$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: zyeJvV1Vcx2k+aVUoox70ngBjePvGLBwELxUrSUAbiQ= Subject key identifier: 62:0A:72:89:F8:D4:D4:57:5D:6F:82:69:12:4E:41:98:D3:74:C6:63 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 0681 Signing time: Wed 20 Aug 2025 22:30:21 +0000 Manifest this update: Wed 20 Aug 2025 22:30:21 +0000 Manifest next update: Wed 27 Aug 2025 22:30:21 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: ZyLIWWWTfL9MxH3eEYf3937Jv/OkhdvGZXshbLqfEH8=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: hWP/crnjmiKRkQxu0624FvYvc5uF2iF9vYd33TXrr/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Aug 20 22:30:21 2025 GMT Not After : Aug 27 22:30:21 2025 GMT Subject: CN=68a64c7d-19bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:93:59:c0:4b:71:59:31:46:59:e5:fa:4a:4e: 7a:7c:c9:40:96:c9:94:34:9c:bf:5c:e1:40:36:0e: be:04:22:2f:1f:f4:69:a9:ac:7b:89:92:90:17:93: 44:06:7f:cd:a6:98:fd:18:21:e3:5c:a3:fb:41:ec: a1:6e:8e:91:9f:7f:42:92:50:9a:62:2d:1e:5f:ac: a9:ad:8e:03:37:7b:ad:3b:dc:45:df:b3:1d:1a:9b: a2:47:75:38:3e:80:a0:e7:59:fa:91:e8:25:4f:eb: 0a:dd:ef:83:ff:39:72:e4:ed:ec:61:f9:1b:e1:e6: f6:4e:b0:ec:60:35:17:f5:93:ca:07:fa:8b:2f:77: ba:20:18:23:c5:b5:a8:27:ad:9f:1c:38:35:fe:db: a8:5c:dd:e2:9b:d6:e4:19:03:e0:f8:c9:92:23:04: a7:0a:01:03:89:7d:06:03:6d:90:8f:9a:b6:b9:4d: be:1d:4e:98:30:fa:40:59:c3:70:ed:2a:da:2a:70: 97:51:c2:4d:2a:fa:27:6a:a0:d0:1a:0b:a1:dc:eb: 35:f0:f1:78:ce:25:c9:30:84:5c:8e:34:4d:56:e9: 69:1f:55:b8:4d:c1:ed:37:92:1f:fe:79:be:e8:e4: a4:fd:c0:96:d9:0a:70:35:4a:a0:1e:e6:ec:a7:07: 13:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0A:72:89:F8:D4:D4:57:5D:6F:82:69:12:4E:41:98:D3:74:C6:63 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b2:aa:3a:e8:7c:18:42:f2:b6:ad:87:79:d8:94:85:34:4e: 8b:86:92:9e:35:9f:f6:e9:8d:9e:f0:60:6f:6d:d3:07:62:41: da:00:57:39:a7:76:b5:9e:81:a1:e0:58:47:58:58:b6:02:88: 9c:81:8d:04:12:c8:ca:e2:71:7e:b6:4d:09:4f:bb:57:1e:13: 72:61:07:f3:0a:2b:fe:34:15:8b:40:23:31:28:5a:51:b9:26: 50:46:3d:fd:fb:b5:aa:05:d5:76:d2:6a:88:c8:80:36:9f:8a: f8:ba:ac:f7:d0:3d:10:dc:c5:6c:46:67:61:e7:d7:dd:c6:76: 47:37:01:ea:75:41:55:b3:79:b6:4b:5a:a8:29:d8:fc:5b:28: d3:3a:8d:38:66:e8:15:e9:21:a8:a6:41:5f:f6:cd:cc:7c:6e: fe:75:ac:b3:79:44:f6:e4:29:f0:64:c9:9c:6d:68:59:33:da: 51:c8:6c:71:2b:bc:b9:e5:8b:4b:85:ff:78:dc:02:2a:2b:23: 09:9b:21:46:01:1d:61:c0:b8:dd:b5:b7:02:ef:dc:d3:02:dc: 40:e2:a1:76:47:a2:a5:22:9d:85:8c:c8:6c:33:9b:3c:97:a7: d3:b1:4c:ab:fc:1e:e1:ce:bf:1f:3e:88:04:15:1e:15:ca:16: 78:c0:48:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUwODIwMjIzMDIxWhcNMjUwODI3MjIzMDIxWjAYMRYwFAYD VQQDEw02OGE2NGM3ZC0xOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25NZwEtxWTFGWeX6Sk56fMlAlsmUNJy/XOFANg6+BCIvH/Rpqax7iZKQF5NE Bn/Nppj9GCHjXKP7Qeyhbo6Rn39CklCaYi0eX6yprY4DN3utO9xF37MdGpuiR3U4 PoCg51n6keglT+sK3e+D/zly5O3sYfkb4eb2TrDsYDUX9ZPKB/qLL3e6IBgjxbWo J62fHDg1/tuoXN3im9bkGQPg+MmSIwSnCgEDiX0GA22Qj5q2uU2+HU6YMPpAWcNw 7SraKnCXUcJNKvonaqDQGguh3Os18PF4ziXJMIRcjjRNVulpH1W4TcHtN5If/nm+ 6OSk/cCW2QpwNUqgHubspwcTEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIKcon4 1NRXXW+CaRJOQZjTdMZjMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrsqo66HwYQvK2rYd52JSFNE6LhpKeNZ/26Y2e8GBvbdMHYkHaAFc5 p3a1noGh4FhHWFi2AoicgY0EEsjK4nF+tk0JT7tXHhNyYQfzCiv+NBWLQCMxKFpR uSZQRj39+7WqBdV20mqIyIA2n4r4uqz30D0Q3MVsRmdh59fdxnZHNwHqdUFVs3m2 S1qoKdj8WyjTOo04ZugV6SGopkFf9s3MfG7+dayzeUT25CnwZMmcbWhZM9pRyGxx K7y55YtLhf943AIqKyMJmyFGAR1hwLjdtbcC79zTAtxA4qF2R6KlIp2FjMhsM5s8 l6fTsUyr/B7hzr8fPogEFR4VyhZ4wEi3 -----END CERTIFICATE-----Generated at Fri Aug 22 16:36:06 2025 by rpki-client