$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: KcD2TZ/eIV+RCDgG35Wiob1a8j3oiyb20fwE2smIiqQ= Subject key identifier: FD:4D:03:0E:27:27:45:9A:FD:D3:49:78:B2:4B:DF:6C:76:D1:FC:6F Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 73 Signing time: Fri 18 Jul 2025 19:47:45 +0000 Manifest this update: Fri 18 Jul 2025 19:47:45 +0000 Manifest next update: Fri 25 Jul 2025 19:47:45 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: QqFdNS4KoDD0NqhhUWpkO57OvIf+Q0PKTiVd9/NLZLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Jul 18 19:47:45 2025 GMT Not After : Jul 25 19:47:45 2025 GMT Subject: CN=687aa4e1-e941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:64:b5:5d:7d:08:03:c6:46:e9:a6:39:89: ef:94:f3:d1:f0:aa:37:1c:54:c0:c0:db:93:29:0b: fe:eb:b6:58:95:37:13:c5:d6:d0:cc:5b:79:6d:16: 35:14:0f:8d:cf:46:71:b8:18:91:f4:a0:9a:c4:83: c4:73:1f:2f:8b:cf:e0:30:bb:43:42:d1:99:8e:4a: ac:87:a2:71:04:4f:de:9f:3b:30:22:60:45:8a:4b: ec:de:a2:a0:d1:1f:6e:78:cc:04:d2:76:98:e9:91: 12:00:36:60:04:84:e6:be:bf:ec:2a:5a:3e:55:8d: 64:97:d5:2c:85:cc:80:2b:57:d7:a4:29:96:e3:8b: f9:44:98:66:8a:02:be:b4:20:4a:2f:cf:e7:f2:40: 8a:8c:78:4e:25:8c:a4:e5:b9:18:91:50:30:db:28: 17:39:f1:8a:f8:a4:2c:66:ad:c6:98:db:92:e0:fe: 8a:c9:9a:15:0a:94:ac:8f:09:72:13:26:07:5d:3c: 78:eb:a9:aa:13:e3:a0:69:26:ef:d6:6e:2e:98:21: fb:88:e6:46:81:85:ae:c4:75:a5:c3:cb:ef:4f:be: 74:14:1b:da:bb:fd:cb:3c:a2:49:31:20:8a:2d:2b: 03:11:8f:de:fb:b0:1d:16:68:74:63:d7:95:c5:75: 35:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4D:03:0E:27:27:45:9A:FD:D3:49:78:B2:4B:DF:6C:76:D1:FC:6F X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:20:09:bd:da:e5:f9:b3:4f:53:e6:01:af:a5:9f:33:d2:02: ff:a7:5b:8f:d9:44:2d:1f:35:07:4a:2c:cc:7c:83:20:1d:8b: a0:4e:8e:ac:a1:d5:0e:9e:63:85:bf:47:a4:a3:8f:23:31:99: 60:38:83:69:29:34:5e:83:8d:b6:7b:7a:3d:64:27:97:20:3a: d3:0c:6b:d5:d0:64:b0:15:f3:8e:c3:bc:41:86:93:71:26:5d: 0e:9e:e9:46:cc:c8:04:81:3d:cc:23:c4:84:e9:b8:d4:d1:31: e5:18:83:6c:d6:6b:cf:ce:0d:08:2d:a4:7a:eb:4a:46:61:c4: 2e:0e:22:1e:30:24:f6:fd:9d:22:db:88:e4:35:9d:a4:a4:5f: 69:cb:86:6c:8b:87:83:70:0b:19:3e:83:60:86:ed:fb:d5:7b: 52:4e:6e:e2:3d:9b:c2:b9:f7:b4:b8:62:ba:65:98:08:8c:da: 15:9b:a0:3d:ac:2f:a6:96:1b:48:c2:2e:2b:09:c3:96:a4:11: 11:75:c5:7d:d4:5e:42:cf:00:e3:bf:26:a0:d7:bb:fa:bc:75: 68:5a:97:0a:f8:34:55:9a:c1:03:78:9b:d6:23:1e:c9:b9:be: 4c:95:96:32:80:1f:5a:d2:12:9c:8c:cc:70:d0:53:46:97:61: 9e:af:ea:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzhBRjExMC8GA1UEBRMoODQwRkQ2RjdFODkxRTM4MDRBN0RCMzA5RDA0Q0U4NUMx QUY3ODZEMTAeFw0yNTA3MTgxOTQ3NDVaFw0yNTA3MjUxOTQ3NDVaMBgxFjAUBgNV BAMTDTY4N2FhNGUxLWU5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8NGS1XX0IA8ZG6aY5ie+U89HwqjccVMDA25MpC/7rtliVNxPF1tDMW3ltFjUU D43PRnG4GJH0oJrEg8RzHy+Lz+Awu0NC0ZmOSqyHonEET96fOzAiYEWKS+zeoqDR H254zATSdpjpkRIANmAEhOa+v+wqWj5VjWSX1SyFzIArV9ekKZbji/lEmGaKAr60 IEovz+fyQIqMeE4ljKTluRiRUDDbKBc58Yr4pCxmrcaY25Lg/orJmhUKlKyPCXIT JgddPHjrqaoT46BpJu/Wbi6YIfuI5kaBha7EdaXDy+9PvnQUG9q7/cs8okkxIIot KwMRj977sB0WaHRj15XFdTWfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/U0DDicn RZr900l4skvfbHbR/G8wHwYDVR0jBBgwFoAUhA/W9+iR44BKfbMJ0EzoXBr3htEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDOEFGLzE5N0ZGN0EyQjQw OTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEFfVzktaVI0NEJLZmJNSjBFem9YQnIzaHRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD OEFGLzE5N0ZGN0EyQjQwOTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRC S2ZiTUowRXpvWEJyM2h0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQgCb3a5fmzT1PmAa+lnzPSAv+nW4/ZRC0fNQdKLMx8gyAdi6BOjqyh 1Q6eY4W/R6SjjyMxmWA4g2kpNF6DjbZ7ej1kJ5cgOtMMa9XQZLAV847DvEGGk3Em XQ6e6UbMyASBPcwjxITpuNTRMeUYg2zWa8/ODQgtpHrrSkZhxC4OIh4wJPb9nSLb iOQ1naSkX2nLhmyLh4NwCxk+g2CG7fvVe1JObuI9m8K597S4YrplmAiM2hWboD2s L6aWG0jCLisJw5akERF1xX3UXkLPAOO/JqDXu/q8dWhalwr4NFWawQN4m9YjHsm5 vkyVljKAH1rSEpyMzHDQU0aXYZ6v6g0= -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:50 2025 by rpki-client