$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: wJNsparrftFFZRjnoUMKoxTvRzMvDj45lxJa+uA5EOw= Subject key identifier: 62:F8:F4:48:5E:6D:66:91:8F:B5:6A:7E:8F:67:9C:07:D5:46:8A:A5 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 0373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 036B Signing time: Tue 09 Sep 2025 00:58:59 +0000 Manifest this update: Tue 09 Sep 2025 00:58:58 +0000 Manifest next update: Tue 16 Sep 2025 00:58:58 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: dgUgbf9HxqaUb+rS7Gwg3d1GCh+a2UZaTUSkvpEGSIE=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Sep 9 00:58:58 2025 GMT Not After : Sep 16 00:58:58 2025 GMT Subject: CN=68bf7bd2-65d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e9:55:dd:c0:21:de:5e:94:e3:38:a7:a2:a0: c7:bc:c9:08:9f:d9:0a:c4:86:1d:09:a8:2f:5c:00: 6b:7c:b1:10:de:09:84:f7:40:a9:05:b5:82:d8:d2: 57:6c:59:b1:d0:a9:2b:ab:b8:52:48:eb:fd:c9:cf: 17:dc:7c:39:d4:1c:87:8c:9b:1b:5a:fd:83:a4:f8: dc:ec:ae:b1:ea:3b:d0:ea:b2:f4:98:d6:07:f8:4b: ef:6d:c3:84:3a:ac:30:07:2c:bb:da:bb:1d:ed:a0: 17:8c:f7:58:83:1c:f4:fe:ca:ac:e9:4a:b0:a0:ff: 6d:1c:8a:8f:a3:bd:83:90:2f:6f:cd:b8:c9:d9:5c: 71:78:5f:5a:eb:af:04:27:35:f9:15:ae:c6:a8:af: 27:49:05:56:e4:4b:2a:df:97:c5:ca:15:ec:83:7f: 62:18:dc:ef:16:8e:7d:f2:02:35:b4:3d:2d:59:30: f0:b1:33:65:31:51:7d:fa:eb:0d:0f:be:4f:b1:ac: bc:38:ff:dd:c8:9e:15:b4:79:ad:b7:5a:11:65:2d: 97:21:e7:05:64:8a:5d:dc:4a:4d:0b:2d:c8:0e:7d: a0:5f:e3:4e:6e:bb:e2:f9:6c:c9:82:69:65:95:ac: fc:5a:aa:36:e0:cc:8d:77:3c:35:a7:9e:2a:f9:6c: 53:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F8:F4:48:5E:6D:66:91:8F:B5:6A:7E:8F:67:9C:07:D5:46:8A:A5 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e6:ee:90:fd:31:d4:64:d1:93:5d:35:b2:5b:92:ed:8d:01: 99:e4:cc:19:3c:83:12:3b:8e:7b:86:49:ec:e7:a3:61:44:37: 77:8c:09:1e:c6:40:e0:a7:b8:c6:db:b5:09:3b:2b:a3:d4:87: 7d:7d:09:45:30:70:bc:75:09:96:e1:a4:25:67:94:24:a0:61: fa:2b:a0:94:e3:60:43:26:1d:f0:4a:79:a2:dc:28:d8:94:0f: 32:7b:ec:e1:35:cf:0e:eb:22:02:fd:17:f3:f6:4d:d7:3f:e8: 3c:ef:34:0d:61:8b:13:4c:79:a0:02:85:9c:38:bc:14:2e:03: 0f:d7:4b:33:82:8e:77:fd:aa:01:3e:c6:1f:ed:84:9a:dc:f1: f3:83:6c:d4:41:be:1d:29:29:35:c2:87:d3:e9:62:fd:63:45: b7:05:86:b1:42:aa:85:ec:86:16:e5:36:39:b3:b2:91:78:8b: a3:fc:3a:58:ad:5a:76:40:95:3f:74:7a:30:15:65:b3:f9:ad: 77:22:eb:01:d5:c6:5f:b8:a1:6a:eb:37:6a:4b:e3:df:33:64: 60:42:70:fd:cc:e1:6e:f2:04:60:cd:5d:77:f0:c9:00:3b:ec: 94:4b:a8:a0:a6:08:6e:f7:2e:57:b0:7d:eb:21:09:6a:72:3c: 2d:e0:77:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwOTA5MDA1ODU4WhcNMjUwOTE2MDA1ODU4WjAYMRYwFAYD VQQDEw02OGJmN2JkMi02NWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+lV3cAh3l6U4zinoqDHvMkIn9kKxIYdCagvXABrfLEQ3gmE90CpBbWC2NJX bFmx0Kkrq7hSSOv9yc8X3Hw51ByHjJsbWv2DpPjc7K6x6jvQ6rL0mNYH+EvvbcOE OqwwByy72rsd7aAXjPdYgxz0/sqs6UqwoP9tHIqPo72DkC9vzbjJ2VxxeF9a668E JzX5Fa7GqK8nSQVW5Esq35fFyhXsg39iGNzvFo598gI1tD0tWTDwsTNlMVF9+usN D75Psay8OP/dyJ4VtHmtt1oRZS2XIecFZIpd3EpNCy3IDn2gX+NObrvi+WzJgmll laz8Wqo24MyNdzw1p54q+WxTuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGL49Ehe bWaRj7Vqfo9nnAfVRoqlMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP5u6Q/THUZNGTXTWyW5LtjQGZ5MwZPIMSO457hkns56NhRDd3jAke xkDgp7jG27UJOyuj1Id9fQlFMHC8dQmW4aQlZ5QkoGH6K6CU42BDJh3wSnmi3CjY lA8ye+zhNc8O6yIC/Rfz9k3XP+g87zQNYYsTTHmgAoWcOLwULgMP10szgo53/aoB PsYf7YSa3PHzg2zUQb4dKSk1wofT6WL9Y0W3BYaxQqqF7IYW5TY5s7KReIuj/DpY rVp2QJU/dHowFWWz+a13IusB1cZfuKFq6zdqS+PfM2RgQnD9zOFu8gRgzV138MkA O+yUS6igpghu9y5XsH3rIQlqcjwt4Hfi -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:51 2025 by rpki-client