$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: rf1X6s73nf6cSFdxtqK4/UrCErLxHGyYO7zZpQp/BDo= Subject key identifier: 65:D1:E2:93:12:76:0B:58:7B:F1:93:4C:BB:08:76:73:C0:02:2E:B2 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C45 Signing time: Fri 18 Jul 2025 18:43:39 +0000 Manifest this update: Fri 18 Jul 2025 18:43:38 +0000 Manifest next update: Fri 25 Jul 2025 18:43:38 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: PkV9qrgRb9f24XKzdRFo6PeAHtP43KauGJUoKBiwK/M=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Jul 18 18:43:38 2025 GMT Not After : Jul 25 18:43:38 2025 GMT Subject: CN=687a95db-175a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:16:70:8c:8f:88:4b:6a:24:a9:fa:ce:98: 6e:a3:4f:7d:32:d1:b7:a7:34:2a:6d:4c:26:2d:d4: 07:a3:09:f4:11:2d:d5:f4:c0:df:18:7a:67:7f:a6: 75:55:a0:c3:52:79:ba:09:02:dd:11:c5:3c:71:a3: 03:88:f4:2b:e0:ce:60:ea:23:73:9f:e3:c8:01:49: a4:2f:99:28:35:e4:22:a2:64:2d:31:85:02:5f:9e: 81:0e:8a:c9:bc:23:39:c7:01:94:98:1d:87:33:cf: 5a:f4:de:ff:20:a4:b5:90:e5:5c:c1:0a:94:41:13: 83:6a:39:fc:b9:ef:5a:5f:36:95:01:b2:29:ce:59: 3e:b9:38:37:ce:39:37:f8:d7:ac:72:0e:84:2c:a1: ee:86:65:eb:2d:c9:ca:6e:96:d9:40:f6:b4:70:f5: d9:fb:05:a2:f1:9f:7d:d0:16:33:42:28:23:1d:66: d6:36:1c:ba:0c:8a:cd:39:12:25:6a:30:bd:07:18: 40:55:f0:84:51:fd:69:24:ad:73:dd:76:01:51:f8: df:44:1d:27:f9:09:61:e7:6f:07:0e:37:0f:48:cc: 94:50:01:43:aa:e1:92:97:06:91:d1:5b:24:4e:e9: 4d:bf:a5:9e:cf:6f:0c:41:a4:80:d8:0b:82:b4:c4: 21:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D1:E2:93:12:76:0B:58:7B:F1:93:4C:BB:08:76:73:C0:02:2E:B2 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:43:62:7e:8d:4a:57:25:21:b9:91:c9:f1:71:4e:45:de:9f: 77:82:70:5b:5d:73:7c:b9:ed:44:44:55:15:d2:29:84:c9:05: 69:91:2f:43:0f:95:cd:b6:0f:2c:d1:c4:93:78:cc:ca:3a:90: b4:3d:14:36:b2:a0:fc:d3:55:5d:49:f2:1a:17:0d:17:bc:23: a9:54:cc:23:fc:94:ef:0e:8c:88:ff:3c:a7:bd:ec:d2:cf:7a: f1:77:02:c7:07:7b:e0:0e:72:47:71:95:6b:0b:6c:e8:fc:66: 94:e9:87:92:0e:62:db:94:19:98:dc:09:58:ee:71:fc:64:1f: c5:32:50:8a:8b:47:01:43:1f:b2:00:50:48:d2:c9:63:82:5a: 1a:30:0c:c0:77:34:2e:45:ea:94:70:bf:0b:74:6a:38:f1:7e: 04:8b:61:63:19:d9:b0:47:5d:1a:3c:a8:62:8f:e1:a6:2d:a8: 18:8e:a4:62:8c:ad:28:80:2f:67:47:95:ef:21:29:b3:ec:39: eb:57:b2:95:0f:9f:89:30:7d:f8:68:c0:67:c5:a6:b9:f6:88: 1f:d3:ce:3a:d0:55:db:27:ee:a8:a9:59:0e:1b:f0:4d:f4:ba: ea:42:70:c2:0b:ac:c2:85:d7:46:5f:0f:9d:97:99:b7:b3:86: 0d:43:d5:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNzE4MTg0MzM4WhcNMjUwNzI1MTg0MzM4WjAYMRYwFAYD VQQDEw02ODdhOTVkYi0xNzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M8WcIyPiEtqJKn6zphuo099MtG3pzQqbUwmLdQHown0ES3V9MDfGHpnf6Z1 VaDDUnm6CQLdEcU8caMDiPQr4M5g6iNzn+PIAUmkL5koNeQiomQtMYUCX56BDorJ vCM5xwGUmB2HM89a9N7/IKS1kOVcwQqUQRODajn8ue9aXzaVAbIpzlk+uTg3zjk3 +Nescg6ELKHuhmXrLcnKbpbZQPa0cPXZ+wWi8Z990BYzQigjHWbWNhy6DIrNORIl ajC9BxhAVfCEUf1pJK1z3XYBUfjfRB0n+Qlh528HDjcPSMyUUAFDquGSlwaR0Vsk TulNv6Wez28MQaSA2AuCtMQhZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXR4pMS dgtYe/GTTLsIdnPAAi6yMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLQ2J+jUpXJSG5kcnxcU5F3p93gnBbXXN8ue1ERFUV0imEyQVpkS9D D5XNtg8s0cSTeMzKOpC0PRQ2sqD801VdSfIaFw0XvCOpVMwj/JTvDoyI/zynvezS z3rxdwLHB3vgDnJHcZVrC2zo/GaU6YeSDmLblBmY3AlY7nH8ZB/FMlCKi0cBQx+y AFBI0sljgloaMAzAdzQuReqUcL8LdGo48X4Ei2FjGdmwR10aPKhij+GmLagYjqRi jK0ogC9nR5XvISmz7DnrV7KVD5+JMH34aMBnxaa59ogf08460FXbJ+6oqVkOG/BN 9LrqQnDCC6zChddGXw+dl5m3s4YNQ9X6 -----END CERTIFICATE-----Generated at Sun Jul 20 09:57:03 2025 by rpki-client