$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: C+2nwMQUFLSWS0ccbpag/X/MIArREOSdeEADRXjtqGI= Subject key identifier: 44:C7:0D:02:2C:2A:03:FF:D7:78:29:71:DE:75:E3:B0:56:29:D1:64 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0F8F Signing time: Wed 02 Jul 2025 17:45:13 +0000 Manifest this update: Wed 02 Jul 2025 17:45:13 +0000 Manifest next update: Wed 09 Jul 2025 17:45:13 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: GpMEF/Bge5cpjlAgWYLKXS+QOpGp76rmz5cSerD803I=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4003 (0xfa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Jul 2 17:45:13 2025 GMT Not After : Jul 9 17:45:13 2025 GMT Subject: CN=68657029-c592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ab:87:00:bf:f3:d0:a2:31:ad:60:7a:7a:cf: 5f:7d:36:a1:cf:71:da:ae:54:29:80:57:be:7d:aa: 58:bc:a2:40:62:ba:a6:9a:de:0c:1c:0e:1a:cc:4e: b3:86:ab:e7:f3:f0:5f:e5:ee:30:91:18:c6:37:a1: 96:1e:fb:84:c4:71:5f:da:83:32:aa:b1:50:64:58: a5:a3:e6:a3:1a:33:05:d7:55:bf:65:f2:13:10:8e: 3b:8e:9a:ee:0d:2b:d9:0a:22:f1:9c:5c:07:73:e5: 44:93:85:2d:c4:31:ec:8d:82:5a:c8:a9:0d:ea:a4: 5a:e3:5b:16:03:49:97:00:7a:95:54:b1:9c:1b:71: 41:59:b8:94:9e:be:1d:a4:cb:be:2b:ba:31:2c:a4: 28:82:4a:98:92:d7:37:0f:8f:95:3a:43:8f:80:ca: b0:b0:33:02:76:00:8a:07:7d:77:f2:58:b5:34:f3: e3:40:a8:7f:08:ab:a5:f7:25:c1:30:d2:6a:8d:8d: 1c:ff:91:14:96:8c:40:67:45:c5:97:13:90:ca:7a: 48:28:65:bc:3e:7c:ff:e6:ba:8b:12:7f:d1:16:8a: bd:86:91:d9:a3:07:41:0a:3e:43:a7:69:49:4a:d4: b5:e0:58:4d:ba:20:a0:59:04:57:83:a6:38:e2:91: 97:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C7:0D:02:2C:2A:03:FF:D7:78:29:71:DE:75:E3:B0:56:29:D1:64 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:84:9d:cc:17:c1:18:0c:a7:75:46:41:aa:40:a0:95:b9:00: 24:db:11:ae:94:56:bc:2f:ea:39:ab:5a:9a:6e:c0:d2:8f:fb: 72:46:40:31:c4:74:97:67:02:00:82:22:fd:79:ef:f7:b9:b6: 1e:16:61:e3:8b:a6:dd:a3:86:9e:bf:47:b4:7c:12:b1:03:b4: 33:7c:e3:df:04:3e:0f:f7:47:66:f8:6d:70:f0:1a:64:69:f3: 12:12:9f:b6:66:79:24:f7:4e:1f:e8:85:33:1d:09:fa:df:a3: ea:eb:51:ac:5a:4c:73:40:77:ec:b3:05:c9:e2:0d:cc:bc:c5: 27:97:a2:2f:54:f1:f4:92:d2:37:6c:f3:bf:56:43:8a:0c:5e: 0e:30:6c:d2:17:2b:8b:7a:35:19:17:20:97:4e:ac:36:ce:a7: 66:9f:75:a5:31:e6:76:3b:a0:b0:c7:b2:b8:e6:7f:74:40:e7: 31:c2:92:42:c4:33:cc:75:c2:75:92:f6:7c:44:63:6b:62:67: 23:04:30:17:73:6d:d6:64:95:56:58:32:52:37:5b:3a:75:47: ed:b8:fd:6a:5d:61:8a:fd:66:08:1c:69:50:a4:e4:cd:84:23: 08:e4:e0:79:56:63:64:17:21:4f:d6:4d:10:76:96:c1:45:9a: b7:7a:b5:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwNzAyMTc0NTEzWhcNMjUwNzA5MTc0NTEzWjAYMRYwFAYD VQQDEw02ODY1NzAyOS1jNTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0quHAL/z0KIxrWB6es9ffTahz3HarlQpgFe+fapYvKJAYrqmmt4MHA4azE6z hqvn8/Bf5e4wkRjGN6GWHvuExHFf2oMyqrFQZFilo+ajGjMF11W/ZfITEI47jpru DSvZCiLxnFwHc+VEk4UtxDHsjYJayKkN6qRa41sWA0mXAHqVVLGcG3FBWbiUnr4d pMu+K7oxLKQogkqYktc3D4+VOkOPgMqwsDMCdgCKB3138li1NPPjQKh/CKul9yXB MNJqjY0c/5EUloxAZ0XFlxOQynpIKGW8Pnz/5rqLEn/RFoq9hpHZowdBCj5Dp2lJ StS14FhNuiCgWQRXg6Y44pGXxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETHDQIs KgP/13gpcd5147BWKdFkMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDThJ3MF8EYDKd1RkGqQKCVuQAk2xGulFa8L+o5q1qabsDSj/tyRkAx xHSXZwIAgiL9ee/3ubYeFmHji6bdo4aev0e0fBKxA7QzfOPfBD4P90dm+G1w8Bpk afMSEp+2Znkk904f6IUzHQn636Pq61GsWkxzQHfsswXJ4g3MvMUnl6IvVPH0ktI3 bPO/VkOKDF4OMGzSFyuLejUZFyCXTqw2zqdmn3WlMeZ2O6Cwx7K45n90QOcxwpJC xDPMdcJ1kvZ8RGNrYmcjBDAXc23WZJVWWDJSN1s6dUftuP1qXWGK/WYIHGlQpOTN hCMI5OB5VmNkFyFP1k0QdpbBRZq3erWo -----END CERTIFICATE-----Generated at Wed Jul 2 19:32:14 2025 by rpki-client