$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: E2obeYcSpqh0PRANW2HJBFV8EDOFtQqRt+K7tEbh3nQ= Subject key identifier: C2:AF:69:68:9E:BD:69:C4:A2:69:8C:DC:8C:91:93:54:69:4E:00:31 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 16 Signing time: Sat 23 Aug 2025 08:15:06 +0000 Manifest this update: Sat 23 Aug 2025 08:15:05 +0000 Manifest next update: Sat 30 Aug 2025 08:15:05 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: cM0KKhchwx9wpADXwm3ztCxMO40g+bKuSz5sJ2XgQck=) 2: 7FD328F0623011F080AE2931C4F9AE02.roa (hash: ONyCk1roWHelbumh8YXUaFO1cjx4c4+1qAe3JKP89I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Aug 23 08:15:05 2025 GMT Not After : Aug 30 08:15:05 2025 GMT Subject: CN=68a97889-6fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b2:fa:10:cf:5c:ae:b0:ca:45:3f:b5:f0:cf: 60:47:c2:f6:d3:f3:84:32:f3:58:88:e2:51:05:82: 50:9e:5f:b4:bf:42:f7:58:a4:01:33:57:67:37:9a: 1c:c9:9d:02:02:06:7f:ae:3e:65:cf:e0:19:91:ca: 99:a3:34:aa:7c:f1:31:f9:3e:a4:0e:1e:5e:6c:bf: c9:72:35:cb:37:86:d4:39:84:e8:47:7c:fb:da:49: 0d:0f:4c:89:89:98:6b:c2:e4:b9:fd:0b:24:65:31: 31:42:3e:a3:a8:b9:3e:7d:fb:53:3b:a3:d0:d2:81: c5:ad:01:b6:1e:3a:66:4a:e9:7a:07:c1:13:85:f9: d4:ac:03:db:d7:93:cb:7b:1f:27:ce:2a:59:2c:9d: 74:8b:ad:d4:c2:d8:49:6e:96:eb:5f:c6:6d:7f:e1: 83:99:97:bd:95:fc:92:d2:71:e2:22:15:54:25:74: 79:88:32:20:d4:4d:f3:91:11:b6:7b:74:24:17:f4: c3:88:3f:eb:b2:70:19:42:40:b4:d1:35:eb:bb:ab: f6:f1:f0:92:8b:e7:f0:67:5d:f5:a9:7a:b5:0f:98: 27:76:7b:88:b6:f2:83:a9:fe:0a:fb:64:06:b5:87: 8b:0a:bd:c2:bd:f7:a2:db:b4:cb:c3:9c:c2:12:58: 05:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AF:69:68:9E:BD:69:C4:A2:69:8C:DC:8C:91:93:54:69:4E:00:31 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3d:fa:4a:5e:b8:74:9d:c5:35:12:40:90:cf:46:a6:71:09: 32:43:26:8c:e6:90:83:05:59:ec:59:88:2b:7b:b8:6e:49:f9: c6:d7:e0:00:e4:53:6f:2e:1d:a8:31:2e:b5:d6:61:6e:d8:4d: f0:f3:c3:6b:1d:53:7c:6f:3b:fa:e0:e9:72:8f:18:bf:6a:fa: 10:0b:a0:16:6b:05:1d:de:79:cc:83:50:c5:89:ff:28:ea:55: d0:29:f1:04:d7:9c:c0:4d:a3:5b:93:0e:03:02:2c:59:48:e6: 4a:48:8c:c4:ea:2d:32:2b:6d:2b:6a:59:e0:0a:88:41:89:e8: cb:0d:fe:79:e7:27:34:d3:c0:b5:09:c0:88:31:45:a9:b9:f0: 66:1e:92:8d:25:f4:02:bc:b4:28:f7:df:c1:70:65:0c:c3:72: 72:f5:22:d0:4d:78:51:a3:39:8e:28:fd:76:69:ff:f7:da:f6: f3:56:14:74:6e:33:96:da:4e:7a:f5:2e:50:38:c0:43:98:01: 47:af:fa:76:99:43:f6:1c:3b:1f:80:4d:11:e2:69:47:2b:b4: 1a:cb:85:c8:d1:fb:d4:3e:d0:db:d6:22:99:98:53:27:b5:2e: 48:48:ae:5d:5d:1b:10:4e:0f:05:15:f6:ea:81:19:28:80:43: 85:98:16:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNTA4MjMwODE1MDVaFw0yNTA4MzAwODE1MDVaMBgxFjAUBgNV BAMTDTY4YTk3ODg5LTZmYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbsvoQz1yusMpFP7Xwz2BHwvbT84Qy81iI4lEFglCeX7S/QvdYpAEzV2c3mhzJ nQICBn+uPmXP4BmRypmjNKp88TH5PqQOHl5sv8lyNcs3htQ5hOhHfPvaSQ0PTImJ mGvC5Ln9CyRlMTFCPqOouT59+1M7o9DSgcWtAbYeOmZK6XoHwROF+dSsA9vXk8t7 HyfOKlksnXSLrdTC2Elulutfxm1/4YOZl72V/JLSceIiFVQldHmIMiDUTfOREbZ7 dCQX9MOIP+uycBlCQLTRNeu7q/bx8JKL5/BnXfWperUPmCd2e4i28oOp/gr7ZAa1 h4sKvcK996LbtMvDnMISWAVBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwq9paJ69 acSiaYzcjJGTVGlOADEwHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABM9+kpeuHSdxTUSQJDPRqZxCTJDJozmkIMFWexZiCt7uG5J+cbX4ADk U28uHagxLrXWYW7YTfDzw2sdU3xvO/rg6XKPGL9q+hALoBZrBR3eecyDUMWJ/yjq VdAp8QTXnMBNo1uTDgMCLFlI5kpIjMTqLTIrbStqWeAKiEGJ6MsN/nnnJzTTwLUJ wIgxRam58GYeko0l9AK8tCj338FwZQzDcnL1ItBNeFGjOY4o/XZp//fa9vNWFHRu M5baTnr1LlA4wEOYAUev+naZQ/YcOx+ATRHiaUcrtBrLhcjR+9Q+0NvWIpmYUye1 LkhIrl1dGxBODwUV9uqBGSiAQ4WYFiU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:06 2025 by rpki-client