$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: AlfIqPT4/XGrE2OlrUsbyg6+SjCaDbU2lfOvAOEbcFc= Subject key identifier: 50:71:2A:BD:54:E0:12:D6:A6:85:1F:91:7F:84:86:0B:94:4D:0F:52 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BF8 Signing time: Wed 20 Aug 2025 16:17:25 +0000 Manifest this update: Wed 20 Aug 2025 16:17:24 +0000 Manifest next update: Wed 27 Aug 2025 16:17:24 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: no7Dc3SWww0+1a5Et3I40BCyLvr0gu3oKzcmECBB1yM=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7173 (0x1c05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Aug 20 16:17:24 2025 GMT Not After : Aug 27 16:17:24 2025 GMT Subject: CN=68a5f514-89bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a1:9b:64:5b:0e:6a:77:fc:15:f7:5e:03:9e: 73:e8:ce:1f:30:19:7b:1a:9e:ff:84:66:d5:48:d5: af:ea:6d:f1:ed:66:1c:fd:db:f4:66:64:da:9f:32: 56:e5:91:2b:45:27:6e:5b:6f:3c:ca:3c:f3:eb:60: 03:06:76:8e:fd:7e:97:e6:65:64:de:23:61:01:13: 37:15:20:3c:c5:9a:e8:22:54:d5:16:22:27:b4:a4: 76:69:43:0f:37:7b:57:d4:df:e4:91:5b:2b:28:67: c9:61:b6:f3:c0:f4:ba:8c:e0:b2:19:25:54:6a:cb: 12:63:5d:e7:b2:46:41:e7:bd:0b:14:b9:b6:75:26: ee:c8:21:be:b9:b3:bd:89:85:27:71:43:c2:76:6f: 7b:7b:9b:33:f5:67:eb:b1:f6:2b:6f:03:92:29:51: f7:39:f3:a7:96:a5:79:3d:a1:af:23:ea:aa:44:32: 4b:67:a2:42:46:5e:52:3e:d1:f0:8e:32:f8:58:36: c3:5a:19:bf:88:0d:de:b4:4f:84:f1:6f:2e:85:2c: f7:d7:66:c4:c8:ed:79:d7:99:53:5d:0a:7c:08:38: 90:9b:e8:0e:35:e0:3b:b8:a6:90:24:10:bf:08:d3: dd:96:af:fe:bb:3d:5a:ff:84:57:84:fc:57:96:79: f7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:71:2A:BD:54:E0:12:D6:A6:85:1F:91:7F:84:86:0B:94:4D:0F:52 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:19:6c:03:fa:f9:a9:bf:09:7a:c8:00:53:7c:a3:33:87:6c: 2c:82:0a:73:5d:5f:6d:85:e0:99:0d:fd:d4:6a:3d:7a:b6:fd: 14:5d:eb:1f:af:0a:c8:f1:3b:6c:88:bf:8a:d7:db:b6:bf:82: fd:95:bf:02:25:9c:6b:ca:20:0f:09:4a:40:e8:29:b1:7b:31: 54:59:fc:38:5d:f0:87:f1:a4:a5:38:09:49:e7:2a:0b:cc:64: 99:22:4a:54:db:e0:7e:e4:63:dc:5d:0a:11:1f:cd:2e:ff:5c: 7f:bd:a2:f2:6f:fc:c1:6d:63:ef:c9:3b:55:0a:b7:91:6f:fa: 0f:46:fd:33:cb:13:52:61:cf:a7:55:79:19:a8:90:ba:4a:16: 78:83:2a:2c:d9:9e:7f:49:85:ba:96:cb:ca:54:8d:02:7b:bc: f7:92:ba:41:af:5a:21:37:dd:d9:b2:d7:76:22:7a:16:53:33: 02:a9:8f:bf:0b:2e:b4:4b:ff:62:1e:f7:f3:ad:1f:68:32:70: ff:11:49:c2:28:e8:aa:e2:c1:f3:9a:33:07:33:c1:3f:c9:d5: ca:77:39:e3:80:d8:b8:bb:13:fc:b8:84:0c:ea:1a:07:20:28: 3c:90:ec:00:98:a6:37:0b:bd:5b:fa:65:ad:14:4b:1a:e1:ad: 8b:48:c4:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwODIwMTYxNzI0WhcNMjUwODI3MTYxNzI0WjAYMRYwFAYD VQQDEw02OGE1ZjUxNC04OWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9qGbZFsOanf8FfdeA55z6M4fMBl7Gp7/hGbVSNWv6m3x7WYc/dv0ZmTanzJW 5ZErRSduW288yjzz62ADBnaO/X6X5mVk3iNhARM3FSA8xZroIlTVFiIntKR2aUMP N3tX1N/kkVsrKGfJYbbzwPS6jOCyGSVUassSY13nskZB570LFLm2dSbuyCG+ubO9 iYUncUPCdm97e5sz9WfrsfYrbwOSKVH3OfOnlqV5PaGvI+qqRDJLZ6JCRl5SPtHw jjL4WDbDWhm/iA3etE+E8W8uhSz312bEyO1515lTXQp8CDiQm+gONeA7uKaQJBC/ CNPdlq/+uz1a/4RXhPxXlnn3uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBxKr1U 4BLWpoUfkX+EhguUTQ9SMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrGWwD+vmpvwl6yABTfKMzh2wsggpzXV9theCZDf3Uaj16tv0UXesf rwrI8TtsiL+K19u2v4L9lb8CJZxryiAPCUpA6CmxezFUWfw4XfCH8aSlOAlJ5yoL zGSZIkpU2+B+5GPcXQoRH80u/1x/vaLyb/zBbWPvyTtVCreRb/oPRv0zyxNSYc+n VXkZqJC6ShZ4gyos2Z5/SYW6lsvKVI0Ce7z3krpBr1ohN93Zstd2InoWUzMCqY+/ Cy60S/9iHvfzrR9oMnD/EUnCKOiq4sHzmjMHM8E/ydXKdznjgNi4uxP8uIQM6hoH ICg8kOwAmKY3C71b+mWtFEsa4a2LSMTm -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:11 2025 by rpki-client