$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: vkdwoAXG0mKE9hWQVx+4dioliBPL503N34cx3Vv52lg= Subject key identifier: FD:A5:77:D8:23:EF:7B:B6:82:5C:62:07:49:53:FD:70:11:14:F8:04 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 34CE Signing time: Thu 04 Sep 2025 14:26:36 +0000 Manifest this update: Thu 04 Sep 2025 14:26:35 +0000 Manifest next update: Thu 11 Sep 2025 14:26:35 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: 8fG/Wj9CEX7YZ1IB7CXYJekp1tA+Ie0myFit7rIOACE=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: lxqMNiae0D1WCp5yu5bfMqSlo/P+rEmoNXBcqzUVjb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Sep 4 14:26:35 2025 GMT Not After : Sep 11 14:26:35 2025 GMT Subject: CN=68b9a19b-163d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:60:90:2f:6d:88:cc:d8:23:8d:98:aa:16:b0: 98:c9:9e:3c:10:fa:1c:54:73:93:9d:3c:3d:8e:1d: a2:32:5e:76:72:da:f7:48:f9:b2:21:ef:3a:4b:99: 47:02:80:26:ce:df:08:9b:a6:69:08:fa:eb:9c:42: 72:ee:aa:49:67:d9:6b:33:02:e9:9c:a6:32:e4:c5: 08:b1:dd:8e:8b:d1:5b:fa:05:a4:69:40:c1:f8:f5: 3e:61:b1:6a:98:12:9b:56:7c:f2:45:55:ed:a7:f1: 44:80:a0:ea:4e:cd:cd:7d:d9:30:66:80:ca:9f:46: 03:b9:d2:6a:8d:58:b9:ae:70:08:c0:6e:35:57:49: e3:d3:7d:1d:8a:fe:fd:73:97:0e:42:81:44:d4:2b: af:c6:46:95:3c:88:6a:6b:64:2b:50:69:9b:b9:0e: b6:1c:2a:07:16:29:99:87:83:05:29:eb:70:80:dd: 68:c9:7e:87:f5:7b:f9:0a:66:ef:1c:33:6f:2c:64: 64:fe:4e:13:39:68:16:53:1c:00:bb:6b:5a:ef:8b: 55:3f:7f:6c:30:9b:49:a8:2f:66:75:5a:69:a1:be: f4:4c:48:8b:7c:ee:93:84:e9:39:b8:cc:de:57:9c: fa:d9:1a:3b:20:ec:ef:3b:ca:2b:58:22:5a:71:17: 8b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A5:77:D8:23:EF:7B:B6:82:5C:62:07:49:53:FD:70:11:14:F8:04 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:9e:51:63:e3:d1:e8:cf:49:b6:ff:41:86:ec:12:38:7b:a4: a0:df:bc:54:3c:e4:e6:74:19:32:b8:d7:35:b7:d5:f2:82:33: bc:0b:69:ab:16:82:3c:ad:50:0c:60:ec:3b:90:27:55:4f:f5: d4:61:1d:ce:07:bc:10:d9:6b:24:66:18:26:d6:2f:b9:32:02: 1d:1b:e5:41:e4:71:9e:fe:d1:1f:29:cc:60:2e:97:bc:0b:e2: 94:25:7c:d7:ac:6b:cb:e7:53:b3:51:46:26:57:ba:38:1c:74: f5:c5:2b:a5:91:0b:7f:7b:3c:db:57:34:e0:08:05:db:5c:f6: 81:53:c9:8d:43:04:87:1c:6b:4b:eb:db:06:6a:97:34:38:ab: d6:44:26:06:df:41:1b:97:d2:42:b5:3e:e3:05:a6:af:b4:ef: 11:ed:43:5d:80:31:6b:50:19:03:8f:ef:ef:1a:86:17:ae:d9: 50:0d:a1:98:96:e5:e6:dd:58:e0:c9:3d:b0:ed:b4:1e:15:2f: 9a:37:8a:df:1c:0c:3a:49:ac:ee:7e:6d:87:8b:e6:c2:b8:d8: e8:67:78:50:a3:7e:f3:a6:29:54:4d:b9:63:86:12:92:0a:c7: 9d:e4:40:07:a9:c5:0a:6e:89:24:4d:a5:e4:e3:67:8f:a7:f5: 81:35:c4:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUwOTA0MTQyNjM1WhcNMjUwOTExMTQyNjM1WjAYMRYwFAYD VQQDEw02OGI5YTE5Yi0xNjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2CQL22IzNgjjZiqFrCYyZ48EPocVHOTnTw9jh2iMl52ctr3SPmyIe86S5lH AoAmzt8Im6ZpCPrrnEJy7qpJZ9lrMwLpnKYy5MUIsd2Oi9Fb+gWkaUDB+PU+YbFq mBKbVnzyRVXtp/FEgKDqTs3NfdkwZoDKn0YDudJqjVi5rnAIwG41V0nj030div79 c5cOQoFE1CuvxkaVPIhqa2QrUGmbuQ62HCoHFimZh4MFKetwgN1oyX6H9Xv5Cmbv HDNvLGRk/k4TOWgWUxwAu2ta74tVP39sMJtJqC9mdVppob70TEiLfO6ThOk5uMze V5z62Ro7IOzvO8orWCJacReLwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2ld9gj 73u2glxiB0lT/XARFPgEMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtnlFj49Hoz0m2/0GG7BI4e6Sg37xUPOTmdBkyuNc1t9XygjO8C2mr FoI8rVAMYOw7kCdVT/XUYR3OB7wQ2WskZhgm1i+5MgIdG+VB5HGe/tEfKcxgLpe8 C+KUJXzXrGvL51OzUUYmV7o4HHT1xSulkQt/ezzbVzTgCAXbXPaBU8mNQwSHHGtL 69sGapc0OKvWRCYG30Ebl9JCtT7jBaavtO8R7UNdgDFrUBkDj+/vGoYXrtlQDaGY luXm3VjgyT2w7bQeFS+aN4rfHAw6Sazufm2Hi+bCuNjoZ3hQo37zpilUTbljhhKS Csed5EAHqcUKbokkTaXk42ePp/WBNcRR -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:18 2025 by rpki-client