$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: godBmWWLlRwFdI2ST3QwKXb2uEl1Jid/slzSkJwN6JI= Subject key identifier: 5D:3D:02:F7:B7:5F:4B:0B:FC:03:33:FA:0C:46:E1:51:0A:45:87:C3 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 83 Signing time: Sun 29 Jun 2025 05:45:47 +0000 Manifest this update: Sun 29 Jun 2025 05:45:46 +0000 Manifest next update: Sun 06 Jul 2025 05:45:46 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: 1f9YCKFsLQUJPP3IBtAYPokw/4D9iI7HV5ES7kQ6ASI=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 3tPU5Z40ENmKrBN3OAXsHJVkK9J8E3240xOs2Cjr+YQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Jun 29 05:45:46 2025 GMT Not After : Jul 6 05:45:46 2025 GMT Subject: CN=6860d30a-7177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f4:c9:ed:00:da:ca:1d:2e:9e:90:dc:f2:90: 0b:d0:02:6e:34:96:cc:0e:5c:0c:21:75:fc:57:a6: 25:80:af:46:66:10:ab:83:6b:ed:b2:be:ef:2d:6e: 06:09:8e:aa:d9:2c:8c:a9:89:e0:7a:33:1d:a6:a7: 49:64:e5:2f:40:0a:09:ca:00:89:d3:c6:cc:ae:de: ac:6d:30:9d:93:5d:f4:24:b0:bd:24:97:74:03:cc: ca:c0:a8:ec:9f:de:b6:2a:38:f9:13:07:cb:9b:c4: c8:dc:78:a8:55:d2:3c:14:d1:99:7f:68:18:47:0d: a0:49:9b:25:69:48:60:a6:1b:c2:1a:11:43:64:8f: e0:6d:65:8f:ae:24:28:a1:cf:56:47:47:d5:ff:9a: 39:66:dc:46:55:21:8a:3e:2c:1b:4f:24:b1:20:50: 13:96:6c:76:48:2c:4e:cd:e4:c9:13:d1:d0:f4:0b: a4:e0:0d:18:e7:1c:0a:57:ab:eb:5c:44:55:a9:10: 60:d6:6a:8b:fb:3f:ac:5b:73:c3:54:99:56:01:f8: 4e:6d:a0:3c:50:92:b6:63:15:76:72:9d:d7:ed:ae: 7f:af:51:86:82:e4:fa:1c:67:5e:f5:0e:be:36:19: 28:c2:62:67:29:29:78:fa:92:93:c6:e2:e2:7d:80: b3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3D:02:F7:B7:5F:4B:0B:FC:03:33:FA:0C:46:E1:51:0A:45:87:C3 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:31:41:fc:ea:cf:14:40:71:42:ab:ce:e0:3c:b7:9f:7f:3e: ad:75:a2:6e:04:87:c6:57:56:55:a3:df:76:34:a5:20:0d:65: ec:bf:12:ca:c1:bc:10:18:cf:2a:ad:a6:52:10:25:24:84:14: 9b:19:08:59:bf:24:9b:37:07:b5:ea:14:b6:7a:18:23:9c:1f: 7a:3e:cd:78:5b:37:b3:a8:f1:7f:70:6b:9e:1c:0d:cd:da:8e: 8d:0c:44:7c:a2:be:53:48:f1:c1:5a:ea:69:1b:dd:d3:d6:7f: 1a:be:9d:85:a7:14:b4:e6:20:37:da:d3:e7:d9:a5:3e:0c:36: b6:ba:8b:ff:6b:80:ee:68:c2:92:e7:d0:98:58:9b:7e:06:7d: 0e:3d:c3:ba:c2:61:bc:88:d0:58:d7:d2:23:e8:80:87:43:8e: 69:63:d1:30:b2:e5:e0:43:64:7f:c7:07:b5:f6:48:cd:c1:99: 13:f4:1f:13:60:b8:9b:4f:1a:d5:cb:79:70:ae:31:a0:be:64: aa:98:f7:e5:58:8d:f8:04:5e:34:3c:0a:08:2f:53:64:e1:ad: c3:51:19:98:69:8b:94:21:7c:6e:ab:da:0b:30:1f:4c:4e:4e: fe:aa:2c:eb:67:2c:1d:e4:2b:4e:46:17:85:50:57:48:3b:7f: 61:4d:14:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUwNjI5MDU0NTQ2WhcNMjUwNzA2MDU0NTQ2WjAYMRYwFAYD VQQDEw02ODYwZDMwYS03MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fTJ7QDayh0unpDc8pAL0AJuNJbMDlwMIXX8V6YlgK9GZhCrg2vtsr7vLW4G CY6q2SyMqYngejMdpqdJZOUvQAoJygCJ08bMrt6sbTCdk130JLC9JJd0A8zKwKjs n962Kjj5EwfLm8TI3HioVdI8FNGZf2gYRw2gSZslaUhgphvCGhFDZI/gbWWPriQo oc9WR0fV/5o5ZtxGVSGKPiwbTySxIFATlmx2SCxOzeTJE9HQ9Auk4A0Y5xwKV6vr XERVqRBg1mqL+z+sW3PDVJlWAfhObaA8UJK2YxV2cp3X7a5/r1GGguT6HGde9Q6+ NhkowmJnKSl4+pKTxuLifYCz3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF09Ave3 X0sL/AMz+gxG4VEKRYfDMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5MUH86s8UQHFCq87gPLeffz6tdaJuBIfGV1ZVo992NKUgDWXsvxLK wbwQGM8qraZSECUkhBSbGQhZvySbNwe16hS2ehgjnB96Ps14WzezqPF/cGueHA3N 2o6NDER8or5TSPHBWuppG93T1n8avp2FpxS05iA32tPn2aU+DDa2uov/a4DuaMKS 59CYWJt+Bn0OPcO6wmG8iNBY19Ij6ICHQ45pY9EwsuXgQ2R/xwe19kjNwZkT9B8T YLibTxrVy3lwrjGgvmSqmPflWI34BF40PAoIL1Nk4a3DURmYaYuUIXxuq9oLMB9M Tk7+qizrZywd5CtORheFUFdIO39hTRQs -----END CERTIFICATE-----Generated at Sun Jun 29 14:03:43 2025 by rpki-client