$ rpki-client -vvf rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft File: he6Mb5WNbzwfFdLBq8T-m75s7tc.mft (raw, json) Hash identifier: Ku00Nf+QMYB7uptJMV/re5Vlh9kVmazFzcBtCSYxPjs= Subject key identifier: 46:4C:5C:3E:B9:C4:B0:7D:A8:B5:43:D3:A2:6C:45:39:48:74:56:99 Authority key identifier: 85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 Certificate issuer: /CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Certificate serial: 1144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft Manifest number: 113C Signing time: Fri 18 Jul 2025 17:24:40 +0000 Manifest this update: Fri 18 Jul 2025 17:24:39 +0000 Manifest next update: Fri 25 Jul 2025 17:24:39 +0000 Files and hashes: 1: he6Mb5WNbzwfFdLBq8T-m75s7tc.crl (hash: 1fo0s+74AkLVIaki+88ssQiOZ9VXlv6KOjJ/5zdbnZs=) 2: 8B8DEE220F0911E9A8CC815EC4F9AE02.roa (hash: gteMkfVnVg4ffsJGo4gzYRn2LBvsScWGIppneQ2BQXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4420 (0x1144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175165, serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Validity Not Before: Jul 18 17:24:39 2025 GMT Not After : Jul 25 17:24:39 2025 GMT Subject: CN=687a8357-44a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:2c:44:18:ab:8d:4c:69:36:da:a8:5d:fc: ec:14:30:58:d4:df:87:fe:8f:04:7b:80:0a:e0:4d: 28:04:ac:3a:f8:92:07:a7:25:7b:f9:fc:f9:4e:e1: 33:3d:26:c4:07:5b:49:ef:b1:ce:c3:cf:9e:b2:e9: 7d:86:10:54:92:5c:92:7a:7c:9c:4d:58:6a:8e:62: 9e:1a:a9:de:3d:a6:83:28:c9:1e:ec:63:84:54:dd: ba:b9:e3:e0:4a:fd:f4:c5:ca:f8:1b:8f:f2:57:c6: 5a:0a:19:7d:d5:a2:13:9e:af:ce:ae:06:1c:c5:04: 48:73:43:ff:7d:85:a3:ef:bd:0f:bc:a2:bf:d3:18: 24:8a:ba:d8:ca:46:bb:f6:0a:c5:90:41:17:a4:b5: 8f:ac:60:67:e4:0f:8f:86:50:71:86:42:3e:0a:2f: 27:02:da:c3:f6:20:9d:7b:84:2d:fe:9a:3e:31:82: 69:f1:da:84:42:e1:c9:91:e6:33:97:cc:9e:54:a1: 50:68:cd:03:d6:cb:1f:e0:00:91:1f:81:7f:b4:b6: 94:ca:99:03:99:94:43:0f:61:e9:5b:26:80:7d:4b: c6:bd:d0:94:88:5f:8e:50:4b:48:25:38:e5:a4:f3: 94:08:f2:3b:6b:b0:97:28:07:9f:63:95:b4:f1:84: 95:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4C:5C:3E:B9:C4:B0:7D:A8:B5:43:D3:A2:6C:45:39:48:74:56:99 X509v3 Authority Key Identifier: keyid:85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:bd:75:74:bd:a3:bb:12:37:32:50:62:17:9b:92:0a:1c:94: fe:8f:e5:26:a5:eb:be:0c:4e:67:03:da:42:5b:06:d9:2d:6b: 23:58:9f:a5:d7:ca:f7:ae:6a:93:16:28:7a:32:91:3d:8e:11: b8:9a:3c:4d:5a:9c:e6:a0:eb:c2:61:dc:64:de:43:80:d6:4f: f2:e7:11:61:91:d3:b0:c0:1d:e8:82:4b:00:c5:1c:d4:e0:db: 16:fd:b5:56:7d:cf:51:e7:a4:3d:4b:59:02:50:dc:c9:fd:e8: c0:2d:05:45:7c:44:dd:ad:00:80:66:f3:5c:5f:4d:f0:01:c5: c8:68:00:68:f4:24:2c:57:62:c0:04:52:d8:b8:87:25:42:c1: db:96:4d:e7:e4:52:52:bc:3e:07:53:e5:aa:55:7f:e8:1c:0e: 15:57:6c:ba:b0:d5:16:be:61:78:fb:e7:fd:14:29:a9:bd:6f: 93:1b:a4:ff:73:be:bf:89:a9:5f:6a:af:a8:ef:53:7c:9b:7a: 45:ad:1f:f7:c3:d6:ca:78:55:19:75:54:84:2b:1f:d4:95:ce: 17:32:19:a2:9b:2d:71:13:b5:47:c4:34:36:18:35:42:6e:9e: 11:c6:3d:d0:d6:72:16:5d:e0:90:ba:67:00:d9:c5:77:31:a5: 60:93:87:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNjUxMTAvBgNVBAUTKDg1RUU4QzZGOTU4RDZGM0MxRjE1RDJDMUFCQzRGRTlC QkU2Q0VFRDcwHhcNMjUwNzE4MTcyNDM5WhcNMjUwNzI1MTcyNDM5WjAYMRYwFAYD VQQDEw02ODdhODM1Ny00NGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CwsRBirjUxpNtqoXfzsFDBY1N+H/o8Ee4AK4E0oBKw6+JIHpyV7+fz5TuEz PSbEB1tJ77HOw8+esul9hhBUklySenycTVhqjmKeGqnePaaDKMke7GOEVN26uePg Sv30xcr4G4/yV8ZaChl91aITnq/OrgYcxQRIc0P/fYWj770PvKK/0xgkirrYyka7 9grFkEEXpLWPrGBn5A+PhlBxhkI+Ci8nAtrD9iCde4Qt/po+MYJp8dqEQuHJkeYz l8yeVKFQaM0D1ssf4ACRH4F/tLaUypkDmZRDD2HpWyaAfUvGvdCUiF+OUEtIJTjl pPOUCPI7a7CXKAefY5W08YSVIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZMXD65 xLB9qLVD06JsRTlIdFaZMB8GA1UdIwQYMBaAFIXujG+VjW88HxXSwavE/pu+bO7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE2NS85MEYwRkZBRTBG MDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6d2ZGZExCcThULW03NXM3 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNk1iNVdOYnp3ZkZkTEJxOFQtbTc1czd0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTE2NS85MEYwRkZBRTBGMDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6 d2ZGZExCcThULW03NXM3dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqvXV0vaO7EjcyUGIXm5IKHJT+j+Umpeu+DE5nA9pCWwbZLWsjWJ+l 18r3rmqTFih6MpE9jhG4mjxNWpzmoOvCYdxk3kOA1k/y5xFhkdOwwB3ogksAxRzU 4NsW/bVWfc9R56Q9S1kCUNzJ/ejALQVFfETdrQCAZvNcX03wAcXIaABo9CQsV2LA BFLYuIclQsHblk3n5FJSvD4HU+WqVX/oHA4VV2y6sNUWvmF4++f9FCmpvW+TG6T/ c76/ialfaq+o71N8m3pFrR/3w9bKeFUZdVSEKx/Ulc4XMhmimy1xE7VHxDQ2GDVC bp4Rxj3Q1nIWXeCQumcA2cV3MaVgk4f6 -----END CERTIFICATE-----Generated at Sun Jul 20 10:39:56 2025 by rpki-client