$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: uQng6Yll5UyIKI4KWKDIyshySX04gu11C8dP/N41EEs= Subject key identifier: 96:66:C4:B8:CE:01:84:AD:8B:9B:B8:85:B3:41:D2:96:CF:01:0C:FB Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 0819 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 07FB Signing time: Sat 06 Sep 2025 21:14:59 +0000 Manifest this update: Sat 06 Sep 2025 21:14:58 +0000 Manifest next update: Sat 13 Sep 2025 21:14:58 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: gQNrhdUmhDRj7sqa3v5c8+RQrCrGJ68Dkjf/65m3m0c=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: 7145KDk6Ud3gJk6wkOrSSRd7V4t35M2bwdrO78shBPE=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: wSUtbGUG6qJCjwBZF3AGH+0iZn8vKCgbBj1wQ7GjPys=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: qx6Ck2bt18JzwMSwE91OIh9TX6eoj+EFVUwzhl+omAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Sep 6 21:14:58 2025 GMT Not After : Sep 13 21:14:58 2025 GMT Subject: CN=68bca452-d4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:8c:e0:3e:96:ef:19:d9:c6:9c:78:09:d4:48: cd:5b:bf:bc:6e:29:2f:e7:d6:5e:b6:ab:c4:d6:5b: 2a:95:3e:21:d5:9e:09:ea:25:22:64:28:9f:bd:91: 7a:f1:aa:20:d8:d4:38:93:84:90:47:29:4c:d1:78: 75:5e:f5:4e:0f:ff:f9:e1:5d:c5:15:e0:7c:3c:a2: 61:aa:19:19:2d:85:c6:23:34:e0:67:2c:5c:d4:8f: fd:33:ce:2d:2f:16:3f:f6:98:41:77:08:64:39:b7: d0:ae:71:0b:06:51:13:c4:8f:ef:17:d0:b0:24:6e: f5:57:53:d5:cc:6e:ab:27:60:a1:8b:76:1f:72:d0: 60:e9:9d:46:6b:00:40:c1:23:e8:b6:66:db:7b:b3: 55:b3:f9:b6:09:5e:9b:8a:13:d1:80:84:95:4c:32: d0:3f:9b:44:73:ef:d2:7c:d2:cd:86:7d:16:2d:07: 58:c2:3a:a9:5f:d7:45:d5:64:55:56:e6:74:ff:7a: 18:fc:57:f2:c5:14:5f:31:30:ef:f3:12:af:ce:3b: 35:6a:ca:4c:6b:c3:3e:02:9c:b6:e6:45:e6:08:ec: 93:75:07:bc:03:43:f4:d6:51:38:c9:9a:d0:63:c0: 6a:80:d1:64:c4:f7:90:da:2f:1f:1a:30:2a:35:ed: da:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:66:C4:B8:CE:01:84:AD:8B:9B:B8:85:B3:41:D2:96:CF:01:0C:FB X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e9:86:cc:9c:7c:3f:c2:0f:1e:2f:9b:90:95:ad:24:0e:fe: 33:4b:e6:33:19:fe:cd:ee:8e:e2:68:48:31:25:69:7a:01:05: 7a:41:24:5b:2d:00:c9:9a:ad:7e:f3:e8:84:7e:fa:81:e4:d5: bf:bf:0b:30:fa:1b:5b:a8:f5:81:a3:0f:06:9f:a9:04:36:13: 9d:04:25:a7:47:1d:01:95:d0:0d:19:75:82:b3:5c:87:f5:fa: 24:75:d6:04:fb:3d:ed:85:1d:11:e2:60:b1:a7:3e:de:c7:48: 32:ce:bd:d8:fb:bf:18:16:0e:18:3c:bc:75:eb:8f:89:36:d3: 9d:98:1d:d7:f9:28:8d:55:3e:21:55:76:06:b9:3b:67:2c:d5: 7a:d4:45:59:b0:86:0a:2b:dd:b5:11:49:cf:c1:f4:88:dc:5a: bb:42:c6:ba:10:6a:99:d6:9a:2d:27:d1:16:a4:62:61:75:56: e0:16:98:fb:74:c5:96:06:74:f4:c0:f0:f3:ca:5e:07:50:db: 93:f6:94:41:c1:69:32:26:22:74:2c:2a:20:69:dc:a3:9f:91: 80:f9:bf:93:2b:03:a6:76:7b:80:c1:ab:2d:7c:69:89:37:ef: e8:8c:a4:6f:42:f5:e6:b8:90:f2:49:ab:1d:80:c3:7b:79:9a: ea:b7:6f:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwOTA2MjExNDU4WhcNMjUwOTEzMjExNDU4WjAYMRYwFAYD VQQDEw02OGJjYTQ1Mi1kNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+IzgPpbvGdnGnHgJ1EjNW7+8bikv59ZetqvE1lsqlT4h1Z4J6iUiZCifvZF6 8aog2NQ4k4SQRylM0Xh1XvVOD//54V3FFeB8PKJhqhkZLYXGIzTgZyxc1I/9M84t LxY/9phBdwhkObfQrnELBlETxI/vF9CwJG71V1PVzG6rJ2Chi3YfctBg6Z1GawBA wSPotmbbe7NVs/m2CV6bihPRgISVTDLQP5tEc+/SfNLNhn0WLQdYwjqpX9dF1WRV VuZ0/3oY/FfyxRRfMTDv8xKvzjs1aspMa8M+Apy25kXmCOyTdQe8A0P01lE4yZrQ Y8BqgNFkxPeQ2i8fGjAqNe3a7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZmxLjO AYSti5u4hbNB0pbPAQz7MB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA76YbMnHw/wg8eL5uQla0kDv4zS+YzGf7N7o7iaEgxJWl6AQV6QSRb LQDJmq1+8+iEfvqB5NW/vwsw+htbqPWBow8Gn6kENhOdBCWnRx0BldANGXWCs1yH 9fokddYE+z3thR0R4mCxpz7ex0gyzr3Y+78YFg4YPLx164+JNtOdmB3X+SiNVT4h VXYGuTtnLNV61EVZsIYKK921EUnPwfSI3Fq7Qsa6EGqZ1potJ9EWpGJhdVbgFpj7 dMWWBnT0wPDzyl4HUNuT9pRBwWkyJiJ0LCogadyjn5GA+b+TKwOmdnuAwastfGmJ N+/ojKRvQvXmuJDySasdgMN7eZrqt28O -----END CERTIFICATE-----Generated at Mon Sep 8 08:48:03 2025 by rpki-client