$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: 9lvAAjdewb9kwDk/cYqBJEuwKnKAILDKMIussYlEoqM= Subject key identifier: 49:D0:B4:16:98:27:EC:32:4B:DB:A1:6E:9C:E5:CB:9B:EA:13:1F:E6 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 92 Signing time: Sat 23 Aug 2025 06:41:50 +0000 Manifest this update: Sat 23 Aug 2025 06:41:50 +0000 Manifest next update: Sat 30 Aug 2025 06:41:50 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: eL+K6bIgoqCq1MjD63QUj0Z4tMPlms2Wu4NFDDDD3Js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Aug 23 06:41:50 2025 GMT Not After : Aug 30 06:41:50 2025 GMT Subject: CN=68a962ae-efc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:02:2b:76:60:b3:31:41:b6:96:9d:87:ee:06: 61:d6:08:3e:90:5b:8f:e7:e3:d8:a8:64:8c:db:92: cc:0d:44:38:67:91:3e:01:c3:6a:12:a4:12:8b:5a: ee:49:71:56:f7:08:14:1c:1c:1c:66:29:a4:07:5f: 10:69:5b:ff:21:5c:db:70:f5:ce:d8:4e:4f:9e:2c: 29:c9:97:56:e7:5d:47:3b:fd:46:53:a7:44:43:a4: a1:58:01:63:31:56:57:49:d5:5c:8d:3b:b0:ba:d0: 7a:40:84:81:6e:d6:93:70:7a:4f:bc:8a:a5:c5:2d: 2c:54:1a:cf:cd:63:40:7e:9d:93:58:b0:c4:a4:8a: 2f:0d:40:9f:7c:9c:94:1d:cd:27:1d:b6:eb:17:16: b7:e7:9a:b9:de:d4:6a:0d:52:50:55:16:45:d6:ba: ab:62:97:fa:a0:68:8a:de:b8:fb:86:75:32:a2:43: f1:82:9a:84:6b:97:47:22:1e:f6:a0:45:05:03:0c: 64:49:3e:05:86:c9:51:07:3c:76:be:d7:90:57:09: 54:16:cb:99:c7:15:58:39:3f:35:00:64:84:56:fe: e6:5b:07:23:ad:b6:b9:e9:9c:85:ab:d8:1b:be:01: b1:2a:6f:93:bd:27:86:68:1f:03:d9:a6:c2:2d:55: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D0:B4:16:98:27:EC:32:4B:DB:A1:6E:9C:E5:CB:9B:EA:13:1F:E6 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6d:35:bb:f9:58:dd:84:87:1b:7b:ec:61:2f:a6:00:82:e6: a7:72:f0:cf:4e:ac:47:fa:c2:e8:3f:a4:da:65:4a:a8:ee:25: 0e:61:c3:71:85:a7:32:d0:5e:6d:10:28:64:c1:1c:93:93:ce: 51:e9:0f:bf:ae:7b:5e:d1:29:a8:c9:86:72:7f:c1:ab:e8:a9: a1:ce:a6:76:8d:45:12:04:7a:a0:d8:2d:48:c6:c8:34:4d:9f: ef:5c:1d:d7:cc:16:38:5c:0c:26:39:d8:18:a6:e1:e6:31:ae: ab:49:46:76:e2:27:b1:b9:26:ea:40:ce:06:61:a7:ae:f5:4c: 07:6b:62:11:26:37:13:81:64:cb:57:17:0f:cc:25:88:b7:08: b7:3a:9b:8a:18:27:07:0f:36:86:18:0d:40:54:8b:91:4b:95: ef:29:27:03:97:f5:fb:46:4f:ec:d3:09:69:91:79:c8:4d:ec: 02:d6:8c:ea:b8:b9:51:3a:f3:2d:e0:fc:11:65:9b:6d:d1:68: 12:e0:67:97:d2:07:cf:22:dc:c5:2f:c1:ee:f6:56:65:88:95: 9e:d3:1a:67:66:a3:c2:17:b3:95:a7:24:1e:c5:3f:43:6c:7f: b5:4b:2d:b5:0e:fb:b1:64:1c:fb:15:3f:48:a7:df:65:57:c3: 63:07:20:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUwODIzMDY0MTUwWhcNMjUwODMwMDY0MTUwWjAYMRYwFAYD VQQDEw02OGE5NjJhZS1lZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywIrdmCzMUG2lp2H7gZh1gg+kFuP5+PYqGSM25LMDUQ4Z5E+AcNqEqQSi1ru SXFW9wgUHBwcZimkB18QaVv/IVzbcPXO2E5PniwpyZdW511HO/1GU6dEQ6ShWAFj MVZXSdVcjTuwutB6QISBbtaTcHpPvIqlxS0sVBrPzWNAfp2TWLDEpIovDUCffJyU Hc0nHbbrFxa355q53tRqDVJQVRZF1rqrYpf6oGiK3rj7hnUyokPxgpqEa5dHIh72 oEUFAwxkST4FhslRBzx2vteQVwlUFsuZxxVYOT81AGSEVv7mWwcjrba56ZyFq9gb vgGxKm+TvSeGaB8D2abCLVULAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnQtBaY J+wyS9uhbpzly5vqEx/mMB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXbTW7+VjdhIcbe+xhL6YAguancvDPTqxH+sLoP6TaZUqo7iUOYcNx hacy0F5tEChkwRyTk85R6Q+/rnte0SmoyYZyf8Gr6KmhzqZ2jUUSBHqg2C1Ixsg0 TZ/vXB3XzBY4XAwmOdgYpuHmMa6rSUZ24iexuSbqQM4GYaeu9UwHa2IRJjcTgWTL VxcPzCWItwi3OpuKGCcHDzaGGA1AVIuRS5XvKScDl/X7Rk/s0wlpkXnITewC1ozq uLlROvMt4PwRZZtt0WgS4GeX0gfPItzFL8Hu9lZliJWe0xpnZqPCF7OVpyQexT9D bH+1Sy21DvuxZBz7FT9Ip99lV8NjByBA -----END CERTIFICATE-----Generated at Sat Aug 23 10:38:10 2025 by rpki-client