$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: YqMdqRfids2d1ieiaZ0Om/7tlrOiXMeFy7+7u5Orxmg= Subject key identifier: 5C:4D:E2:1D:40:1D:49:4A:F9:2C:D9:F1:21:C6:AB:C7:F8:FF:14:7A Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 90 Signing time: Thu 04 Sep 2025 19:44:01 +0000 Manifest this update: Thu 04 Sep 2025 19:44:00 +0000 Manifest next update: Thu 11 Sep 2025 19:44:00 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: hT3RposjwsV4AzmRDVn2Ob+7RsKmjgPYlYnINe6xVZw=) 2: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: N2rEQqfmtaraI3c1hrrCAXyrNypl60jahKzIoBeEv8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Sep 4 19:44:00 2025 GMT Not After : Sep 11 19:44:00 2025 GMT Subject: CN=68b9ec00-ce2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c0:e7:d1:ae:17:fd:c5:e0:cf:1a:9c:e4:ea: cb:a8:f5:17:12:34:ea:1f:64:a2:1d:46:21:35:ed: 9b:3a:07:dc:37:d9:f5:0e:20:65:53:52:dd:ad:28: d6:b6:54:58:9e:ee:80:ac:d3:af:1e:73:bf:24:3e: 56:80:de:9f:8b:33:51:02:61:64:3a:bc:48:86:c9: 97:fb:41:49:e3:7b:58:c3:ff:77:8c:98:71:ff:d1: 30:f9:69:12:a9:8f:6c:12:da:90:1e:73:a4:26:c2: 45:78:4b:3c:0f:40:e8:66:5d:1b:87:70:66:d5:a1: f1:4c:f6:6e:db:ce:70:c5:fe:c5:db:6f:b5:6b:c7: c6:a2:58:48:a1:09:e0:37:85:79:18:96:e4:03:68: cb:69:a0:23:ac:32:82:f6:5d:50:58:53:64:94:4d: 1b:9b:ab:bf:ce:7a:52:21:66:9b:e5:a2:ab:b5:12: 41:ed:40:da:fd:b2:69:9b:8a:45:b6:30:6b:73:b1: 5e:29:1a:ad:3d:0f:bf:10:bc:19:a9:a1:b8:17:5a: 49:8d:a8:84:41:13:c5:3f:f1:81:1b:b0:4a:40:39: 70:9f:46:b3:63:1e:9a:d0:c2:d5:53:08:40:62:c1: 3d:e7:51:c9:0c:77:a3:1b:45:c4:43:cf:85:e7:7f: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4D:E2:1D:40:1D:49:4A:F9:2C:D9:F1:21:C6:AB:C7:F8:FF:14:7A X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:63:8b:08:59:a7:fb:3f:b2:6d:8f:ed:3b:dd:f5:74:f8:8c: bd:8d:d8:e3:9f:17:5a:5d:c6:4e:d0:08:43:30:7f:50:16:2b: 60:bf:0a:fb:99:a8:31:ec:48:d7:7f:e1:6d:53:24:d1:26:c3: 3d:c3:c6:45:33:64:99:25:26:13:7b:c3:7c:03:a5:54:2b:3d: 7a:a2:03:9f:c5:0c:41:2c:79:ff:05:c7:0b:ce:e6:66:57:ad: e7:6c:51:80:1a:89:16:90:b6:ab:d2:01:b2:80:48:79:79:78: aa:ca:3c:e3:b5:86:98:e2:8e:49:1b:79:56:18:c8:8f:bc:39: 98:23:68:39:79:d2:66:6f:12:c9:7d:65:e0:2e:fd:63:99:74: 0a:64:07:92:4b:40:e2:25:d4:99:f1:cd:e6:91:76:76:77:6f: b7:c7:21:ca:0d:c2:82:7f:63:bc:3c:8d:ea:63:9a:48:a3:6f: d9:b7:b8:78:d4:d7:d9:66:26:d5:d1:33:48:c0:f0:14:b3:82: e0:a5:53:9e:f1:4f:12:3b:a3:6e:8d:55:2e:77:58:22:ab:e4: 26:83:b3:af:78:7e:ee:a6:5b:e4:e1:03:18:65:c0:95:05:84: e9:8e:85:97:2c:7f:9a:f5:e5:f7:45:6d:b0:78:d5:61:4b:47: 6e:28:b3:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUwOTA0MTk0NDAwWhcNMjUwOTExMTk0NDAwWjAYMRYwFAYD VQQDEw02OGI5ZWMwMC1jZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssDn0a4X/cXgzxqc5OrLqPUXEjTqH2SiHUYhNe2bOgfcN9n1DiBlU1LdrSjW tlRYnu6ArNOvHnO/JD5WgN6fizNRAmFkOrxIhsmX+0FJ43tYw/93jJhx/9Ew+WkS qY9sEtqQHnOkJsJFeEs8D0DoZl0bh3Bm1aHxTPZu285wxf7F22+1a8fGolhIoQng N4V5GJbkA2jLaaAjrDKC9l1QWFNklE0bm6u/znpSIWab5aKrtRJB7UDa/bJpm4pF tjBrc7FeKRqtPQ+/ELwZqaG4F1pJjaiEQRPFP/GBG7BKQDlwn0azYx6a0MLVUwhA YsE951HJDHejG0XEQ8+F539dyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxN4h1A HUlK+SzZ8SHGq8f4/xR6MB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDY4sIWaf7P7Jtj+073fV0+Iy9jdjjnxdaXcZO0AhDMH9QFitgvwr7 magx7EjXf+FtUyTRJsM9w8ZFM2SZJSYTe8N8A6VUKz16ogOfxQxBLHn/BccLzuZm V63nbFGAGokWkLar0gGygEh5eXiqyjzjtYaY4o5JG3lWGMiPvDmYI2g5edJmbxLJ fWXgLv1jmXQKZAeSS0DiJdSZ8c3mkXZ2d2+3xyHKDcKCf2O8PI3qY5pIo2/Zt7h4 1NfZZibV0TNIwPAUs4LgpVOe8U8SO6NujVUud1giq+Qmg7OveH7uplvk4QMYZcCV BYTpjoWXLH+a9eX3RW2weNVhS0duKLML -----END CERTIFICATE-----Generated at Fri Sep 5 10:46:37 2025 by rpki-client