$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: TUHtJoxol1TPO09K/et4W6W1RfEaltMzn80k76F50nk= Subject key identifier: BE:0E:F7:F6:05:18:98:4A:7A:4A:84:54:BF:A6:4C:EA:F2:84:01:03 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0FA9 Signing time: Fri 22 Aug 2025 17:39:02 +0000 Manifest this update: Fri 22 Aug 2025 17:39:01 +0000 Manifest next update: Fri 29 Aug 2025 17:39:01 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: QjsvxCMzfIBcddQSU83jAtk5X+DSlBY+HSanKXtVZOU=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4029 (0xfbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Aug 22 17:39:01 2025 GMT Not After : Aug 29 17:39:01 2025 GMT Subject: CN=68a8ab35-87ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:f1:6b:0f:d0:d6:61:5b:d3:b3:bc:d5:1b: c6:43:4e:50:b7:30:85:17:da:bc:46:39:df:6e:13: 86:54:46:59:5c:8e:b2:9d:ab:8b:eb:09:b0:c3:74: 9a:f9:77:01:37:6c:8a:4f:11:da:36:d9:47:87:58: 5d:b0:97:3b:69:67:0c:01:f1:da:26:4b:2d:28:ee: 30:f9:6e:c6:92:79:f6:1c:80:17:89:48:87:18:9f: ad:7f:6b:03:99:a7:29:46:ee:7b:fe:ad:92:f1:45: 9e:17:9e:42:24:49:22:8f:bb:39:b8:54:01:dc:80: 32:0c:68:49:55:39:32:3c:1b:2e:f0:18:d8:ce:a6: 4f:f3:97:60:58:02:72:80:49:0e:69:dc:86:7d:6d: 56:75:a8:ff:24:ba:72:ea:9f:61:5b:2e:56:8d:cf: a0:2b:b2:18:e5:0b:41:00:10:06:b6:ca:42:fc:16: 9b:35:69:28:46:1a:49:ee:30:47:eb:91:b0:9e:26: 4b:e3:9c:a4:43:0f:5a:2d:07:31:94:5c:a4:23:1b: d2:2d:40:0d:88:93:a0:7e:79:7e:ed:7f:f4:eb:19: 0a:3d:f3:f5:34:14:89:93:56:c5:ec:7b:a0:15:7b: a6:20:f7:83:4a:a5:fb:92:d9:2c:4b:28:9e:0c:e8: 0c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0E:F7:F6:05:18:98:4A:7A:4A:84:54:BF:A6:4C:EA:F2:84:01:03 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:e2:36:b0:33:af:b5:7e:da:ac:d5:e0:42:33:24:c9:05:46: 6d:f2:f7:cf:c5:15:2f:0d:ce:40:24:48:6d:26:8d:34:3f:7c: c7:f7:84:81:94:c8:eb:2c:e3:0c:4c:04:2e:99:d3:73:d8:db: 5e:44:1c:ed:45:b1:dd:1c:3d:38:40:25:f2:7a:85:f7:f2:73: 23:b4:f7:87:a5:bd:4b:e3:81:f2:05:b4:6f:67:45:1f:ae:66: e0:a1:61:e7:ec:2e:26:f5:ef:78:04:96:7d:76:d9:fb:8a:ce: d4:88:50:6b:d3:69:38:03:5a:fe:87:60:e0:9c:a5:c3:5d:c3: 8a:bb:a8:fa:ba:5f:4a:f4:3b:de:54:0a:8b:df:88:4d:78:51: 01:b8:4c:27:de:43:fd:d2:3b:12:4d:20:e2:c5:2e:9f:c5:bc: 2e:28:03:e1:fb:62:74:86:52:54:38:d2:81:c7:ee:43:2c:e0: 27:e6:33:ab:63:19:8d:6e:f5:1f:5b:5a:1f:e3:40:ef:ca:38: 4e:44:c5:64:07:f7:b2:54:a6:55:d3:cc:46:4b:0b:a0:b2:b3: 12:54:4f:ae:4e:51:72:bd:e6:83:4d:71:cc:a8:4a:23:cb:ea: 05:b7:1f:8d:74:39:57:dd:a7:3a:db:2f:5f:8e:84:2c:c3:40: 5d:dd:54:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwODIyMTczOTAxWhcNMjUwODI5MTczOTAxWjAYMRYwFAYD VQQDEw02OGE4YWIzNS04N2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQXxaw/Q1mFb07O81RvGQ05QtzCFF9q8RjnfbhOGVEZZXI6ynauL6wmww3Sa +XcBN2yKTxHaNtlHh1hdsJc7aWcMAfHaJkstKO4w+W7Gknn2HIAXiUiHGJ+tf2sD macpRu57/q2S8UWeF55CJEkij7s5uFQB3IAyDGhJVTkyPBsu8BjYzqZP85dgWAJy gEkOadyGfW1Wdaj/JLpy6p9hWy5Wjc+gK7IY5QtBABAGtspC/BabNWkoRhpJ7jBH 65GwniZL45ykQw9aLQcxlFykIxvSLUANiJOgfnl+7X/06xkKPfP1NBSJk1bF7Hug FXumIPeDSqX7ktksSyieDOgMUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4O9/YF GJhKekqEVL+mTOryhAEDMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ4jawM6+1ftqs1eBCMyTJBUZt8vfPxRUvDc5AJEhtJo00P3zH94SB lMjrLOMMTAQumdNz2NteRBztRbHdHD04QCXyeoX38nMjtPeHpb1L44HyBbRvZ0Uf rmbgoWHn7C4m9e94BJZ9dtn7is7UiFBr02k4A1r+h2DgnKXDXcOKu6j6ul9K9Dve VAqL34hNeFEBuEwn3kP90jsSTSDixS6fxbwuKAPh+2J0hlJUONKBx+5DLOAn5jOr YxmNbvUfW1of40DvyjhORMVkB/eyVKZV08xGSwugsrMSVE+uTlFyveaDTXHMqEoj y+oFtx+NdDlX3ac62y9fjoQsw0Bd3VT/ -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:47 2025 by rpki-client