$ rpki-client -vvf rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft File: HSQuN7enRsN-RUFFarAJiztXPPw.mft (raw, json) Hash identifier: 0UNFBybD/PZnICDZgtOECHx+iMzGOluXZz9aayaDq68= Subject key identifier: 2B:93:5E:3F:8A:10:AF:D2:C8:BC:CC:32:88:F6:CE:F1:4F:16:EF:8A Authority key identifier: 1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC Certificate issuer: /CN=A9142EA4/serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft Manifest number: 16 Signing time: Sat 23 Aug 2025 08:15:46 +0000 Manifest this update: Sat 23 Aug 2025 08:15:46 +0000 Manifest next update: Sat 30 Aug 2025 08:15:46 +0000 Files and hashes: 1: HSQuN7enRsN-RUFFarAJiztXPPw.crl (hash: IlV0es9omRLef4UFdHECmxdacmk32T/lhlzC7IFVx4Q=) 2: 96E040E063B211F09B18DA38C4F9AE02.roa (hash: RBJCVf8Vhn27huQa1u7FR3jz192DVTd/ur20Jj+Crn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142EA4, serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Validity Not Before: Aug 23 08:15:46 2025 GMT Not After : Aug 30 08:15:46 2025 GMT Subject: CN=68a978b2-a1ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:05:83:e9:a7:cc:17:7d:c4:a3:53:7d:80: 0f:83:d5:65:99:0e:29:42:35:93:23:f8:04:07:0b: f5:36:c3:1e:06:ff:e5:fe:bf:98:7d:2d:83:26:d1: 5d:af:70:26:38:9d:7b:87:8f:39:a0:9f:01:c1:6d: 66:cb:94:27:21:43:57:dc:10:52:45:04:32:3e:82: 48:9f:de:c5:4a:af:1f:dd:37:b1:1a:af:1f:6c:05: 58:1a:fd:d2:a3:02:63:83:fa:18:50:60:d5:40:37: 68:3a:b4:fc:53:02:35:05:71:52:58:99:0b:f0:9a: 37:98:fe:2c:3e:8b:a3:56:bf:45:be:6a:70:4a:2e: 82:35:3b:07:00:0d:8a:87:7d:e6:6f:09:9a:19:90: 96:f1:b6:c9:0a:86:d5:1e:76:57:df:a0:4a:9e:00: 92:7a:df:f9:d0:59:3a:82:fa:73:1a:29:92:18:9a: 70:b9:aa:a0:02:6d:12:25:cc:cd:35:46:78:76:81: 51:5f:e3:3e:c1:4c:ae:2e:16:3c:66:4f:4f:77:b5: 56:ac:d3:5d:44:5c:e5:c3:88:c7:4f:b2:56:8a:d2: 4d:66:d5:50:aa:11:1a:1b:ff:04:48:ab:02:e3:fb: 16:ef:f1:3f:4c:cc:da:19:ca:2c:a5:04:ae:d0:95: 0c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:93:5E:3F:8A:10:AF:D2:C8:BC:CC:32:88:F6:CE:F1:4F:16:EF:8A X509v3 Authority Key Identifier: keyid:1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:ef:86:84:63:ae:48:94:0c:0e:0c:15:f3:12:ac:de:6d:14: 35:1a:b0:19:de:79:05:5c:aa:80:d8:d6:bd:96:66:ce:b6:78: 83:91:a1:85:25:53:81:78:62:00:6d:ac:31:53:e4:45:1d:1d: 3e:07:0c:e9:7a:0d:5c:83:b7:77:b8:6d:ef:15:44:68:b1:27: 7a:1e:d3:79:6a:95:83:c1:49:57:cf:f0:49:55:91:fb:d8:fc: ea:3b:62:a5:a0:e4:7b:62:f0:93:03:76:5e:09:cd:90:ef:f9: 9a:1c:78:68:1a:59:e2:37:4d:f4:79:68:60:17:60:12:e8:c8: ed:2e:52:aa:ad:95:fa:78:3f:b7:74:c1:3c:67:37:fb:99:a9: c7:df:8d:82:f7:75:23:99:ab:a5:1f:88:29:03:40:51:2a:1b: 41:19:fa:e4:3a:aa:63:31:fe:b4:0b:be:4e:25:51:e4:61:6e: 1d:1e:67:fe:a1:eb:a2:50:40:fd:00:9f:2a:46:29:6b:75:89: 50:d9:47:cb:f4:fd:81:1a:f6:f6:75:93:74:ec:41:5f:57:a9: 32:e5:83:bd:90:82:42:34:17:79:fe:22:70:46:6e:48:c8:d7: 69:e3:ae:78:de:64:78:65:a4:99:87:cb:96:07:a4:3b:06:e0: 99:05:f1:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkVBNDExMC8GA1UEBRMoMUQyNDJFMzdCN0E3NDZDMzdFNDU0MTQ1NkFCMDA5OEIz QjU3M0NGQzAeFw0yNTA4MjMwODE1NDZaFw0yNTA4MzAwODE1NDZaMBgxFjAUBgNV BAMTDTY4YTk3OGIyLWExZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi9AWD6afMF33Eo1N9gA+D1WWZDilCNZMj+AQHC/U2wx4G/+X+v5h9LYMm0V2v cCY4nXuHjzmgnwHBbWbLlCchQ1fcEFJFBDI+gkif3sVKrx/dN7Earx9sBVga/dKj AmOD+hhQYNVAN2g6tPxTAjUFcVJYmQvwmjeY/iw+i6NWv0W+anBKLoI1OwcADYqH feZvCZoZkJbxtskKhtUedlffoEqeAJJ63/nQWTqC+nMaKZIYmnC5qqACbRIlzM01 Rnh2gVFf4z7BTK4uFjxmT093tVas011EXOXDiMdPslaK0k1m1VCqERob/wRIqwLj +xbv8T9MzNoZyiylBK7QlQxTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK5NeP4oQ r9LIvMwyiPbO8U8W74owHwYDVR0jBBgwFoAUHSQuN7enRsN+RUFFarAJiztXPPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRUE0LzI2NERDRjFDNjNB RjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNOLVJVRkZhckFKaXp0WFBQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFNRdU43ZW5Sc04tUlVGRmFyQUppenRYUFB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RUE0LzI2NERDRjFDNjNBRjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNO LVJVRkZhckFKaXp0WFBQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrvhoRjrkiUDA4MFfMSrN5tFDUasBneeQVcqoDY1r2WZs62eIORoYUl U4F4YgBtrDFT5EUdHT4HDOl6DVyDt3e4be8VRGixJ3oe03lqlYPBSVfP8ElVkfvY /Oo7YqWg5Hti8JMDdl4JzZDv+ZoceGgaWeI3TfR5aGAXYBLoyO0uUqqtlfp4P7d0 wTxnN/uZqcffjYL3dSOZq6UfiCkDQFEqG0EZ+uQ6qmMx/rQLvk4lUeRhbh0eZ/6h 66JQQP0AnypGKWt1iVDZR8v0/YEa9vZ1k3TsQV9XqTLlg72QgkI0F3n+InBGbkjI 12njrnjeZHhlpJmHy5YHpDsG4JkF8TQ= -----END CERTIFICATE-----Generated at Sat Aug 23 22:20:14 2025 by rpki-client