$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: 7NPW32kvKW8Lice++SNw5eW4ZDXU/TeHbDHu1CWgQac= Subject key identifier: 8D:16:66:D9:98:9B:C3:54:6E:63:61:B3:7D:6F:30:73:A2:BC:8C:78 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 139B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 1387 Signing time: Wed 02 Jul 2025 17:10:23 +0000 Manifest this update: Wed 02 Jul 2025 17:10:22 +0000 Manifest next update: Wed 09 Jul 2025 17:10:22 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: FyUySjs4BW5Px8SM6a7SwBhKhYjCslqHSSTHmoJsiwI=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5019 (0x139b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Jul 2 17:10:22 2025 GMT Not After : Jul 9 17:10:22 2025 GMT Subject: CN=686567ff-16ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e4:42:d1:73:00:06:f3:02:c5:6a:e1:8b:d6: bc:00:37:07:0c:2f:0a:67:50:14:62:c2:61:ed:8d: b2:ff:c0:32:1f:27:8c:62:88:82:31:75:ca:43:9b: 9d:f1:87:07:d7:21:44:9f:32:22:5f:53:2e:31:05: fb:20:ea:3a:dd:7b:55:65:b5:b9:13:41:56:20:3e: 3c:2a:3c:44:c2:b4:5a:21:a3:92:ec:f3:7e:f8:82: a0:ff:c1:ef:1b:87:0d:fc:b6:fb:07:0a:dc:42:27: 79:4f:29:ba:38:60:54:87:63:9b:1d:d2:d1:54:70: 10:ff:bd:ec:85:f8:80:ab:3d:63:5b:c5:f6:4d:e3: b4:ea:35:98:26:cb:0d:a0:f6:89:7c:b4:6a:95:34: 50:85:f6:08:df:a1:c6:d6:6c:13:5c:b8:0a:87:2b: 34:66:1a:c2:1a:c7:66:05:df:0d:a8:87:e3:ea:cf: 26:b9:e1:df:ae:00:dd:c1:c5:34:20:03:d7:7d:b4: 1a:16:6e:b5:18:c0:a3:72:6f:db:c4:1d:79:b7:0a: c0:f7:80:da:5f:76:14:6f:5a:55:03:60:4e:17:90: 54:de:f3:b2:cb:37:c6:48:50:76:60:45:d7:5d:30: ef:2b:f2:cd:5a:9f:da:d8:e1:9b:6f:f2:87:67:a7: b4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:16:66:D9:98:9B:C3:54:6E:63:61:B3:7D:6F:30:73:A2:BC:8C:78 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:cc:35:44:3a:01:e4:23:6b:bb:1f:79:b4:b5:85:87:cd:56: bd:aa:4e:b1:2f:e0:60:1b:dc:8b:21:9a:3c:d5:1d:b4:e1:b8: 86:2d:38:7d:86:ff:d1:4f:ad:86:64:bb:43:5d:d8:24:ab:3a: bc:db:8c:eb:09:a9:e3:7c:13:93:56:05:cb:90:aa:69:47:d2: a6:4f:8f:a0:2c:cc:b6:b7:26:4d:5f:99:e5:dd:30:19:f3:04: 14:45:ba:1e:08:1b:2c:b2:51:3b:12:bb:2f:72:03:39:70:f9: 89:0c:72:b6:55:a4:ef:b5:ec:e8:45:1b:8f:cf:8e:20:49:91: bd:4a:bc:5b:9a:20:40:c6:07:7d:1c:e1:32:d1:e7:ad:cf:25: 3e:18:17:a7:86:05:cf:9b:dc:19:7d:16:e1:b1:2d:cd:cc:7f: 70:c4:09:7a:1c:b4:95:d9:4c:8d:cb:fe:f4:8a:05:de:84:bf: 3d:c6:50:5e:43:77:b1:e1:9f:c8:f4:63:7b:c7:73:fc:40:13: a6:27:16:c3:3e:b2:a0:ef:7f:e3:20:61:d9:7a:56:99:c9:30: 3f:cb:26:d8:c1:ef:c3:10:2b:0b:24:ea:71:c4:8d:8f:51:6f: 85:5f:ad:dd:57:80:7a:4e:03:66:5f:79:2d:2e:d4:b2:9b:e3: ec:a3:59:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwNzAyMTcxMDIyWhcNMjUwNzA5MTcxMDIyWjAYMRYwFAYD VQQDEw02ODY1NjdmZi0xNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+RC0XMABvMCxWrhi9a8ADcHDC8KZ1AUYsJh7Y2y/8AyHyeMYoiCMXXKQ5ud 8YcH1yFEnzIiX1MuMQX7IOo63XtVZbW5E0FWID48KjxEwrRaIaOS7PN++IKg/8Hv G4cN/Lb7BwrcQid5Tym6OGBUh2ObHdLRVHAQ/73shfiAqz1jW8X2TeO06jWYJssN oPaJfLRqlTRQhfYI36HG1mwTXLgKhys0ZhrCGsdmBd8NqIfj6s8mueHfrgDdwcU0 IAPXfbQaFm61GMCjcm/bxB15twrA94DaX3YUb1pVA2BOF5BU3vOyyzfGSFB2YEXX XTDvK/LNWp/a2OGbb/KHZ6e00wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0WZtmY m8NUbmNhs31vMHOivIx4MB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1zDVEOgHkI2u7H3m0tYWHzVa9qk6xL+BgG9yLIZo81R204biGLTh9 hv/RT62GZLtDXdgkqzq824zrCanjfBOTVgXLkKppR9KmT4+gLMy2tyZNX5nl3TAZ 8wQURboeCBssslE7ErsvcgM5cPmJDHK2VaTvtezoRRuPz44gSZG9SrxbmiBAxgd9 HOEy0eetzyU+GBenhgXPm9wZfRbhsS3NzH9wxAl6HLSV2UyNy/70igXehL89xlBe Q3ex4Z/I9GN7x3P8QBOmJxbDPrKg73/jIGHZelaZyTA/yybYwe/DECsLJOpxxI2P UW+FX63dV4B6TgNmX3ktLtSym+Pso1kA -----END CERTIFICATE-----Generated at Thu Jul 3 10:35:24 2025 by rpki-client