$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: oghFbC1s+3eNUDRTN8yc/aW3o6bFqI1z7slzvVj6VAY= Subject key identifier: 5C:86:35:CA:EC:DB:3E:BD:CC:AD:59:10:5F:A3:3D:23:03:54:13:4A Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 0150 Signing time: Sat 05 Jul 2025 04:28:25 +0000 Manifest this update: Sat 05 Jul 2025 04:28:24 +0000 Manifest next update: Sat 12 Jul 2025 04:28:24 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: cqKETolB8RKM+rOW5IM/pW1E3twLlCfmpeSflE6W6+M=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Jul 5 04:28:24 2025 GMT Not After : Jul 12 04:28:24 2025 GMT Subject: CN=6868a9e9-81d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:00:b1:b8:6d:db:6d:d1:28:a9:a7:f8:16:41: df:c5:c1:51:b7:68:a9:d6:c6:9f:14:56:f8:59:fc: b2:14:e9:8b:7f:10:31:b2:db:ef:a9:6a:74:47:0d: 94:25:80:2a:b1:50:be:6b:eb:d9:c0:79:2c:26:d3: f7:2c:0a:42:34:f8:09:65:14:9d:5d:0b:8f:ab:6d: db:7d:f8:d3:f4:11:ae:c0:43:10:e4:b5:0e:5b:9d: 9f:62:4f:a6:d3:6e:f0:62:34:6a:0b:1d:da:a1:5a: ef:dd:1b:82:d1:dc:98:f9:dd:7b:a5:2e:37:c2:c7: 83:d5:e3:80:d6:5f:9a:97:79:31:1b:5f:3b:82:e8: ae:53:f9:1f:cb:f6:d0:e2:db:b3:a4:7e:5d:3d:f6: 61:e6:3c:ee:45:aa:bb:cb:6f:8b:35:8f:dc:26:00: 24:9c:0e:46:b4:34:f1:c4:2f:44:cc:87:17:d9:75: 5c:91:5c:11:35:29:65:98:45:b7:31:5d:09:c1:2c: d3:f9:84:97:1a:e2:22:4f:b5:df:47:ef:fb:e5:13: a1:8d:2c:5a:51:5d:00:1a:8f:83:51:1b:45:7b:5a: 1c:94:0f:8e:f4:80:e4:e2:a0:77:69:6a:4d:e8:65: 51:63:08:e8:21:23:83:a2:58:d4:eb:06:f0:91:5e: 20:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:86:35:CA:EC:DB:3E:BD:CC:AD:59:10:5F:A3:3D:23:03:54:13:4A X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6a:e0:0f:d9:d7:da:8e:92:37:db:c6:c3:6c:25:61:40:50: ce:af:90:13:f6:ce:1a:2a:eb:a0:e5:16:13:55:ee:3b:8b:6b: da:d0:d3:c5:4c:f9:b2:90:4f:df:95:3c:7b:11:60:a5:f2:df: ab:89:4f:b5:3c:b8:b7:5f:e3:36:65:6e:7c:c9:8d:f1:45:55: f5:bd:6d:e8:a0:dd:8f:f8:56:21:87:c5:ff:3a:dc:3f:90:f7: b2:4c:6a:16:df:26:f7:20:29:d2:16:6e:38:e4:d6:f8:3a:de: b0:25:50:f4:e7:89:36:00:42:34:69:e3:26:f7:63:40:b9:f6: 08:72:b6:85:45:11:df:db:36:fe:be:51:86:23:c3:2b:1e:4d: 4a:7a:09:a3:b6:6c:2b:2b:d5:ce:e6:5f:02:6f:7e:f6:0e:e6: 36:fe:8a:8e:e7:93:22:45:1a:ca:78:be:8c:c3:d0:0b:28:59: 6c:e6:4a:70:6f:30:50:f2:70:cf:98:20:2f:f9:7c:78:b2:c5: f7:10:e2:93:76:db:b5:22:35:a3:1e:7a:4c:72:e2:ec:5e:76: 04:5f:5c:01:ed:34:43:9d:69:0d:3a:d1:d7:7b:b2:7a:b4:f1: 6e:0a:46:06:fb:39:0b:ae:31:69:fa:da:e8:6d:ae:af:8a:1a: 0b:ca:f2:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUwNzA1MDQyODI0WhcNMjUwNzEyMDQyODI0WjAYMRYwFAYD VQQDEw02ODY4YTllOS04MWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wCxuG3bbdEoqaf4FkHfxcFRt2ip1safFFb4WfyyFOmLfxAxstvvqWp0Rw2U JYAqsVC+a+vZwHksJtP3LApCNPgJZRSdXQuPq23bffjT9BGuwEMQ5LUOW52fYk+m 027wYjRqCx3aoVrv3RuC0dyY+d17pS43wseD1eOA1l+al3kxG187guiuU/kfy/bQ 4tuzpH5dPfZh5jzuRaq7y2+LNY/cJgAknA5GtDTxxC9EzIcX2XVckVwRNSllmEW3 MV0JwSzT+YSXGuIiT7XfR+/75ROhjSxaUV0AGo+DURtFe1oclA+O9IDk4qB3aWpN 6GVRYwjoISODoljU6wbwkV4gvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyGNcrs 2z69zK1ZEF+jPSMDVBNKMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsauAP2dfajpI328bDbCVhQFDOr5AT9s4aKuug5RYTVe47i2va0NPF TPmykE/flTx7EWCl8t+riU+1PLi3X+M2ZW58yY3xRVX1vW3ooN2P+FYhh8X/Otw/ kPeyTGoW3yb3ICnSFm445Nb4Ot6wJVD054k2AEI0aeMm92NAufYIcraFRRHf2zb+ vlGGI8MrHk1KegmjtmwrK9XO5l8Cb372DuY2/oqO55MiRRrKeL6Mw9ALKFls5kpw bzBQ8nDPmCAv+Xx4ssX3EOKTdtu1IjWjHnpMcuLsXnYEX1wB7TRDnWkNOtHXe7J6 tPFuCkYG+zkLrjFp+troba6vihoLyvIy -----END CERTIFICATE-----Generated at Sun Jul 6 00:01:52 2025 by rpki-client