:f7:c5: 7a:7e:1c:c0:84:8a:27:0f:f5:7d:58:f7:27:e3:02: fd:c4:94:77:20:8c:ec:16:e4:cc:df:12:80:ac:72: 98:01:56:b1:63:50:b4:0b:50:5c:29:c6:ab:6e:98: 48:b7:d3:6f:d9:cd:e6:da:b3:f1:d9:3f:88:81:a4: a8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CE:D7:D4:55:EE:78:86:5B:6E:0C:78:A4:7F:F0:90:6F:50:32:2C X509v3 Authority Key Identifier: keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:db:ff:89:70:99:da:18:21:f8:da:1b:58:c9:51:93:14:2d: 89:f2:1d:c6:b2:20:3b:1d:ce:07:7c:60:56:11:dc:52:ee:cd: ca:70:31:a9:2c:00:e5:cf:4c:f4:4d:de:10:8c:9d:e1:2f:02: d4:a7:ef:bf:82:23:64:c7:2f:4a:52:9b:a9:26:88:b5:a3:f5: 44:ba:b0:35:46:8c:d1:c9:4a:6e:80:83:72:15:f4:f3:3c:69: 2e:fc:64:a1:c6:e0:58:d5:c1:36:a7:2c:ea:08:ee:c8:e2:d8: dd:2b:93:00:86:e7:a5:86:7b:17:e8:06:f8:bd:e6:a3:2f:a6: cd:00:4b:57:3e:5c:b5:cc:29:03:3b:fc:c2:2b:91:94:85:fc: 9b:e9:9e:eb:46:84:f8:36:89:53:bb:1c:76:76:28:8b:15:77: 40:7e:0a:9e:8e:7e:76:7c:c7:2f:7e:73:93:30:05:a9:76:63: 30:68:7f:08:0c:38:00:cb:95:ee:bb:13:fd:da:41:f8:9e:60: cb:ea:40:76:e8:ea:c9:16:1e:f9:3b:1f:bd:95:6d:7a:43:66: 05:21:44:e5:71:1f:0a:47:4c:46:14:17:19:34:1f:53:f1:f5: e3:52:24:8e:c0:93:30:01:36:0b:ef:62:93:14:be:09:14:3a: b7:fc:6a:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NCRTExMC8GA1UEBRMoOUExNjI0RjQ2MDgyRjU0QUM1Nzc4ODU5RTIyNkJEM0JB NjkwMjNGNDAeFw0yNTA3MjMwNzI3MjdaFw0yNTA3MzAwNzI3MjdaMBgxFjAUBgNV BAMTDTY4ODA4ZWRmLWQzNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChAH72MX3bPy0MEKzQZub67VP06q1PhYFQfGVaivrm4JsKZpMEprdQIaj1INL0 IdEv21XdsyXwbjgslFtyAAKn6YA3laBmyP77LFC6km0FtTZWS0wQMnPjv8ez0zxZ iwuvGQVWO+HOAA4wuegyO/PX+huVrQMne9nt18eh100jLJrceG7nLxtLnvC1MOBg /l5SMJUPGe/fm5lWLULAhEIXONtcKaVRyV0a3WD9Y7Y3hR/OoNdCnJY/6B7/GQ/z cmT3xXp+HMCEiicP9X1Y9yfjAv3ElHcgjOwW5MzfEoCscpgBVrFjULQLUFwpxqtu mEi302/Zzebas/HZP4iBpKjPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwc7X1FXu eIZbbgx4pH/wkG9QMiwwHwYDVR0jBBgwFoAUmhYk9GCC9UrFd4hZ4ia9O6aQI/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0JFLzgzQkE4N0FFRDdD MjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWhZazlHQ0M5VXJGZDRoWjRpYTlPNmFRSV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0JFLzgzQkE4N0FFRDdDMjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVy RmQ0aFo0aWE5TzZhUUlfUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAbb/4lwmdoYIfjaG1jJUZMULYnyHcayIDsdzgd8YFYR3FLuzcpwMaks AOXPTPRN3hCMneEvAtSn77+CI2THL0pSm6kmiLWj9US6sDVGjNHJSm6Ag3IV9PM8 aS78ZKHG4FjVwTanLOoI7sji2N0rkwCG56WGexfoBvi95qMvps0AS1c+XLXMKQM7 /MIrkZSF/JvpnutGhPg2iVO7HHZ2KIsVd0B+Cp6OfnZ8xy9+c5MwBal2YzBofwgM OADLle67E/3aQfieYMvqQHbo6skWHvk7H72VbXpDZgUhROVxHwpHTEYUFxk0H1Px 9eNSJI7AkzABNgvvYpMUvgkUOrf8alM= -----END CERTIFICATE-----Generated at Thu Jul 24 08:31:10 2025 by rpki-client