$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft File: Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json) Hash identifier: PpBSb5bBrpjqhOkR/NI+/D0n3uStEYbmO5IiPoDgb4U= Subject key identifier: E2:95:3D:90:77:54:00:2A:CE:DA:25:96:37:A4:DA:48:2A:6E:B7:F4 Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 Certificate issuer: /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft Manifest number: 0ACE Signing time: Tue 22 Jul 2025 19:40:24 +0000 Manifest this update: Tue 22 Jul 2025 19:40:24 +0000 Manifest next update: Tue 29 Jul 2025 19:40:24 +0000 Files and hashes: 1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: zWEIvTtsOuQHSKfRcGzTy/ecfNW9Vt3EuWiQm7i6Lh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918711E, serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Validity Not Before: Jul 22 19:40:24 2025 GMT Not After : Jul 29 19:40:24 2025 GMT Subject: CN=687fe928-5d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b5:be:36:1d:22:bf:28:df:ab:bc:5b:47:2f: d8:bb:9f:27:aa:62:84:f2:a5:46:22:f5:af:bb:99: 22:af:24:d7:4c:24:19:f1:95:14:6f:29:aa:64:aa: aa:13:21:75:ec:97:d2:af:8c:1d:05:93:c3:79:19: 06:2b:a6:da:ae:73:a5:70:54:b4:b0:45:c2:05:72: 85:e0:ec:30:63:a4:ab:b2:cc:c1:40:c9:e2:a6:82: e4:e3:57:9c:0e:9c:cf:2e:9d:89:bf:f1:85:9e:dc: 39:d3:b2:77:2d:d1:5b:98:e6:ba:b1:93:cb:df:3a: a9:78:84:a8:c7:a0:ba:00:28:7c:63:05:c3:f3:57: e8:d7:62:6a:28:fc:81:79:36:02:10:c3:f9:f6:04: 94:d3:6b:f8:ed:d6:8e:11:93:8f:3a:4e:91:eb:20: 8b:e3:3b:f6:af:12:05:2b:99:37:63:87:29:8d:ad: 3c:c4:1e:b8:86:42:4f:bb:c0:c6:da:18:97:f0:4e: c7:c4:fa:f0:2e:48:f4:c4:54:c6:92:6c:57:a0:62: 89:67:06:99:5e:d9:a0:a5:f0:31:9a:a4:ec:0d:02: 7f:ae:95:01:54:d7:09:84:30:97:de:f6:c2:e4:19: ac:e2:04:8e:9b:d2:ca:16:ae:d7:4e:8f:d2:82:47: ed:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:95:3D:90:77:54:00:2A:CE:DA:25:96:37:A4:DA:48:2A:6E:B7:F4 X509v3 Authority Key Identifier: keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:83:ba:c6:6e:a7:58:c4:00:e9:bf:42:d9:3a:7a:2d:ed:d0: 06:b2:b6:76:6c:d2:d8:3e:1e:a0:0f:98:a7:52:1a:62:4b:4b: 27:69:78:a6:0b:10:e9:b5:55:24:cd:18:3d:1c:a5:e9:46:67: a4:25:a0:a4:06:ac:e0:5f:15:a9:75:67:a6:09:a9:b3:5c:6a: 6c:45:1c:f7:aa:f4:29:b2:44:eb:08:b5:0d:4a:29:d0:44:de: 02:03:8d:be:a4:ee:c2:0d:72:9d:e3:b9:c8:9e:53:9f:f5:3b: 4d:85:a0:25:27:82:38:51:ca:9b:d7:ba:b8:bb:4a:f1:d3:d9: 0f:d9:a4:c6:30:88:e9:a4:b0:74:18:a9:46:a8:8a:3e:ff:09: 4a:4d:0a:66:55:32:fb:9a:c8:32:09:4c:30:25:ba:af:cd:de: da:31:ed:a5:f3:8f:bf:65:52:4e:54:b9:05:34:2a:11:8a:10: cf:ce:1d:e8:92:1e:d8:3c:a8:12:26:74:f5:1f:9d:b8:e0:c7: a0:6d:d9:61:fa:8f:f0:9d:8c:38:29:8d:39:96:bf:7d:4b:b3: 0a:24:3f:79:fc:9f:85:bf:ff:39:54:ce:ae:61:59:59:3c:73: 63:29:57:04:70:92:ef:05:85:5b:cf:14:5a:fa:ea:e1:ac:a3: 05:cf:a6:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxMUUxMTAvBgNVBAUTKDQ2MUMyRkUyNzdBMjhCQzg5N0YwRkNDQTRGN0M5MTA4 REQ5NzQ5MDMwHhcNMjUwNzIyMTk0MDI0WhcNMjUwNzI5MTk0MDI0WjAYMRYwFAYD VQQDEw02ODdmZTkyOC01ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrW+Nh0ivyjfq7xbRy/Yu58nqmKE8qVGIvWvu5kiryTXTCQZ8ZUUbymqZKqq EyF17JfSr4wdBZPDeRkGK6barnOlcFS0sEXCBXKF4OwwY6SrsszBQMnipoLk41ec DpzPLp2Jv/GFntw507J3LdFbmOa6sZPL3zqpeISox6C6ACh8YwXD81fo12JqKPyB eTYCEMP59gSU02v47daOEZOPOk6R6yCL4zv2rxIFK5k3Y4cpja08xB64hkJPu8DG 2hiX8E7HxPrwLkj0xFTGkmxXoGKJZwaZXtmgpfAxmqTsDQJ/rpUBVNcJhDCX3vbC 5Bms4gSOm9LKFq7XTo/SgkftMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKVPZB3 VAAqztolljek2kgqbrf0MB8GA1UdIwQYMBaAFEYcL+J3oovIl/D8yk98kQjdl0kD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzExRS8wQjU4NEM3ODUx MzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4aVg4UHpLVDN5UkNOMlhT UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jod3Y0bmVpaThpWDhQektUM3lSQ04yWFNRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzExRS8wQjU4NEM3ODUxMzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4 aVg4UHpLVDN5UkNOMlhTUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYg7rGbqdYxADpv0LZOnot7dAGsrZ2bNLYPh6gD5inUhpiS0snaXim CxDptVUkzRg9HKXpRmekJaCkBqzgXxWpdWemCamzXGpsRRz3qvQpskTrCLUNSinQ RN4CA42+pO7CDXKd47nInlOf9TtNhaAlJ4I4Ucqb17q4u0rx09kP2aTGMIjppLB0 GKlGqIo+/wlKTQpmVTL7msgyCUwwJbqvzd7aMe2l84+/ZVJOVLkFNCoRihDPzh3o kh7YPKgSJnT1H5244Megbdlh+o/wnYw4KY05lr99S7MKJD95/J+Fv/85VM6uYVlZ PHNjKVcEcJLvBYVbzxRa+urhrKMFz6Z5 -----END CERTIFICATE-----Generated at Thu Jul 24 12:16:06 2025 by rpki-client