$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: 6WG3Hnjqt3mhn3BhL744xlhcXrOuNevPgQOxcG514Qg= Subject key identifier: B4:62:01:52:97:B0:14:1C:D5:9B:6E:A8:79:65:F1:48:72:78:71:D0 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 07F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 07DE Signing time: Wed 02 Jul 2025 21:21:00 +0000 Manifest this update: Wed 02 Jul 2025 21:21:00 +0000 Manifest next update: Wed 09 Jul 2025 21:21:00 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: hvf34wVPRWhV17Z9DLl2onmbS+UXoiMVfxJs5UAbsZE=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2033 (0x7f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jul 2 21:21:00 2025 GMT Not After : Jul 9 21:21:00 2025 GMT Subject: CN=6865a2bc-f0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:bd:33:1a:5a:7d:b4:cc:cb:5b:00:47:2e: b9:16:ec:f2:28:5f:f6:eb:07:24:5b:ea:91:88:8b: e0:7f:0c:9e:ea:da:ae:eb:80:63:59:9e:69:27:4e: ad:c7:1f:e4:60:27:ae:a7:bb:07:8c:92:f6:c7:88: 75:ca:b6:54:d1:c0:93:ca:2f:a5:27:6a:3f:6f:9c: 6e:ae:bb:ae:35:bf:c3:80:d7:a5:d4:02:12:bf:af: 0e:54:82:50:69:d3:47:95:bf:44:dd:50:53:1c:37: 2d:27:0b:68:fe:5c:22:1d:4f:04:76:b4:cd:8e:93: 35:4f:b0:46:53:c5:69:8c:74:e9:5d:f8:1b:9e:f5: 43:f2:da:b4:40:72:e8:d2:79:28:49:6e:bb:04:e5: 3c:6f:09:a5:db:b0:81:c9:b4:0a:b4:22:30:c9:5e: 88:9b:cc:1e:0f:95:ea:fe:99:5e:5a:1d:de:bc:b5: b8:ee:15:32:be:5a:3d:35:d2:d3:5f:31:b0:41:8e: de:77:f2:90:ef:07:93:71:41:91:08:b0:29:c7:8f: ab:68:ca:f0:90:26:44:22:8c:f5:b1:86:38:5f:7d: 0b:0a:22:18:ca:ff:6a:e1:d5:2b:7a:49:68:4d:80: 79:ed:2b:42:61:19:1a:37:1a:d4:57:60:39:15:40: 12:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:62:01:52:97:B0:14:1C:D5:9B:6E:A8:79:65:F1:48:72:78:71:D0 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:80:b6:df:d6:ba:7b:b0:4b:7c:4c:46:7c:1e:5a:9b:47:0e: 60:83:d3:53:9d:9f:8f:24:97:d0:7e:e5:04:93:a9:01:1e:81: f1:17:30:ff:5b:cc:ba:74:d6:7a:87:db:c3:95:83:59:ee:24: 62:f1:80:b4:56:75:e8:54:c9:5c:93:dc:37:30:bf:47:8b:74: 76:ac:c3:44:86:ef:49:70:73:00:e4:46:6d:f2:c0:0e:3f:98: 80:4e:4d:a7:46:81:6e:9a:98:cf:70:45:3b:28:a2:e8:c4:e2: 67:ab:f4:66:e7:99:b1:67:96:25:11:bd:29:3b:eb:e3:6c:1c: 4c:5c:94:1b:59:cb:5b:26:ac:6c:e0:9c:b4:61:22:fd:9d:ab: 9b:f7:49:a6:7c:6f:3c:bc:f7:77:90:a0:99:d6:24:b8:73:46: 4a:f3:05:6b:ff:4d:52:0a:31:c1:93:a8:e0:ef:f2:71:87:59: 24:0a:77:9d:3b:6f:21:0a:4c:c8:63:45:07:29:2b:5e:40:b5: 51:9b:ae:8a:02:8b:5a:58:f4:ee:35:c2:a2:1d:e5:aa:24:31: c3:74:5d:6f:25:1e:82:63:c6:3d:84:83:18:e2:d8:58:68:9b: 5f:1c:5d:aa:30:87:bf:17:9c:28:19:1b:5f:d3:7e:17:72:bc: 5f:22:1d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNzAyMjEyMTAwWhcNMjUwNzA5MjEyMTAwWjAYMRYwFAYD VQQDEw02ODY1YTJiYy1mMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcW9MxpafbTMy1sARy65FuzyKF/26wckW+qRiIvgfwye6tqu64BjWZ5pJ06t xx/kYCeup7sHjJL2x4h1yrZU0cCTyi+lJ2o/b5xurruuNb/DgNel1AISv68OVIJQ adNHlb9E3VBTHDctJwto/lwiHU8EdrTNjpM1T7BGU8VpjHTpXfgbnvVD8tq0QHLo 0nkoSW67BOU8bwml27CBybQKtCIwyV6Im8weD5Xq/pleWh3evLW47hUyvlo9NdLT XzGwQY7ed/KQ7weTcUGRCLApx4+raMrwkCZEIoz1sYY4X30LCiIYyv9q4dUreklo TYB57StCYRkaNxrUV2A5FUASDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRiAVKX sBQc1ZtuqHll8UhyeHHQMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3gLbf1rp7sEt8TEZ8HlqbRw5gg9NTnZ+PJJfQfuUEk6kBHoHxFzD/ W8y6dNZ6h9vDlYNZ7iRi8YC0VnXoVMlck9w3ML9Hi3R2rMNEhu9JcHMA5EZt8sAO P5iATk2nRoFumpjPcEU7KKLoxOJnq/Rm55mxZ5YlEb0pO+vjbBxMXJQbWctbJqxs 4Jy0YSL9naub90mmfG88vPd3kKCZ1iS4c0ZK8wVr/01SCjHBk6jg7/Jxh1kkCned O28hCkzIY0UHKSteQLVRm66KAotaWPTuNcKiHeWqJDHDdF1vJR6CY8Y9hIMY4thY aJtfHF2qMIe/F5woGRtf034XcrxfIh0I -----END CERTIFICATE-----Generated at Thu Jul 3 06:08:57 2025 by rpki-client