$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft File: hseUaUaypXsFbwKyeTQNMMLOSbQ.mft (raw, json) Hash identifier: WQqiu0/WLKVJFmSCTFaJ3VAhToDhsq0km3/nvP5IwSI= Subject key identifier: C2:04:A0:71:8D:3C:83:8B:81:F8:2E:D3:DE:33:64:ED:92:E6:2F:0B Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 3517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft Manifest number: 34EE Signing time: Fri 04 Jul 2025 14:25:56 +0000 Manifest this update: Fri 04 Jul 2025 14:25:55 +0000 Manifest next update: Fri 11 Jul 2025 14:25:55 +0000 Files and hashes: 1: hseUaUaypXsFbwKyeTQNMMLOSbQ.crl (hash: kuhhT1S7csuF/MfK69ECWZLqcnxGdjeLl9109Mv+Dg8=) 2: D750ADC20ACF11F0B4EBA55FC4F9AE02.roa (hash: NL1ARYRNOz8aLxkxUrPpKF6D4wwBVw7q5BCEbZZrFuo=) 3: AF6AA9ECFF6011ED90C62C26C4F9AE02.roa (hash: I6SN+VthWHNwpn13bC2pRMPfdtmxkMFNn0d1M2WvxFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13591 (0x3517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99, serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: Jul 4 14:25:55 2025 GMT Not After : Jul 11 14:25:55 2025 GMT Subject: CN=6867e474-609b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6c:7a:57:2f:3b:99:30:fb:02:14:53:db:71: 2a:ce:86:85:4c:e0:4e:22:8d:17:ac:1d:df:01:74: 6d:7a:e9:70:71:ce:ad:12:1a:4a:cc:a4:7f:cc:ff: 58:0e:a6:5f:fc:56:86:ed:a1:c1:c6:74:16:94:e5: 81:e5:0d:57:05:7d:95:e6:92:da:03:2f:6d:05:4b: 7a:d2:b3:15:b5:db:22:f5:5b:83:82:06:6a:06:37: 48:3f:7e:af:e0:b1:37:fd:f8:b4:e3:fc:49:2f:a2: b4:48:b1:0c:5e:11:9b:38:c8:16:43:4f:be:0c:d9: cc:31:3f:ee:98:ce:0d:ab:1e:77:6e:bc:60:c6:4a: 7a:98:4b:61:01:ef:ae:6e:2a:f8:64:26:27:ad:ad: 6c:ba:d7:9d:50:b1:37:af:9a:33:d1:90:69:dc:a2: 74:a0:cc:b9:17:76:db:66:4c:78:52:6b:37:f8:4a: df:b7:d8:29:1c:1b:a4:19:40:7f:df:69:60:90:fc: ec:e6:a6:e3:c5:93:29:c5:9d:5c:9d:91:7e:71:bc: ef:57:c6:f3:26:90:b0:81:04:80:61:33:26:3d:08: 40:e8:0c:58:a0:dd:21:c3:fe:3a:c5:da:09:b6:c2: 7c:55:63:27:3b:e4:2a:d2:a5:39:79:cb:d0:e6:2c: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:04:A0:71:8D:3C:83:8B:81:F8:2E:D3:DE:33:64:ED:92:E6:2F:0B X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d3:e8:79:57:83:96:0e:a2:f2:76:41:a0:68:e3:8f:99:1c: 40:47:8c:54:4f:d8:b7:66:76:b9:95:67:19:68:9c:c6:20:b2: 1a:a2:17:e4:ac:19:ee:41:96:9c:42:96:ec:de:84:44:0c:0d: 9f:77:c0:3d:49:eb:6c:14:ea:39:f7:43:5c:6d:36:8a:76:95: 01:e5:6f:20:d8:8f:49:b4:6b:32:b5:85:e9:74:d7:cf:42:74: 56:94:12:da:8d:3d:09:0a:cd:b2:2e:0f:27:c0:60:06:3d:24: c3:f5:f2:fb:4c:9c:d5:2a:09:27:52:20:3d:3e:72:cc:6a:0b: 78:4a:d2:f2:71:5c:e0:b5:d6:bd:83:81:d5:84:ee:0e:d1:67: 07:21:32:46:53:33:f1:ae:09:45:00:8d:49:aa:27:81:34:e0: 18:99:6a:69:61:f5:79:8b:e9:06:21:71:a6:28:11:97:ad:40: 57:dc:e3:11:51:38:ec:c4:be:04:21:af:68:e6:cf:e0:75:5b: da:1f:fd:15:03:4f:a8:21:e5:43:7a:e3:e3:80:c3:9d:f2:2f: 42:06:df:9a:4a:34:57:c8:23:f1:af:08:c2:e9:37:1e:bf:ce: 47:c9:ad:b1:5a:0b:44:c9:41:d7:d5:b2:d2:00:ee:ce:b1:64: 5c:01:6a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjUwNzA0MTQyNTU1WhcNMjUwNzExMTQyNTU1WjAYMRYwFAYD VQQDEw02ODY3ZTQ3NC02MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mx6Vy87mTD7AhRT23EqzoaFTOBOIo0XrB3fAXRteulwcc6tEhpKzKR/zP9Y DqZf/FaG7aHBxnQWlOWB5Q1XBX2V5pLaAy9tBUt60rMVtdsi9VuDggZqBjdIP36v 4LE3/fi04/xJL6K0SLEMXhGbOMgWQ0++DNnMMT/umM4Nqx53brxgxkp6mEthAe+u bir4ZCYnra1sutedULE3r5oz0ZBp3KJ0oMy5F3bbZkx4Ums3+Erft9gpHBukGUB/ 32lgkPzs5qbjxZMpxZ1cnZF+cbzvV8bzJpCwgQSAYTMmPQhA6AxYoN0hw/46xdoJ tsJ8VWMnO+Qq0qU5ecvQ5iwHCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIEoHGN PIOLgfgu094zZO2S5i8LMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEI5OS9EM0Y5MDUxQzFEODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBY c0Zid0t5ZVRRTk1NTE9TYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt0+h5V4OWDqLydkGgaOOPmRxAR4xUT9i3Zna5lWcZaJzGILIaohfk rBnuQZacQpbs3oREDA2fd8A9SetsFOo590NcbTaKdpUB5W8g2I9JtGsytYXpdNfP QnRWlBLajT0JCs2yLg8nwGAGPSTD9fL7TJzVKgknUiA9PnLMagt4StLycVzgtda9 g4HVhO4O0WcHITJGUzPxrglFAI1JqieBNOAYmWppYfV5i+kGIXGmKBGXrUBX3OMR UTjsxL4EIa9o5s/gdVvaH/0VA0+oIeVDeuPjgMOd8i9CBt+aSjRXyCPxrwjC6Tce v85Hya2xWgtEyUHX1bLSAO7OsWRcAWqv -----END CERTIFICATE-----Generated at Fri Jul 4 22:04:52 2025 by rpki-client