$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: fijO1vitQnvjKQ9JeH9s3+MmAFk9VvntVpuhnsQRpNU= Subject key identifier: 62:D5:92:6B:D1:E6:30:5C:FF:7D:EC:B2:82:06:B5:A8:28:53:62:25 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 78 Signing time: Thu 03 Jul 2025 07:00:30 +0000 Manifest this update: Thu 03 Jul 2025 07:00:30 +0000 Manifest next update: Thu 10 Jul 2025 07:00:30 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: sQrQ1nJnBQJDQaZuGmonHv3YUx8LZ5IyApRXtR5U1SE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Jul 3 07:00:30 2025 GMT Not After : Jul 10 07:00:30 2025 GMT Subject: CN=68662a8e-b6ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e7:d2:83:ba:b0:62:7b:9b:ab:48:8b:9e:21: 0e:0f:10:1b:38:1d:48:91:49:5e:dc:55:14:25:8c: 37:64:64:82:a6:f1:ca:aa:dd:b9:82:94:da:f0:2a: 2c:e2:96:33:74:4a:7a:80:de:9b:e5:fc:61:f7:0e: 78:7d:a0:cf:37:07:c1:cc:ba:de:e1:31:c1:43:20: 6c:76:a9:31:d9:dd:9e:c4:0b:cf:84:db:23:91:79: 08:8f:b1:ca:c5:79:c1:6a:1d:d5:c5:eb:95:44:d3: 27:41:ac:30:26:cd:9b:31:ec:09:27:1e:42:af:02: 5e:ee:73:29:9b:b7:db:c7:a2:f9:37:14:b3:cb:ce: e7:e8:76:b4:f7:2c:5c:63:2d:d7:70:76:24:86:84: 86:bb:1f:d9:54:56:b5:ff:f8:de:1f:9a:a6:be:81: 00:33:60:fd:0e:13:6a:66:00:20:cb:b2:43:ec:b8: 09:b8:fc:e1:e2:ec:a3:a7:b5:81:cd:c5:e3:e5:48: 5f:2a:69:5b:ef:66:57:88:c0:1b:7c:15:d9:19:fd: fd:5c:f8:78:03:97:65:ab:41:cf:16:55:07:dc:5b: 33:17:d9:41:a5:36:55:69:cd:6b:04:bf:df:88:a4: 0b:46:dd:f6:f7:74:f0:fc:61:1b:b2:be:f5:5c:92: 13:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D5:92:6B:D1:E6:30:5C:FF:7D:EC:B2:82:06:B5:A8:28:53:62:25 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:0b:09:b6:ea:1f:1a:1e:23:95:ee:d3:38:f4:71:cb:87:21: a0:c1:0a:fd:49:a8:74:b0:3a:af:7e:91:46:69:62:6d:80:c8: 15:6f:5c:d1:d0:27:4e:70:da:3e:4c:09:27:cc:64:03:c7:44: 49:4b:40:c7:e7:e4:58:6e:6b:3c:d0:03:82:cb:19:21:db:91: 74:3d:09:51:61:b4:da:a0:92:8e:84:13:72:af:3b:2e:e3:69: 05:34:22:55:49:94:73:24:f8:1c:ed:61:30:9d:62:0f:6d:c2: 0c:63:b4:c1:c5:38:f1:4e:21:47:35:45:e0:87:60:d8:17:b1: bf:9d:98:03:ce:ce:06:96:10:97:63:3a:d7:19:e3:67:6b:86: ff:42:1e:6f:1c:46:40:d2:35:e3:06:f9:eb:9d:fb:af:fa:c1: 75:5d:69:1f:74:ad:61:b0:45:11:8d:46:76:31:1a:ec:d8:4c: 02:90:0e:a3:98:61:c2:86:af:27:3d:43:7d:77:c2:21:a7:ee: 61:18:f3:c8:32:6f:66:ac:d7:3b:66:6d:d9:a9:40:42:cd:b7: c3:d2:f5:4e:6a:d0:a6:7d:2e:2e:93:b5:21:f3:cd:9e:fc:d0: 7f:4e:cc:cf:b9:cb:78:e7:9a:51:7a:c1:8f:d5:d9:b8:e9:6b: cc:56:ac:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUEzRjExMC8GA1UEBRMoODZBNjRGMkFEMkRERTJCN0Q5NjI0RTY5MjI3QUQwOUIx Nzc4QzZDMTAeFw0yNTA3MDMwNzAwMzBaFw0yNTA3MTAwNzAwMzBaMBgxFjAUBgNV BAMTDTY4NjYyYThlLWI2YWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS59KDurBie5urSIueIQ4PEBs4HUiRSV7cVRQljDdkZIKm8cqq3bmClNrwKizi ljN0SnqA3pvl/GH3Dnh9oM83B8HMut7hMcFDIGx2qTHZ3Z7EC8+E2yOReQiPscrF ecFqHdXF65VE0ydBrDAmzZsx7AknHkKvAl7ucymbt9vHovk3FLPLzufodrT3LFxj LddwdiSGhIa7H9lUVrX/+N4fmqa+gQAzYP0OE2pmACDLskPsuAm4/OHi7KOntYHN xePlSF8qaVvvZleIwBt8FdkZ/f1c+HgDl2WrQc8WVQfcWzMX2UGlNlVpzWsEv9+I pAtG3fb3dPD8YRuyvvVckhP1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYtWSa9Hm MFz/feyygga1qChTYiUwHwYDVR0jBBgwFoAUhqZPKtLd4rfZYk5pInrQmxd4xsEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QTNGLzlCMjc1NEY2QTI0 RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHFaUEt0TGQ0cmZaWWs1cEluclFteGQ0eHNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 QTNGLzlCMjc1NEY2QTI0RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJm WllrNXBJbnJRbXhkNHhzRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIQLCbbqHxoeI5Xu0zj0ccuHIaDBCv1JqHSwOq9+kUZpYm2AyBVvXNHQ J05w2j5MCSfMZAPHRElLQMfn5FhuazzQA4LLGSHbkXQ9CVFhtNqgko6EE3KvOy7j aQU0IlVJlHMk+BztYTCdYg9twgxjtMHFOPFOIUc1ReCHYNgXsb+dmAPOzgaWEJdj OtcZ42drhv9CHm8cRkDSNeMG+eud+6/6wXVdaR90rWGwRRGNRnYxGuzYTAKQDqOY YcKGryc9Q313wiGn7mEY88gyb2as1ztmbdmpQELNt8PS9U5q0KZ9Li6TtSHzzZ78 0H9OzM+5y3jnmlF6wY/V2bjpa8xWrL0= -----END CERTIFICATE-----Generated at Thu Jul 3 23:22:43 2025 by rpki-client