$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft File: hF2I4KIVFF82fZMEvz9xrujrTC0.mft (raw, json) Hash identifier: vu+wWOFSpWU0ETS9BfyYKZGcTQFjAc9SyzNTGfFW4N0= Subject key identifier: 35:E2:6A:47:BB:73:75:CC:7F:B4:A2:01:A3:F7:10:23:D5:53:5E:95 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft Manifest number: BD Signing time: Thu 03 Jul 2025 06:05:51 +0000 Manifest this update: Thu 03 Jul 2025 06:05:51 +0000 Manifest next update: Thu 10 Jul 2025 06:05:51 +0000 Files and hashes: 1: hF2I4KIVFF82fZMEvz9xrujrTC0.crl (hash: LSWjt00LzD3ckwv/R1lASz5ehFtsUH0GPzHN434NaKg=) 2: CB6840EE3BAC11EF9C334410C4F9AE02.roa (hash: q+bs+pmU+B7fJo6iymx9EUit+9N40A02etOl0mkXvRg=) 3: 2042987C6C4411EF9B263275C4F9AE02.roa (hash: bKtFSMRmBEl0oKGrwWVZYxuAEvHDipNsFv7Plkp3FeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Jul 3 06:05:51 2025 GMT Not After : Jul 10 06:05:51 2025 GMT Subject: CN=68661dbf-b67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:f4:9d:4c:7f:0c:ed:03:cd:fa:b4:21:75: 65:67:f5:a4:57:14:17:71:4a:4a:68:f7:9d:89:3e: a4:0b:0a:ba:6d:28:2a:91:fa:1c:75:76:11:2d:1c: ac:73:fc:26:59:a8:5f:6a:a0:9b:6b:c5:59:08:4b: 68:41:79:34:a5:a6:f3:de:f3:95:bb:f3:39:f6:ca: c7:30:71:21:37:2e:e4:3e:01:fb:41:aa:4c:78:2d: 5b:5c:24:78:14:f3:de:a0:b1:98:7d:52:75:99:ad: 50:84:af:eb:c9:f8:1d:32:f2:3b:0c:7f:48:10:1a: 32:12:c9:3b:75:7a:a1:72:91:1f:4e:82:1b:d4:6c: d7:79:2e:eb:4e:86:8e:47:16:45:30:89:15:ed:c0: f3:80:13:8a:2e:c2:04:55:b2:ec:88:c9:10:cf:90: bc:3f:72:0f:d8:fc:c4:a9:a3:93:e4:4b:a0:bb:67: 19:bc:ec:4b:a5:59:46:eb:3a:80:bd:72:26:f4:f5: f8:cd:a4:c5:2e:c7:f1:20:13:57:e1:12:fb:f3:02: 66:70:37:78:62:15:bf:63:c4:63:3c:3b:7b:a8:ac: fb:b5:9d:8e:20:7b:3b:7b:d0:1b:f8:45:4d:6a:ef: 85:01:72:5b:fc:04:6f:7a:aa:fc:01:39:40:72:5a: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E2:6A:47:BB:73:75:CC:7F:B4:A2:01:A3:F7:10:23:D5:53:5E:95 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:c3:61:de:a4:61:89:0a:25:10:56:fb:30:2c:82:75:fe:56: 38:6b:f4:f7:b3:53:68:ec:66:8f:34:25:62:a5:ed:10:00:f2: d1:17:a4:30:62:db:0d:de:af:76:1d:91:ff:4d:28:6e:df:4f: ba:51:d1:f6:ca:ce:f6:02:24:b3:fa:e1:4d:5f:ba:5d:1c:0b: 8a:b1:f5:87:43:bf:89:ab:6a:6b:2d:72:2d:bc:04:4d:eb:51: 3f:2b:f2:2f:59:5a:a2:f8:0e:b4:62:8e:5f:1c:e1:2c:7c:55: 50:e8:92:35:5e:f0:43:59:2f:ea:2e:9b:65:8d:f2:40:68:f9: a3:ef:a9:d0:47:e7:c9:3e:bc:ef:66:05:08:98:17:f6:7a:eb: 96:6d:41:01:74:1a:47:55:47:aa:85:d8:b0:9a:e9:0b:de:7f: 95:68:df:4d:93:fc:99:1c:43:cb:68:7c:62:10:0c:1e:55:ab: b3:ea:bc:7d:e5:ea:9b:18:6a:1e:22:61:97:1e:1f:d2:82:07: 39:1c:eb:95:4d:20:7c:73:33:97:61:39:11:9e:3b:2e:4c:ba: d1:07:fb:b2:49:c3:cb:29:6c:7a:38:8f:13:25:57:9b:92:3f: fe:8d:86:e4:6f:e8:32:59:a0:b0:10:bc:d4:66:00:04:8f:8d: 04:b6:4f:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUwNzAzMDYwNTUxWhcNMjUwNzEwMDYwNTUxWjAYMRYwFAYD VQQDEw02ODY2MWRiZi1iNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK70nUx/DO0Dzfq0IXVlZ/WkVxQXcUpKaPediT6kCwq6bSgqkfocdXYRLRys c/wmWahfaqCba8VZCEtoQXk0pabz3vOVu/M59srHMHEhNy7kPgH7QapMeC1bXCR4 FPPeoLGYfVJ1ma1QhK/ryfgdMvI7DH9IEBoyEsk7dXqhcpEfToIb1GzXeS7rToaO RxZFMIkV7cDzgBOKLsIEVbLsiMkQz5C8P3IP2PzEqaOT5Eugu2cZvOxLpVlG6zqA vXIm9PX4zaTFLsfxIBNX4RL78wJmcDd4YhW/Y8RjPDt7qKz7tZ2OIHs7e9Ab+EVN au+FAXJb/ARveqr8ATlAclrRnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXiake7 c3XMf7SiAaP3ECPVU16VMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFFMi8yNkE2RjQ0QzNCQUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZG ODJmWk1Fdno5eHJ1anJUQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrw2HepGGJCiUQVvswLIJ1/lY4a/T3s1No7GaPNCVipe0QAPLRF6Qw YtsN3q92HZH/TShu30+6UdH2ys72AiSz+uFNX7pdHAuKsfWHQ7+Jq2prLXItvARN 61E/K/IvWVqi+A60Yo5fHOEsfFVQ6JI1XvBDWS/qLptljfJAaPmj76nQR+fJPrzv ZgUImBf2euuWbUEBdBpHVUeqhdiwmukL3n+VaN9Nk/yZHEPLaHxiEAweVauz6rx9 5eqbGGoeImGXHh/Sggc5HOuVTSB8czOXYTkRnjsuTLrRB/uyScPLKWx6OI8TJVeb kj/+jYbkb+gyWaCwELzUZgAEj40Etk/Y -----END CERTIFICATE-----Generated at Fri Jul 4 04:01:55 2025 by rpki-client