$ rpki-client -vvf rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft File: H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft (raw, json) Hash identifier: z2XepYFTf5r7DbbeQF4qvojmYFINHA40v9Ll/g8ge1c= Subject key identifier: 89:E8:71:36:31:EE:89:C0:6D:65:3E:68:9F:0D:A8:4F:5B:99:9F:69 Authority key identifier: 1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB Certificate issuer: /CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft Manifest number: 05F3 Signing time: Thu 18 Sep 2025 23:15:01 +0000 Manifest this update: Thu 18 Sep 2025 23:15:01 +0000 Manifest next update: Thu 25 Sep 2025 23:15:01 +0000 Files and hashes: 1: H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl (hash: AOovsQ1LPZ7nTdFj6zEX4YJVQ5DWK2DkrcKCJ5Cnzzg=) 2: 8AA59866C55511EBA7DB557EC4F9AE02.roa (hash: Vhi1JgNRZObirmNIX1fnf2q21PbGnP/JOntHIC3xnJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912708C, serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Validity Not Before: Sep 18 23:15:01 2025 GMT Not After : Sep 25 23:15:01 2025 GMT Subject: CN=68cc9275-6f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:94:1f:34:a1:49:0e:b5:9b:80:26:3d:d1:13: 44:7d:ee:0d:87:f2:37:ee:ca:bc:74:a1:a1:83:a6: 6b:a8:44:2f:f4:a6:f0:ad:d7:68:42:19:0a:8f:ad: e4:55:3f:cc:67:0f:15:c2:3b:39:d8:79:4d:05:1f: ca:c6:9f:e0:18:35:b2:1d:e3:c5:bf:cc:2e:cb:a5: 25:3a:a9:cf:80:27:5e:d7:41:ac:62:7e:0b:f8:ef: 85:b0:cf:5e:09:71:b4:9e:d9:9f:46:8d:c3:83:7e: 25:be:cf:ee:61:0b:70:38:b4:65:57:6c:8e:84:cb: 35:42:d5:fa:19:1c:2e:f9:f0:e2:c7:e4:4d:a4:3b: 21:69:f0:af:ab:cf:c2:41:c2:ff:2e:d8:6c:40:7c: d0:b5:8f:31:16:63:5d:28:1a:fb:b0:0f:41:12:dd: fa:2a:dd:62:46:b6:21:9e:ff:90:d5:2c:da:98:9b: 2f:d2:99:f2:75:1b:43:fb:d3:0c:ee:04:8b:93:39: 1f:77:24:a8:28:42:35:ab:bc:e4:8e:ca:79:34:2b: 5f:f2:ca:84:36:eb:be:a3:90:12:c8:c6:e4:d2:fb: 24:ed:92:88:8a:09:a3:f1:fd:71:f3:ce:2c:5c:c0: 1a:4d:92:bc:b4:b9:0e:95:87:3d:0b:24:da:e2:17: d3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E8:71:36:31:EE:89:C0:6D:65:3E:68:9F:0D:A8:4F:5B:99:9F:69 X509v3 Authority Key Identifier: keyid:1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:59:1a:00:8b:18:a0:f5:f4:04:e5:b5:d5:dd:b3:d6:df:ac: 96:5f:0a:97:97:7a:0e:1a:51:91:2b:a6:ed:c5:e8:77:39:a8: 8e:d4:9d:de:3f:81:cd:d1:cf:a2:1e:39:cd:a4:52:d0:c5:11: 4d:6a:f0:08:76:d1:53:79:70:52:4a:e3:00:39:10:7e:9a:8f: 97:40:bf:8b:1b:9f:42:8d:0c:2f:fd:60:94:ac:ff:01:fe:17: c4:e9:2d:da:cd:12:67:0d:94:7b:71:4d:13:18:d3:0a:2a:28: 4d:18:79:32:bf:91:41:8c:14:ea:d3:03:2b:86:dc:ee:a0:13: b2:c0:4f:48:64:70:48:b4:14:ae:ee:5b:85:96:8b:21:1c:90: 53:3f:2e:0e:16:3a:4d:ad:ea:71:61:50:11:69:b3:c2:5c:f5: 2a:cb:c9:05:f4:19:22:27:d2:8a:43:9b:88:45:e0:dd:79:c4: 08:e8:e9:30:91:14:e6:24:c7:5b:a0:9c:31:0a:42:93:90:f2: c5:88:a9:51:03:98:1d:f2:cf:48:15:40:8c:5d:e7:79:2e:5c: 1f:cb:1b:69:51:83:f1:84:b4:61:45:11:2a:a4:ba:d2:70:64: 0f:8c:fb:e9:0a:90:80:60:bc:76:33:e5:3c:03:77:c5:53:5c: 46:22:d2:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcwOEMxMTAvBgNVBAUTKDFGRDVBMTgyRDU5MzM0NzU3MEYyRDkxODZEMjQ4NEM5 MDk1QzVGRkIwHhcNMjUwOTE4MjMxNTAxWhcNMjUwOTI1MjMxNTAxWjAYMRYwFAYD VQQDEw02OGNjOTI3NS02ZjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZQfNKFJDrWbgCY90RNEfe4Nh/I37sq8dKGhg6ZrqEQv9KbwrddoQhkKj63k VT/MZw8Vwjs52HlNBR/Kxp/gGDWyHePFv8wuy6UlOqnPgCde10GsYn4L+O+FsM9e CXG0ntmfRo3Dg34lvs/uYQtwOLRlV2yOhMs1QtX6GRwu+fDix+RNpDshafCvq8/C QcL/LthsQHzQtY8xFmNdKBr7sA9BEt36Kt1iRrYhnv+Q1SzamJsv0pnydRtD+9MM 7gSLkzkfdySoKEI1q7zkjsp5NCtf8sqENuu+o5ASyMbk0vsk7ZKIigmj8f1x884s XMAaTZK8tLkOlYc9CyTa4hfT8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInocTYx 7onAbWU+aJ8NqE9bmZ9pMB8GA1UdIwQYMBaAFB/VoYLVkzR1cPLZGG0khMkJXF/7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzA4Qy8xNjgwMzRGRUM1 NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5IVnc4dGtZYlNTRXlRbGNY X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5V2hndFdUTkhWdzh0a1liU1NFeVFsY1hfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzA4Qy8xNjgwMzRGRUM1NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5I Vnc4dGtZYlNTRXlRbGNYX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqWRoAixig9fQE5bXV3bPW36yWXwqXl3oOGlGRK6btxeh3OaiO1J3e P4HN0c+iHjnNpFLQxRFNavAIdtFTeXBSSuMAORB+mo+XQL+LG59CjQwv/WCUrP8B /hfE6S3azRJnDZR7cU0TGNMKKihNGHkyv5FBjBTq0wMrhtzuoBOywE9IZHBItBSu 7luFloshHJBTPy4OFjpNrepxYVARabPCXPUqy8kF9BkiJ9KKQ5uIReDdecQI6Okw kRTmJMdboJwxCkKTkPLFiKlRA5gd8s9IFUCMXed5LlwfyxtpUYPxhLRhRREqpLrS cGQPjPvpCpCAYLx2M+U8A3fFU1xGItLU -----END CERTIFICATE-----Generated at Fri Sep 19 02:10:27 2025 by rpki-client