$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: 8r7Zq4OVonkeEZ4bh40huCc8a4gSVzAJAh6vbT1cEuw= Subject key identifier: 54:42:EE:26:8B:B3:24:B7:8D:64:A9:3B:DE:7E:DA:10:4B:C3:9D:92 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 1803 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 1803 Signing time: Sun 24 Aug 2025 16:31:18 +0000 Manifest this update: Sun 24 Aug 2025 16:31:17 +0000 Manifest next update: Sun 31 Aug 2025 16:31:17 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: ULryVHBNqbmYR9xLU3ymSnsYOYoV4yJ+PizEbGMWZ0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6147 (0x1803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Aug 24 16:31:17 2025 GMT Not After : Aug 31 16:31:17 2025 GMT Subject: CN=68ab3e55-e904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:02:4c:81:b1:25:9e:f4:be:0d:81:89:cf: 65:37:ea:ae:57:fc:b4:78:a8:c8:b1:56:8f:6d:46: 15:95:bc:95:78:2f:36:d8:ff:58:ee:f9:d9:8d:16: 7f:2a:48:40:a4:5a:c8:7e:f7:2a:2e:5f:45:9d:18: 84:33:fb:fc:e3:8d:48:6c:f5:9b:6d:d3:1f:0d:8d: 9f:4d:e4:4c:88:23:4d:56:d2:60:bd:38:22:e0:10: 9f:c3:eb:26:8a:32:ff:af:d3:b7:29:23:01:c4:1f: 92:4b:d8:f4:ee:e6:38:3f:3c:7d:a6:ae:ac:6d:51: ae:3c:b0:f5:83:36:ff:7b:3b:d2:82:99:e2:af:b4: bd:ec:a6:c3:7f:ce:62:4c:e6:d9:ff:06:c6:47:2b: 29:e6:42:1a:8c:34:e6:8e:7c:bb:d1:17:67:96:ba: 70:33:a9:8a:db:e6:9d:9a:ac:ef:0e:1f:b0:de:ab: 80:14:88:21:88:04:51:34:9e:50:84:76:a7:0d:35: e5:6c:64:c3:22:1a:93:2e:fe:83:19:f2:f9:70:cb: 85:85:75:ee:ba:f8:08:a6:de:21:ac:3f:df:59:02: 74:54:c6:8c:80:0f:cf:9b:56:a9:07:dd:c0:54:f5: 36:99:be:dc:57:3c:d3:80:f0:c6:3f:c4:eb:6d:34: 97:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:42:EE:26:8B:B3:24:B7:8D:64:A9:3B:DE:7E:DA:10:4B:C3:9D:92 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:87:bd:9d:bd:9b:f0:32:0e:ac:1b:59:9c:7e:ac:57:19:f0: 23:79:13:03:1f:91:90:b3:53:94:e8:02:8b:c8:31:38:02:b2: 40:47:ea:3e:81:2a:60:c2:d2:8b:8a:83:7f:ba:57:68:fc:95: ff:15:cf:b7:c6:d2:93:f5:61:91:40:fc:5b:93:7e:78:de:83: 1e:d8:b5:7d:db:db:20:28:bf:7a:5a:d6:bd:1a:fc:26:d0:99: 10:30:ea:2a:ea:38:17:dc:a1:0a:a1:af:82:5f:53:36:ca:b2: b9:d3:3c:05:47:41:c3:d7:29:cd:e9:91:ed:4a:50:38:42:ac: ab:4b:16:f0:9a:63:54:12:50:4a:a4:f3:d6:35:43:4e:28:bd: 21:9b:09:f5:0a:d3:75:f5:84:52:17:56:47:04:1a:dd:bc:c7: 2c:22:7b:7f:69:00:2e:be:2c:24:6a:73:d8:a1:fb:77:e3:d2: 9d:bd:61:aa:3b:b2:12:fd:1e:0d:18:6c:fe:2a:f4:6d:92:fd: d3:d2:f2:79:06:2b:07:18:16:3c:2d:5e:74:06:4f:1b:9a:69: 62:be:3e:57:0e:cc:7d:a8:2f:46:fd:63:48:ac:ac:09:7b:43: 81:f0:fb:aa:7e:a5:2d:f7:80:96:d6:8a:09:64:44:ec:7c:bb: 98:da:6e:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUwODI0MTYzMTE3WhcNMjUwODMxMTYzMTE3WjAYMRYwFAYD VQQDEw02OGFiM2U1NS1lOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAECTIGxJZ70vg2Bic9lN+quV/y0eKjIsVaPbUYVlbyVeC822P9Y7vnZjRZ/ KkhApFrIfvcqLl9FnRiEM/v8441IbPWbbdMfDY2fTeRMiCNNVtJgvTgi4BCfw+sm ijL/r9O3KSMBxB+SS9j07uY4Pzx9pq6sbVGuPLD1gzb/ezvSgpnir7S97KbDf85i TObZ/wbGRysp5kIajDTmjny70RdnlrpwM6mK2+admqzvDh+w3quAFIghiARRNJ5Q hHanDTXlbGTDIhqTLv6DGfL5cMuFhXXuuvgIpt4hrD/fWQJ0VMaMgA/Pm1apB93A VPU2mb7cVzzTgPDGP8TrbTSX8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRC7iaL syS3jWSpO95+2hBLw52SMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeh72dvZvwMg6sG1mcfqxXGfAjeRMDH5GQs1OU6AKLyDE4ArJAR+o+ gSpgwtKLioN/uldo/JX/Fc+3xtKT9WGRQPxbk3543oMe2LV929sgKL96Wta9Gvwm 0JkQMOoq6jgX3KEKoa+CX1M2yrK50zwFR0HD1ynN6ZHtSlA4QqyrSxbwmmNUElBK pPPWNUNOKL0hmwn1CtN19YRSF1ZHBBrdvMcsInt/aQAuviwkanPYoft349KdvWGq O7IS/R4NGGz+KvRtkv3T0vJ5BisHGBY8LV50Bk8bmmlivj5XDsx9qC9G/WNIrKwJ e0OB8PuqfqUt94CW1ooJZETsfLuY2m5E -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:18 2025 by rpki-client