$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: Al67jBfk9c7DBdXHmhVR7BDQUuS22hVuoEJk87u6Kic= Subject key identifier: 51:D8:CB:C4:8E:98:9B:04:26:CF:02:0F:5E:5C:B4:05:55:D5:2B:B4 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0BC2 Signing time: Wed 20 Aug 2025 18:59:37 +0000 Manifest this update: Wed 20 Aug 2025 18:59:36 +0000 Manifest next update: Wed 27 Aug 2025 18:59:36 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: 7P/8AJpa2A9luUUN6lZBXUTzHXb1xkw3z/O5YYFRLpM=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: dTqPYAZ0fYSqCYvtzmzk6vV87y7uZ4+mAQSsb1JNqeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Aug 20 18:59:36 2025 GMT Not After : Aug 27 18:59:36 2025 GMT Subject: CN=68a61b19-9427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4e:5e:fa:63:72:2c:f2:1f:33:9f:49:95:77: a3:87:5f:b8:82:62:f0:ae:52:38:92:8b:76:c9:19: 14:3b:8c:3e:48:9a:57:71:ef:58:c0:52:16:39:88: 2e:86:75:c9:5f:93:c8:9d:cd:3e:7e:64:fe:6f:29: 23:fb:a8:1d:1c:28:c5:4b:27:86:f7:41:a3:3a:2a: c4:5b:32:b9:00:8a:79:c2:d2:9f:8d:24:bf:f0:bd: e8:64:44:4f:22:27:4e:ea:e0:60:c9:63:23:43:0a: fc:66:18:68:a9:e4:57:4b:74:2e:0f:51:86:a7:82: 89:49:ec:c2:7a:f7:41:b8:03:11:aa:08:16:c5:fc: 4a:17:b3:d1:48:8f:a5:78:98:cf:e3:dc:99:26:db: 0b:f7:e1:96:6e:40:37:2a:d0:7d:a7:09:ae:d8:4a: 9f:08:94:02:d9:b4:32:76:e6:c5:53:53:6d:83:10: 8e:aa:76:a8:b8:eb:77:3c:77:d0:40:09:61:b3:55: 05:ef:16:cd:03:df:53:80:b4:7b:ff:0e:d6:e5:62: f0:4b:1c:23:0e:cf:59:97:b8:71:77:a2:08:85:17: 55:de:9c:41:74:ea:a8:94:62:9a:96:b9:5d:7e:64: bc:38:9b:2f:8f:3b:62:21:72:cf:9b:4d:3f:21:e0: 40:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D8:CB:C4:8E:98:9B:04:26:CF:02:0F:5E:5C:B4:05:55:D5:2B:B4 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:ac:cc:09:b2:a1:0c:50:ba:f6:ae:30:8c:1a:78:0e:d1:89: d2:5d:11:2e:ca:d4:96:71:8c:67:52:94:a3:db:cb:4d:5a:d3: 93:08:62:f8:50:f8:9a:96:36:5f:86:cd:de:4e:72:2b:1d:33: e0:55:11:2b:3e:19:11:8b:83:20:f9:ae:bb:0d:f7:6e:e8:0c: be:c6:6d:1e:60:db:0b:9c:41:44:84:11:cb:ee:21:2c:ab:7e: ab:e0:87:cc:05:d7:65:0a:e4:d5:9a:ad:86:4d:cb:ef:15:06: 44:4a:5c:1d:f5:6d:9d:1e:37:cc:b6:46:15:51:38:77:77:9f: 5b:ce:95:c3:88:7d:14:5d:9d:9b:6d:bf:1c:01:43:b4:85:1b: b8:c8:68:0d:94:08:64:90:22:ea:9a:c9:74:9e:87:f7:a2:b9: de:17:a8:2e:b6:ae:8f:89:21:88:43:8f:d3:9a:1b:cb:2a:8c: cc:e0:36:9d:2d:1e:d8:94:41:0b:bf:f1:35:72:87:e0:68:17: dd:52:3c:94:de:4b:a9:26:c2:1c:d3:ff:c5:85:2b:d5:a8:07: 8b:77:f7:30:9d:61:43:4a:59:56:bd:c3:29:64:0d:4a:5d:d1: fd:fb:de:e8:1d:4b:e5:3a:65:81:d7:0f:a2:d3:01:7b:ad:2c: c0:57:f2:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjUwODIwMTg1OTM2WhcNMjUwODI3MTg1OTM2WjAYMRYwFAYD VQQDEw02OGE2MWIxOS05NDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3E5e+mNyLPIfM59JlXejh1+4gmLwrlI4kot2yRkUO4w+SJpXce9YwFIWOYgu hnXJX5PInc0+fmT+bykj+6gdHCjFSyeG90GjOirEWzK5AIp5wtKfjSS/8L3oZERP IidO6uBgyWMjQwr8ZhhoqeRXS3QuD1GGp4KJSezCevdBuAMRqggWxfxKF7PRSI+l eJjP49yZJtsL9+GWbkA3KtB9pwmu2EqfCJQC2bQydubFU1NtgxCOqnaouOt3PHfQ QAlhs1UF7xbNA99TgLR7/w7W5WLwSxwjDs9Zl7hxd6IIhRdV3pxBdOqolGKalrld fmS8OJsvjztiIXLPm00/IeBAlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHYy8SO mJsEJs8CD15ctAVV1Su0MB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1rMwJsqEMULr2rjCMGngO0YnSXREuytSWcYxnUpSj28tNWtOTCGL4 UPialjZfhs3eTnIrHTPgVRErPhkRi4Mg+a67Dfdu6Ay+xm0eYNsLnEFEhBHL7iEs q36r4IfMBddlCuTVmq2GTcvvFQZESlwd9W2dHjfMtkYVUTh3d59bzpXDiH0UXZ2b bb8cAUO0hRu4yGgNlAhkkCLqmsl0nof3orneF6gutq6PiSGIQ4/TmhvLKozM4Dad LR7YlEELv/E1cofgaBfdUjyU3kupJsIc0//FhSvVqAeLd/cwnWFDSllWvcMpZA1K XdH9+97oHUvlOmWB1w+i0wF7rSzAV/KC -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:15 2025 by rpki-client