$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: NxJidGZa9zMKYRRny80Pa8d8ZQuV5VH8RXUB/P0Awko= Subject key identifier: 7A:26:5D:05:A0:A6:98:4A:E3:17:7A:BA:1C:54:8D:8E:23:6C:C7:F6 Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 0477 Signing time: Tue 09 Sep 2025 00:10:37 +0000 Manifest this update: Tue 09 Sep 2025 00:10:36 +0000 Manifest next update: Tue 16 Sep 2025 00:10:36 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: OLfvtdyWhlLZMJmFNWl+YUHD1L+c7BlZOuMP4tAdDq0=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: xHB6klxUWxKIW0ZETWDrSBAoOokIy/M1aOS9u4crx4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D, serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: Sep 9 00:10:36 2025 GMT Not After : Sep 16 00:10:36 2025 GMT Subject: CN=68bf707d-22e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:d4:1b:f7:42:25:1c:1e:26:5b:26:66:eb: 81:49:ff:63:3f:59:23:a0:f4:72:01:f6:61:bc:c8: c3:1f:d9:c3:78:f9:24:1e:ed:8f:e3:2d:61:d5:b4: 3f:b3:bb:d7:3d:4e:3f:b9:32:37:c1:f4:62:e2:9e: 9a:47:8f:43:bd:e9:2d:51:cc:dd:38:74:d3:7c:51: 36:ab:e7:fb:63:83:36:c5:90:26:a9:4b:1a:c9:8b: 30:7e:a9:41:d4:09:ec:06:1e:3e:e1:a7:cc:97:bf: 5f:04:1e:e0:3e:57:80:28:3b:85:3a:5e:51:bf:ec: 64:24:5f:d7:fc:0f:9b:95:c2:83:66:03:fc:23:68: e2:fe:dc:82:a5:86:8c:21:a3:50:a4:f1:50:2f:1b: 3c:57:a7:7d:1c:69:7b:6a:23:94:a0:17:f8:9c:1c: ba:bf:50:f4:1f:13:30:ab:64:53:01:bb:17:aa:85: 0a:52:58:4a:55:24:c7:10:ed:f1:2a:f5:b7:8e:9b: 3e:16:39:4c:87:88:35:7d:b5:0c:8d:55:84:35:77: b8:88:8b:fa:42:49:79:f1:9a:f4:43:30:75:38:06: 36:a6:fd:c3:02:0d:34:f8:8b:59:77:45:ec:d5:bf: 47:56:58:61:0c:db:52:8f:41:be:1b:35:c4:f9:9b: 53:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:26:5D:05:A0:A6:98:4A:E3:17:7A:BA:1C:54:8D:8E:23:6C:C7:F6 X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:35:66:f9:d4:87:16:4b:16:bb:91:7a:cc:e6:21:30:8c:08: 47:74:bf:1e:31:2e:34:76:97:29:dc:62:da:4a:e1:d9:46:be: d1:bf:3f:5f:e6:78:fb:e9:75:3f:2f:07:5f:1c:59:c8:ec:cd: 44:84:30:68:c0:e2:0d:0f:1a:d1:a6:61:23:6c:6a:1f:1e:c9: 28:c1:ce:43:67:97:17:8e:05:67:9e:27:ec:fe:6c:52:46:26: 05:a7:80:05:64:44:70:77:54:71:67:a7:b9:12:ed:1a:22:54: 29:d8:9e:ed:bd:4c:52:2a:a3:1a:e8:48:b2:67:b1:f2:a4:b9: c3:c7:05:f0:47:23:92:5a:64:76:1f:52:44:d9:57:25:b4:9b: b2:2d:9d:ad:6f:73:70:23:05:36:41:23:89:b8:31:24:87:74: 8b:23:a3:6b:63:60:f0:3d:16:a0:18:b8:49:98:92:10:3b:39: f9:6c:3a:ba:63:3b:a6:fe:d9:29:b0:48:d5:be:fc:e5:cc:16: 0f:fd:d8:c3:1b:ba:24:49:70:8a:f2:31:f5:33:6d:23:7b:ef: 98:bc:28:8f:32:d8:f7:e9:76:d9:00:1a:50:02:75:4f:23:bc: 95:61:08:eb:e8:17:cf:43:05:f2:f3:b7:d2:57:6e:32:94:94: 56:29:99:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjUwOTA5MDAxMDM2WhcNMjUwOTE2MDAxMDM2WjAYMRYwFAYD VQQDEw02OGJmNzA3ZC0yMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtTUG/dCJRweJlsmZuuBSf9jP1kjoPRyAfZhvMjDH9nDePkkHu2P4y1h1bQ/ s7vXPU4/uTI3wfRi4p6aR49DvektUczdOHTTfFE2q+f7Y4M2xZAmqUsayYswfqlB 1AnsBh4+4afMl79fBB7gPleAKDuFOl5Rv+xkJF/X/A+blcKDZgP8I2ji/tyCpYaM IaNQpPFQLxs8V6d9HGl7aiOUoBf4nBy6v1D0HxMwq2RTAbsXqoUKUlhKVSTHEO3x KvW3jps+FjlMh4g1fbUMjVWENXe4iIv6Qkl58Zr0QzB1OAY2pv3DAg00+ItZd0Xs 1b9HVlhhDNtSj0G+GzXE+ZtT/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHomXQWg pphK4xd6uhxUjY4jbMf2MB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpNWb51IcWSxa7kXrM5iEwjAhHdL8eMS40dpcp3GLaSuHZRr7Rvz9f 5nj76XU/LwdfHFnI7M1EhDBowOINDxrRpmEjbGofHskowc5DZ5cXjgVnnifs/mxS RiYFp4AFZERwd1RxZ6e5Eu0aIlQp2J7tvUxSKqMa6EiyZ7HypLnDxwXwRyOSWmR2 H1JE2VcltJuyLZ2tb3NwIwU2QSOJuDEkh3SLI6NrY2DwPRagGLhJmJIQOzn5bDq6 Yzum/tkpsEjVvvzlzBYP/djDG7okSXCK8jH1M20je++YvCiPMtj36XbZABpQAnVP I7yVYQjr6BfPQwXy87fSV24ylJRWKZk6 -----END CERTIFICATE-----Generated at Tue Sep 9 09:52:27 2025 by rpki-client