$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: WFNjm/5oi6CbfJpsGqwqWm6mfLmmGrKO5E1UpNBK+nI= Subject key identifier: A1:D8:2F:7D:97:65:AE:4E:8C:FE:61:F4:C5:E7:DE:43:12:A7:4A:9F Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B3B Signing time: Sun 24 Aug 2025 19:10:07 +0000 Manifest this update: Sun 24 Aug 2025 19:10:06 +0000 Manifest next update: Sun 31 Aug 2025 19:10:06 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: x5L3GeFUTJKi9Mp1TLFSB/FwCCyybVf2MYVfAUnSM2o=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Aug 24 19:10:06 2025 GMT Not After : Aug 31 19:10:06 2025 GMT Subject: CN=68ab638f-97eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9c:7f:26:6b:b9:2e:a7:e1:fa:c6:7c:d1:e7: 89:ce:c8:31:f4:14:4d:59:1b:7a:5c:a0:4c:2f:44: 71:41:9f:65:17:3a:1f:11:ed:3d:cf:35:e7:bd:2d: 7d:79:3b:ef:c9:c7:de:d3:09:93:a6:de:59:ce:b4: e1:82:7d:c6:b3:5c:7b:9c:f3:61:0f:2d:51:02:ea: f6:69:62:d2:0c:68:a8:08:29:72:38:8a:8e:4f:00: d4:bc:8a:af:c7:c0:08:b6:6d:06:6c:f3:39:1e:09: 5b:ae:43:24:77:e8:b6:c0:c1:e4:f1:00:47:8d:ee: 8c:e2:b4:a7:78:3b:ff:27:da:bb:d4:7e:e5:00:55: 80:b1:aa:79:dc:75:06:98:75:0e:ef:a5:47:6b:c7: a4:51:bf:f6:fb:6a:26:7a:be:1f:56:46:1a:6f:b8: 44:69:7f:43:6d:a6:67:61:94:08:3f:49:ba:43:17: cb:eb:02:66:1a:24:15:7b:31:91:b2:87:de:49:d8: 0c:c9:d0:01:75:0b:dd:d3:3c:ae:cf:e3:d9:45:13: 33:9f:76:25:0b:59:18:06:46:eb:a8:fc:80:22:af: 26:30:12:52:28:13:c7:92:a8:51:fc:1f:ea:9d:70: fc:f7:c2:ce:07:aa:2a:bf:b1:49:61:62:df:90:1e: f7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D8:2F:7D:97:65:AE:4E:8C:FE:61:F4:C5:E7:DE:43:12:A7:4A:9F X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:43:e9:e3:0e:74:0a:e1:3c:41:47:56:1d:20:4b:00:00:43: 47:db:c8:4b:3a:a6:53:b5:5a:22:d3:22:89:5f:1c:4e:4e:5f: 78:e6:56:29:0f:09:f3:d1:8a:56:49:dc:8a:c7:12:e3:66:1b: 46:8a:82:93:51:55:d8:28:9d:2b:c3:ea:d7:63:25:48:7f:46: e3:d3:dc:2a:b7:54:66:f3:5b:f7:8e:6e:1f:06:16:54:ad:bd: 60:cd:ac:b4:64:33:6e:e6:9c:26:2d:7b:8b:3a:bc:47:f4:f1: 93:84:9b:2f:15:c1:33:d9:cb:b3:37:6b:30:bf:f1:1b:0a:09: 78:86:73:20:b0:c0:4a:12:1e:d9:8c:c6:a6:f3:ac:e4:e0:14: 59:be:cc:ea:8f:64:5a:fb:3d:d1:48:98:be:5d:89:85:8e:e4: 60:0a:84:f5:9b:c3:38:73:ba:83:6e:e5:52:e7:fa:28:aa:43: b2:fe:92:48:40:d3:10:15:4b:bd:33:64:e6:fb:7a:66:84:2b: 97:38:22:4d:47:72:81:5c:10:13:81:77:a9:1e:e2:2f:25:95: 89:e1:38:2f:34:c7:55:f1:61:f9:31:94:28:1f:40:c4:99:6e: 92:e2:03:ce:ac:a4:96:6b:c9:39:72:eb:0b:ae:96:f7:18:29: 1d:ba:a7:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUwODI0MTkxMDA2WhcNMjUwODMxMTkxMDA2WjAYMRYwFAYD VQQDEw02OGFiNjM4Zi05N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJx/Jmu5Lqfh+sZ80eeJzsgx9BRNWRt6XKBML0RxQZ9lFzofEe09zzXnvS19 eTvvycfe0wmTpt5ZzrThgn3Gs1x7nPNhDy1RAur2aWLSDGioCClyOIqOTwDUvIqv x8AItm0GbPM5HglbrkMkd+i2wMHk8QBHje6M4rSneDv/J9q71H7lAFWAsap53HUG mHUO76VHa8ekUb/2+2omer4fVkYab7hEaX9DbaZnYZQIP0m6QxfL6wJmGiQVezGR sofeSdgMydABdQvd0zyuz+PZRRMzn3YlC1kYBkbrqPyAIq8mMBJSKBPHkqhR/B/q nXD898LOB6oqv7FJYWLfkB73pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHYL32X Za5OjP5h9MXn3kMSp0qfMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzQ+njDnQK4TxBR1YdIEsAAENH28hLOqZTtVoi0yKJXxxOTl945lYp Dwnz0YpWSdyKxxLjZhtGioKTUVXYKJ0rw+rXYyVIf0bj09wqt1Rm81v3jm4fBhZU rb1gzay0ZDNu5pwmLXuLOrxH9PGThJsvFcEz2cuzN2swv/EbCgl4hnMgsMBKEh7Z jMam86zk4BRZvszqj2Ra+z3RSJi+XYmFjuRgCoT1m8M4c7qDbuVS5/ooqkOy/pJI QNMQFUu9M2Tm+3pmhCuXOCJNR3KBXBATgXepHuIvJZWJ4TgvNMdV8WH5MZQoH0DE mW6S4gPOrKSWa8k5cusLrpb3GCkduqcJ -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:14 2025 by rpki-client