$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: hzgKBp1/n9Jn5xrbmOePSj51jK0ksvm8fSzO5l3XpB8= Subject key identifier: 78:2D:41:0B:1E:3F:E7:26:D8:42:29:63:98:CA:87:00:E4:F0:B4:E1 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 13C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 1396 Signing time: Fri 04 Jul 2025 17:16:21 +0000 Manifest this update: Fri 04 Jul 2025 17:16:21 +0000 Manifest next update: Fri 11 Jul 2025 17:16:21 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: iK362lx2hxqmuVP9L94o2ImCfocNL+zB7w8B9CmNWyY=) 2: F046E896E9B411EFADF57822C4F9AE02.roa (hash: l+bVVNm3bbMbBf2jMtRM0oEIl5YU3KZtVBp4SxX67pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5063 (0x13c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: Jul 4 17:16:21 2025 GMT Not After : Jul 11 17:16:21 2025 GMT Subject: CN=68680c65-79cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0c:7d:78:47:5d:2f:b3:a9:fd:3b:40:f5:1c: 85:6d:b6:69:44:de:c6:79:b0:bf:4e:ab:d2:4c:b4: 84:12:79:15:11:88:57:80:1c:0d:93:5f:85:b8:98: c1:ad:e1:4e:60:ae:1b:28:02:8f:47:35:4a:5f:fc: 25:96:1d:47:f1:62:81:85:c0:11:86:a4:06:d3:f5: f1:b9:68:d0:62:49:5e:f6:2a:b1:68:80:1e:f3:4b: 81:f4:0c:b7:7d:2e:43:80:e2:14:a3:cb:db:b9:9b: fc:03:62:4b:8a:ef:b5:6f:32:11:8b:fe:b3:e4:a8: e0:d3:be:f6:f9:88:24:af:65:49:8a:70:36:20:d3: ac:6a:82:02:25:8a:d1:77:e2:ae:9f:d5:15:7d:42: 2d:f0:54:6f:3f:ce:da:00:13:32:3f:6a:63:99:64: c0:97:53:76:b1:ac:8e:e5:6e:41:10:23:58:3e:b2: 1c:b4:d7:de:92:c7:cd:4d:35:e1:5b:6b:98:c8:a4: 1f:fd:e9:ae:ca:3b:37:22:6c:5b:f1:36:4e:a3:a8: 80:67:a1:78:5a:04:a4:e1:1f:f9:be:77:9f:ff:22: cf:aa:09:7e:c7:06:82:e1:f3:6a:17:37:58:4c:87: ad:b9:30:78:51:0d:63:ff:62:39:2b:83:2e:42:df: d4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2D:41:0B:1E:3F:E7:26:D8:42:29:63:98:CA:87:00:E4:F0:B4:E1 X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0d:f7:e0:23:aa:cb:9e:e7:66:b6:30:73:e6:6c:c4:06:b5: e8:33:f2:a8:41:2d:91:2e:0d:af:98:b8:f7:22:19:66:f7:5a: 7f:56:de:19:3e:51:59:34:97:ff:cd:38:17:16:c8:e9:32:b7: 81:e1:b1:45:b6:1c:7d:25:21:1a:6c:61:93:ac:0e:ec:1a:9a: 00:0a:3b:f2:40:44:7a:07:7b:13:31:4a:1c:47:90:d6:0c:ec: a0:9f:b9:0f:d0:5d:ff:a1:e5:5a:c6:41:ac:90:a2:51:85:1a: 2b:f6:78:20:53:7e:2a:be:f2:56:d0:3a:dc:4a:a4:b9:6b:1b: 57:0e:a8:68:1d:14:11:9d:e5:5d:f1:9c:d8:42:ee:61:ce:28: 5d:cb:7e:5d:13:19:6d:5a:15:89:2a:f7:18:fe:59:cd:04:e4: 5a:f2:83:c2:11:87:7b:6e:fd:f6:d9:b4:58:fa:c3:99:2c:0a: 98:c7:60:6b:a2:72:6f:8a:9a:2e:26:ec:79:38:7f:9f:fd:02: 69:83:7e:95:67:5e:a6:71:32:c8:7a:10:4a:af:4b:f3:44:06: 1d:87:9a:de:4f:82:f3:2e:93:8e:54:05:69:e5:30:c7:32:44: 6b:30:f4:23:df:88:4f:39:e6:b2:b8:44:e6:5a:79:26:20:80: 98:a3:43:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNzA0MTcxNjIxWhcNMjUwNzExMTcxNjIxWjAYMRYwFAYD VQQDEw02ODY4MGM2NS03OWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gx9eEddL7Op/TtA9RyFbbZpRN7GebC/TqvSTLSEEnkVEYhXgBwNk1+FuJjB reFOYK4bKAKPRzVKX/wllh1H8WKBhcARhqQG0/XxuWjQYkle9iqxaIAe80uB9Ay3 fS5DgOIUo8vbuZv8A2JLiu+1bzIRi/6z5Kjg0772+Ygkr2VJinA2INOsaoICJYrR d+Kun9UVfUIt8FRvP87aABMyP2pjmWTAl1N2sayO5W5BECNYPrIctNfeksfNTTXh W2uYyKQf/emuyjs3Imxb8TZOo6iAZ6F4WgSk4R/5vnef/yLPqgl+xwaC4fNqFzdY TIetuTB4UQ1j/2I5K4MuQt/UQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgtQQse P+cm2EIpY5jKhwDk8LThMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuDffgI6rLnudmtjBz5mzEBrXoM/KoQS2RLg2vmLj3Ihlm91p/Vt4Z PlFZNJf/zTgXFsjpMreB4bFFthx9JSEabGGTrA7sGpoACjvyQER6B3sTMUocR5DW DOygn7kP0F3/oeVaxkGskKJRhRor9nggU34qvvJW0DrcSqS5axtXDqhoHRQRneVd 8ZzYQu5hzihdy35dExltWhWJKvcY/lnNBORa8oPCEYd7bv322bRY+sOZLAqYx2Br onJvipouJux5OH+f/QJpg36VZ16mcTLIehBKr0vzRAYdh5reT4LzLpOOVAVp5TDH MkRrMPQj34hPOeayuETmWnkmIICYo0PI -----END CERTIFICATE-----Generated at Sat Jul 5 14:44:20 2025 by rpki-client