$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: +zG6miiBuUkwWV3l/Pkn55TA7V08f5DGmqLw90J/MSA= Subject key identifier: CB:E8:BA:00:BD:02:52:A5:CC:B0:AE:E7:F3:E3:13:8C:10:78:B2:85 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13A1 Signing time: Fri 22 Aug 2025 17:06:01 +0000 Manifest this update: Fri 22 Aug 2025 17:06:00 +0000 Manifest next update: Fri 29 Aug 2025 17:06:00 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: 5Qt7drFsEeUTQOAstq7tr8iYZ7tIl01LBgom5Qs6Mkg=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Aug 22 17:06:00 2025 GMT Not After : Aug 29 17:06:00 2025 GMT Subject: CN=68a8a379-a340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bb:2d:30:14:44:06:f5:51:4b:2d:d4:b4:10: bc:25:6e:36:c7:40:ba:0b:8d:8d:e4:3d:14:cf:5a: c6:f6:9d:4c:0f:55:63:70:bc:71:43:7c:60:73:81: ad:5e:d3:fc:0f:b3:4a:07:63:6d:a4:a7:a0:85:22: 80:e3:80:33:98:59:ea:6c:f6:37:11:c1:e6:1c:a0: 11:15:a4:d7:fb:22:9b:92:a6:99:7b:d2:c2:bd:34: 9a:34:d1:cf:42:71:04:90:19:f9:45:3f:1e:6f:05: 63:ca:bf:14:c2:2d:b4:3d:b8:c8:d0:e8:54:8c:3d: 09:b6:73:73:ea:77:43:80:d7:9c:89:6e:2a:ff:52: 5d:cb:90:52:74:42:e0:ae:d5:10:de:f9:b9:af:1d: 8a:4d:45:1d:42:21:98:81:b5:c9:d3:9a:6f:2a:7a: bb:40:e5:68:07:e2:09:6b:2b:d7:d3:ab:3c:40:1b: bb:82:b3:4d:ed:22:8c:55:3b:cc:0a:0e:fd:3a:f0: 81:04:4f:fa:42:2e:0d:eb:d3:66:36:32:74:19:b1: c5:94:dc:b3:df:fa:62:56:bc:fc:24:19:45:3b:b0: 8b:38:92:33:78:d4:38:c9:d1:09:ef:28:60:bd:d1: eb:0b:b5:4f:6b:89:64:f2:8e:77:71:dc:36:84:b0: 96:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E8:BA:00:BD:02:52:A5:CC:B0:AE:E7:F3:E3:13:8C:10:78:B2:85 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:fe:1d:b2:7a:8f:bc:da:8b:82:8d:e3:2c:57:74:c2:9f:b3: 59:8f:85:68:5a:6f:13:b8:cb:6f:63:52:07:67:0b:25:db:25: 61:05:5c:d7:ae:60:63:56:90:ac:d2:e1:6d:d6:19:88:4d:d6: 07:4c:cc:14:5b:8c:29:61:d0:c2:7a:37:c1:e6:cf:4c:57:ea: da:77:3c:ca:f0:4a:cb:08:e8:1f:35:d9:80:7c:d9:05:80:42: 3f:9d:9c:3a:8e:10:ae:ce:b1:dd:7b:5f:05:7b:34:87:c4:1b: d6:27:3d:33:d4:18:34:c5:80:67:d1:c0:6a:80:a3:0b:d3:99: 49:1e:33:1f:0f:ea:2a:df:ba:e3:5b:32:6c:94:ec:fe:81:1a: 3d:58:05:77:c4:84:80:6a:1f:13:39:08:c7:f2:a1:3a:f0:44: c7:a1:2a:1a:79:98:68:12:67:b7:eb:40:fa:e6:cc:63:58:12: 84:35:93:7e:09:8a:38:a1:f1:8f:5d:0e:bb:9f:1b:b3:53:5c: df:c2:ca:e0:17:df:01:9e:cd:18:ad:58:31:bb:9f:bc:3d:dd: 33:5f:03:1e:09:b1:e3:9d:63:8f:3c:a1:51:4a:2e:47:ff:bb: b1:c7:08:11:26:1b:9e:19:3a:16:c2:d6:55:ed:83:e7:6c:7c: 63:32:5e:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwODIyMTcwNjAwWhcNMjUwODI5MTcwNjAwWjAYMRYwFAYD VQQDEw02OGE4YTM3OS1hMzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87stMBREBvVRSy3UtBC8JW42x0C6C42N5D0Uz1rG9p1MD1VjcLxxQ3xgc4Gt XtP8D7NKB2NtpKeghSKA44AzmFnqbPY3EcHmHKARFaTX+yKbkqaZe9LCvTSaNNHP QnEEkBn5RT8ebwVjyr8Uwi20PbjI0OhUjD0JtnNz6ndDgNeciW4q/1Jdy5BSdELg rtUQ3vm5rx2KTUUdQiGYgbXJ05pvKnq7QOVoB+IJayvX06s8QBu7grNN7SKMVTvM Cg79OvCBBE/6Qi4N69NmNjJ0GbHFlNyz3/piVrz8JBlFO7CLOJIzeNQ4ydEJ7yhg vdHrC7VPa4lk8o53cdw2hLCWlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvougC9 AlKlzLCu5/PjE4wQeLKFMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR/h2yeo+82ouCjeMsV3TCn7NZj4VoWm8TuMtvY1IHZwsl2yVhBVzX rmBjVpCs0uFt1hmITdYHTMwUW4wpYdDCejfB5s9MV+radzzK8ErLCOgfNdmAfNkF gEI/nZw6jhCuzrHde18FezSHxBvWJz0z1Bg0xYBn0cBqgKML05lJHjMfD+oq37rj WzJslOz+gRo9WAV3xISAah8TOQjH8qE68ETHoSoaeZhoEme360D65sxjWBKENZN+ CYo4ofGPXQ67nxuzU1zfwsrgF98Bns0YrVgxu5+8Pd0zXwMeCbHjnWOPPKFRSi5H /7uxxwgRJhueGToWwtZV7YPnbHxjMl4x -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:47 2025 by rpki-client