$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: jNLS/zi36cTM6Uu9vWEyIH0K4tgg4BEEr3G5HTSsN6I= Subject key identifier: B0:21:0A:D5:FA:B4:63:17:64:F1:46:AA:5D:40:4C:B0:5E:BC:A6:A4 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 39 Signing time: Tue 01 Jul 2025 08:22:00 +0000 Manifest this update: Tue 01 Jul 2025 08:21:59 +0000 Manifest next update: Tue 08 Jul 2025 08:21:59 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: nMlNg1UYqJzfvJcF8cjDOAj42uJgCQxK4hZkA5r+nGE=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Jul 1 08:21:59 2025 GMT Not After : Jul 8 08:21:59 2025 GMT Subject: CN=68639aa8-eb5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:66:04:66:29:3b:97:67:c4:06:14:5e:1b:d1: 54:cb:43:77:e9:39:94:e8:ab:98:8e:73:56:35:94: 68:7a:1c:77:e8:7f:48:55:ad:01:bc:8a:2d:86:e5: 10:bc:a7:32:c1:07:d9:89:23:dc:42:08:a1:48:35: 77:9b:dd:6d:a5:f9:dc:93:c2:f6:01:71:01:16:bb: 0a:6c:f3:83:e4:cd:fc:31:f0:be:96:51:48:6d:7b: f2:83:71:d4:5b:51:5f:e5:af:91:86:59:a5:bd:d4: a9:9b:83:9e:5d:2c:99:bb:31:5b:9c:c1:b1:91:99: 8c:5e:96:db:98:f2:62:71:7d:20:56:2f:86:86:8b: 32:45:cd:eb:0b:f7:af:46:dc:51:81:4c:83:b6:ad: eb:b9:93:42:3c:60:91:ff:24:28:7a:de:a2:ae:e7: b1:56:55:3b:24:15:30:86:45:17:70:22:57:9a:60: 36:5c:6d:af:e2:11:c7:32:ae:bc:1a:d0:fe:df:60: b0:1b:0b:ee:0a:62:7b:d6:ef:39:81:95:21:19:6a: 19:f9:1a:76:3b:d6:74:e3:3d:cc:7f:fb:d3:ed:8a: f9:67:82:06:0a:98:24:d5:ed:8c:b2:76:4e:f1:b9: f3:d0:0e:f5:be:b3:f4:b1:e0:48:ab:2a:10:d7:0e: 5a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:21:0A:D5:FA:B4:63:17:64:F1:46:AA:5D:40:4C:B0:5E:BC:A6:A4 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1a:3c:37:b6:80:c4:98:20:db:3e:3b:23:25:94:3d:17:00: 6f:8c:ba:17:58:9a:eb:d1:43:15:5b:77:cc:40:15:97:fc:c1: 91:38:aa:f1:63:41:b5:c6:75:99:e7:bb:4d:ad:d0:d2:b3:94: 5f:1f:61:d5:01:94:5c:71:58:f2:c8:82:8b:ce:fe:db:62:15: 93:17:4d:ef:59:82:56:f7:4a:1b:d7:4f:ae:56:52:bb:15:97: ce:4c:4a:a0:bf:93:fb:a3:e9:d9:8e:03:5c:ac:83:b1:35:fa: 4c:a4:3b:88:20:57:01:1a:b7:0f:38:d5:54:ff:e2:1c:31:2a: 45:10:37:92:e4:bf:3b:42:9d:6f:b7:38:15:66:7b:c8:8d:75: 72:fd:df:bd:14:84:38:11:c8:22:d9:d0:50:d9:37:03:d1:39: 27:84:f6:05:3c:c5:3a:a5:65:8c:8b:dd:f5:fe:df:46:64:2f: a7:36:81:67:6e:40:a9:d0:42:ee:2f:d4:9e:40:2e:96:e4:c8: 7a:55:a9:16:75:98:8a:02:bd:7d:d3:74:86:8d:70:b4:30:08: 45:37:72:7a:2e:07:62:6c:2d:f5:44:2c:bf:1a:fc:35:8c:44: ca:e5:af:0d:05:65:12:32:e8:8d:3f:ea:4d:77:9b:cc:a9:77: 09:5a:8a:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA3MDEwODIxNTlaFw0yNTA3MDgwODIxNTlaMBgxFjAUBgNV BAMTDTY4NjM5YWE4LWViNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIZgRmKTuXZ8QGFF4b0VTLQ3fpOZToq5iOc1Y1lGh6HHfof0hVrQG8ii2G5RC8 pzLBB9mJI9xCCKFINXeb3W2l+dyTwvYBcQEWuwps84Pkzfwx8L6WUUhte/KDcdRb UV/lr5GGWaW91Kmbg55dLJm7MVucwbGRmYxeltuY8mJxfSBWL4aGizJFzesL969G 3FGBTIO2reu5k0I8YJH/JCh63qKu57FWVTskFTCGRRdwIleaYDZcba/iEccyrrwa 0P7fYLAbC+4KYnvW7zmBlSEZahn5GnY71nTjPcx/+9PtivlnggYKmCTV7Yyydk7x ufPQDvW+s/Sx4EirKhDXDlodAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsCEK1fq0 Yxdk8UaqXUBMsF68pqQwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD0aPDe2gMSYINs+OyMllD0XAG+MuhdYmuvRQxVbd8xAFZf8wZE4qvFj QbXGdZnnu02t0NKzlF8fYdUBlFxxWPLIgovO/ttiFZMXTe9Zglb3ShvXT65WUrsV l85MSqC/k/uj6dmOA1ysg7E1+kykO4ggVwEatw841VT/4hwxKkUQN5LkvztCnW+3 OBVme8iNdXL9370UhDgRyCLZ0FDZNwPROSeE9gU8xTqlZYyL3fX+30ZkL6c2gWdu QKnQQu4v1J5ALpbkyHpVqRZ1mIoCvX3TdIaNcLQwCEU3cnouB2JsLfVELL8a/DWM RMrlrw0FZRIy6I0/6k13m8ypdwlaisM= -----END CERTIFICATE-----Generated at Thu Jul 3 04:28:56 2025 by rpki-client