$ rpki-client -vvf rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft File: h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft (raw, json) Hash identifier: CzxwJxKQ1HBkZ+AGnV7/s09DbiVGt6maDm1Pt4HoUSU= Subject key identifier: 52:C6:77:8F:23:EB:F5:BB:D1:9A:13:07:CE:9E:60:3F:A6:47:7B:39 Authority key identifier: 87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 Certificate issuer: /CN=A919D180/serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft Manifest number: 86 Signing time: Tue 09 Sep 2025 06:54:52 +0000 Manifest this update: Tue 09 Sep 2025 06:54:52 +0000 Manifest next update: Tue 16 Sep 2025 06:54:52 +0000 Files and hashes: 1: h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl (hash: 4/FtEk4LVkBw+6I7g8SZH9E+t7Yreb5lwOtgpur6oiA=) 2: C8D5160AE75E11EF97E59E40C4F9AE02.roa (hash: usgzG5l4Fc/vVVRb6d9DCRrnc0s/zMN8s4ksanz/FtM=) 3: 8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa (hash: FHrz83TvBf0PQed/UPRQj7z6Reuifr4TTzu0H0Cz+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D180, serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Validity Not Before: Sep 9 06:54:52 2025 GMT Not After : Sep 16 06:54:52 2025 GMT Subject: CN=68bfcf3c-20df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:2a:f8:94:08:1f:70:5a:07:7f:c3:6b:0b: 73:e7:49:bf:4c:fa:b3:4a:75:a0:22:43:0a:38:54: 42:9e:56:78:e3:ba:b7:87:f2:5a:e5:0d:46:28:26: 05:5f:5a:ac:f2:4b:23:ba:81:a4:01:34:d6:5d:14: 61:7f:ce:16:0f:1c:62:ae:88:38:16:f6:98:8a:01: 7e:1a:2a:eb:38:7f:b8:1e:b2:9a:a8:5e:ff:39:c9: 55:82:7a:42:60:13:cc:77:52:53:6d:2a:05:e3:85: e9:b7:28:41:af:b6:8c:22:53:b7:a8:d6:76:4f:66: d6:ab:fe:59:39:18:3a:dc:fa:16:78:c3:5e:7e:6d: c4:70:0d:bb:11:20:a0:d4:c1:f6:43:4a:07:d5:fe: 8f:0e:56:cb:76:3e:65:e2:ed:f0:fe:06:85:e3:4a: 0a:81:59:fc:46:2f:93:27:9e:3b:1a:6c:73:44:cb: 1b:37:6e:ab:2e:d6:09:d3:cf:96:9a:6d:c8:92:cf: 66:78:d5:d2:87:3a:69:d2:2e:e7:00:cb:2b:10:61: 6b:5e:95:46:bd:82:60:e3:2a:a7:8d:12:a0:27:da: 4d:d2:9e:46:7e:48:5e:fd:a5:8d:6c:45:8e:44:3f: f0:61:11:41:67:6b:58:9a:57:0e:37:88:27:d8:5b: 70:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C6:77:8F:23:EB:F5:BB:D1:9A:13:07:CE:9E:60:3F:A6:47:7B:39 X509v3 Authority Key Identifier: keyid:87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f4:16:8d:88:42:21:2f:e3:bf:cb:99:b1:32:e0:7c:5c:9e: 7a:0f:1c:1a:04:a3:b4:35:85:1d:00:37:66:ba:1b:cf:0a:53: 29:24:19:0a:4f:f3:89:4d:91:64:77:3b:f3:2d:db:4d:40:38: 94:89:50:bb:4d:2f:ed:e3:fc:5a:61:bb:c9:61:4c:f9:16:66: 2e:b9:d7:0a:a3:97:90:41:dd:e7:8d:74:e8:7e:4f:93:58:33: 7e:22:55:90:57:49:36:f5:ab:c7:81:ad:29:dd:de:f6:1f:67: cb:11:f4:c7:04:d4:0b:bf:fd:fd:61:ad:a3:e3:c4:db:5c:47: 29:68:8e:5c:2f:46:d7:86:f4:bc:6c:f1:04:d7:22:7e:68:a6: 4f:ee:df:8d:ab:f9:44:82:57:a6:b5:66:0f:a6:7c:69:3c:fe: 20:39:16:ff:60:3b:5a:3c:9f:ec:b1:13:67:ea:24:d4:6f:4a: ba:8b:40:86:e6:35:42:8c:ea:11:b0:1c:7d:f3:c5:9c:66:f3: 34:6b:7b:24:eb:a9:d2:ed:7f:d2:3c:77:65:34:ae:59:d7:d3: 8f:a9:93:dd:ad:7f:12:2c:d6:fa:2e:1d:a4:d6:26:45:de:ab: f5:13:38:f2:5f:94:f1:9c:b4:ad:20:c4:21:87:80:94:4d:53: a7:d7:b9:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxODAxMTAvBgNVBAUTKDg3REE0NEE0Q0Y4MzlDMzg4MUM2QkMzODY4M0NDREMz MDhDQTdDRTkwHhcNMjUwOTA5MDY1NDUyWhcNMjUwOTE2MDY1NDUyWjAYMRYwFAYD VQQDEw02OGJmY2YzYy0yMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dEq+JQIH3BaB3/Dawtz50m/TPqzSnWgIkMKOFRCnlZ447q3h/Ja5Q1GKCYF X1qs8ksjuoGkATTWXRRhf84WDxxirog4FvaYigF+GirrOH+4HrKaqF7/OclVgnpC YBPMd1JTbSoF44XptyhBr7aMIlO3qNZ2T2bWq/5ZORg63PoWeMNefm3EcA27ESCg 1MH2Q0oH1f6PDlbLdj5l4u3w/gaF40oKgVn8Ri+TJ547GmxzRMsbN26rLtYJ08+W mm3Iks9meNXShzpp0i7nAMsrEGFrXpVGvYJg4yqnjRKgJ9pN0p5Gfkhe/aWNbEWO RD/wYRFBZ2tYmlcON4gn2FtwUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLGd48j 6/W70ZoTB86eYD+mR3s5MB8GA1UdIwQYMBaAFIfaRKTPg5w4gca8OGg8zcMIynzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDE4MC83NzQyODdGMkQ2 QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi9oOXBFcE0tRG5EaUJ4cnc0YUR6Tnd3aktm T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5cEVwTS1EbkRpQnhydzRhRHpOd3dqS2ZPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDE4MC83NzQyODdGMkQ2QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi9oOXBFcE0tRG5E aUJ4cnc0YUR6Tnd3aktmT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk9BaNiEIhL+O/y5mxMuB8XJ56DxwaBKO0NYUdADdmuhvPClMpJBkK T/OJTZFkdzvzLdtNQDiUiVC7TS/t4/xaYbvJYUz5FmYuudcKo5eQQd3njXTofk+T WDN+IlWQV0k29avHga0p3d72H2fLEfTHBNQLv/39Ya2j48TbXEcpaI5cL0bXhvS8 bPEE1yJ+aKZP7t+Nq/lEglemtWYPpnxpPP4gORb/YDtaPJ/ssRNn6iTUb0q6i0CG 5jVCjOoRsBx988WcZvM0a3sk66nS7X/SPHdlNK5Z19OPqZPdrX8SLNb6Lh2k1iZF 3qv1EzjyX5TxnLStIMQhh4CUTVOn17nK -----END CERTIFICATE-----Generated at Tue Sep 9 13:35:03 2025 by rpki-client