$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: 1SvjyWczqDMk1C5Jmbz/GuGZAGVVmM++Al/3jJHVAS0= Subject key identifier: 06:B9:21:4E:B6:3E:5C:37:63:1F:C2:30:7D:B2:66:11:A4:9E:7D:FC Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 0604 Signing time: Thu 04 Sep 2025 23:10:57 +0000 Manifest this update: Thu 04 Sep 2025 23:10:57 +0000 Manifest next update: Thu 11 Sep 2025 23:10:57 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: wK9GO5k1lZrK95bVkGrvUJX3Wcg9npTMbiyTmo0qPDs=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: uJ34QZzPWsLiblBgV7Ywgb0TXxMUSuEWmFUneXtmF9w=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: tWGIt1j5EvwGUw+Sd+nJTxQY0ACb+5Zewj9NqITpqME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: Sep 4 23:10:57 2025 GMT Not After : Sep 11 23:10:57 2025 GMT Subject: CN=68ba1c81-3394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:b1:3d:81:c2:4e:1d:a5:d0:31:b3:76:de: 0e:9c:e7:fa:fc:e8:2a:fd:a4:cf:e6:de:1f:e6:3b: 4e:20:30:45:30:a4:ab:18:6c:18:de:31:fe:c6:8b: b1:8c:1c:53:c8:0d:81:62:42:18:7d:f0:08:5b:82: d2:a4:30:dd:99:70:46:cb:dd:a6:1b:bd:16:e5:3a: 81:27:7a:ab:0b:e8:37:3e:af:2c:b6:4d:9b:b7:cb: 98:2c:a2:f7:fc:46:31:af:fc:ab:5a:ae:d6:8d:f4: f6:e6:d1:04:e7:d9:07:ae:59:e9:a3:66:0f:4b:83: 23:57:c1:bb:5a:d0:95:fb:be:bf:b8:2d:b1:58:bc: ca:b4:bd:f5:6e:b4:5b:a5:97:54:b5:f6:55:e1:9d: 21:c5:e3:33:44:a5:c6:32:73:8f:08:ba:db:34:5d: 92:e4:8c:e5:8a:b9:17:b1:a5:fb:b6:ff:a5:16:84: 34:0a:6b:2f:a2:96:78:de:ec:ee:ec:ca:cd:cd:79: 2c:9a:17:96:fc:cb:87:99:17:52:cb:ef:d9:9b:08: 37:6a:ad:8f:d2:39:4e:8c:71:76:b5:1c:99:3d:ad: fc:5f:cc:4b:44:c8:5f:65:3b:93:a0:f0:4c:82:9b: 77:cd:5b:37:62:89:f6:ce:da:93:99:a8:8a:e4:c4: fc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B9:21:4E:B6:3E:5C:37:63:1F:C2:30:7D:B2:66:11:A4:9E:7D:FC X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e0:f5:06:36:7d:36:03:66:e2:9a:37:fb:73:ee:fc:6b:e9: 33:64:e5:4c:23:11:ad:1c:d8:97:1a:40:51:d4:b2:f7:85:81: cc:93:0c:1f:fe:fb:a6:3f:5f:b4:21:49:3e:48:fb:0a:ed:f1: 42:c4:e4:4c:07:cf:aa:10:00:c2:23:da:dd:b1:56:3c:c4:9c: b1:3a:c3:e3:02:14:2f:9f:5c:36:b8:cc:3f:f0:d9:6d:e2:50: e4:fa:cc:33:0b:89:44:a8:79:38:1c:8b:a8:d1:cb:7e:99:f1: c1:3e:30:21:bd:36:a0:c8:a9:90:45:6e:cf:7f:eb:99:a1:c5: 3f:70:f9:05:ed:19:ea:5c:79:97:c9:c4:36:b9:24:81:aa:90: d6:2c:a8:25:c8:aa:9f:93:c3:7b:62:5d:6a:04:6b:3d:da:eb: 35:65:ae:b3:49:20:6c:8a:c0:b8:73:72:6f:06:47:ee:12:b4: 93:5b:11:fa:ba:46:2e:f2:f7:77:dc:7d:49:ae:bb:be:7b:81: c2:a2:a4:36:85:00:b0:5c:b9:ba:03:6a:5a:f9:f2:48:0f:04: 0e:3b:02:46:e5:fe:9f:5e:bd:a1:33:0e:28:eb:e9:7f:56:f7: 33:50:be:54:0b:42:8e:63:06:bb:0b:73:35:5f:db:29:51:0d: 34:52:1a:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUwOTA0MjMxMDU3WhcNMjUwOTExMjMxMDU3WjAYMRYwFAYD VQQDEw02OGJhMWM4MS0zMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxc6xPYHCTh2l0DGzdt4OnOf6/Ogq/aTP5t4f5jtOIDBFMKSrGGwY3jH+xoux jBxTyA2BYkIYffAIW4LSpDDdmXBGy92mG70W5TqBJ3qrC+g3Pq8stk2bt8uYLKL3 /EYxr/yrWq7WjfT25tEE59kHrlnpo2YPS4MjV8G7WtCV+76/uC2xWLzKtL31brRb pZdUtfZV4Z0hxeMzRKXGMnOPCLrbNF2S5IzlirkXsaX7tv+lFoQ0CmsvopZ43uzu 7MrNzXksmheW/MuHmRdSy+/Zmwg3aq2P0jlOjHF2tRyZPa38X8xLRMhfZTuToPBM gpt3zVs3Yon2ztqTmaiK5MT8qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa5IU62 Plw3Yx/CMH2yZhGknn38MB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK4PUGNn02A2bimjf7c+78a+kzZOVMIxGtHNiXGkBR1LL3hYHMkwwf /vumP1+0IUk+SPsK7fFCxORMB8+qEADCI9rdsVY8xJyxOsPjAhQvn1w2uMw/8Nlt 4lDk+swzC4lEqHk4HIuo0ct+mfHBPjAhvTagyKmQRW7Pf+uZocU/cPkF7RnqXHmX ycQ2uSSBqpDWLKglyKqfk8N7Yl1qBGs92us1Za6zSSBsisC4c3JvBkfuErSTWxH6 ukYu8vd33H1Jrru+e4HCoqQ2hQCwXLm6A2pa+fJIDwQOOwJG5f6fXr2hMw4o6+l/ VvczUL5UC0KOYwa7C3M1X9spUQ00Uhqx -----END CERTIFICATE-----Generated at Sat Sep 6 13:26:45 2025 by rpki-client