$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: H3Bp67w827o4NLHLXZ1A983+gJwbjMNdffIlv0hYTxs= Subject key identifier: 58:9D:06:04:B4:C8:A5:ED:67:3E:1A:7E:A4:D0:BD:D1:40:3E:5A:ED Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0BE5 Signing time: Wed 02 Jul 2025 19:01:42 +0000 Manifest this update: Wed 02 Jul 2025 19:01:41 +0000 Manifest next update: Wed 09 Jul 2025 19:01:41 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: KHWFac8s8pwgTw6VmUAVPDBpzFSr+sWkU1LGgOlZqCM=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Jul 2 19:01:41 2025 GMT Not After : Jul 9 19:01:41 2025 GMT Subject: CN=68658216-4739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f9:09:52:95:b4:6b:fb:2e:04:f8:5b:12:12: b3:8e:21:20:42:5e:76:f4:36:25:a7:68:1b:cc:53: 53:fb:dd:df:04:64:92:54:47:89:e0:25:30:72:ad: 94:2e:b4:1e:c2:2d:54:61:95:a0:26:86:97:e9:2a: 86:6e:3c:63:fc:f3:66:0c:55:f2:be:d9:31:46:4e: 58:48:9e:a3:c3:38:da:d9:70:7b:d8:e6:1b:24:7e: 8b:db:55:0d:2e:2e:7e:14:3a:46:2a:e8:9c:f0:ee: 30:c5:cb:38:a4:1c:d3:4b:59:a6:e9:87:eb:8b:a4: 55:30:78:89:35:df:f2:82:5e:07:a8:67:24:ea:61: db:c5:8c:f8:66:05:cb:0b:f8:5a:6b:68:32:5d:de: 6d:1d:85:dc:0d:4d:30:db:90:d9:bf:c9:a6:7b:4f: 3c:19:89:df:c1:d1:3e:a9:5a:4a:00:d3:31:e4:e2: d6:9c:96:5f:b6:9a:64:ea:a9:1f:2c:b4:e0:8d:93: d6:43:a9:56:07:2c:35:bd:14:2b:20:88:1e:df:63: c6:13:62:0d:f6:22:31:24:5b:8d:9d:21:50:25:a2: 89:b6:1e:08:61:06:c4:fd:16:54:f0:a3:c5:92:81: 4d:9b:fa:9e:1d:44:9d:c8:52:ef:78:c1:ee:cf:14: 8c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9D:06:04:B4:C8:A5:ED:67:3E:1A:7E:A4:D0:BD:D1:40:3E:5A:ED X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:92:61:7e:ef:e1:d4:02:e2:d6:06:4c:46:12:8a:7a:fa:4c: c9:41:40:79:bf:61:10:99:14:78:c9:55:2c:46:3a:1b:ef:88: f1:42:27:da:56:f8:28:f0:3b:52:35:c3:27:4f:69:b0:4f:64: 5a:c1:3d:80:73:b1:61:e0:1e:99:b3:ae:b3:f5:db:5c:5f:ce: a4:f5:da:f9:60:92:26:ba:4c:62:53:f0:71:b1:ea:35:05:b0: 47:d9:ad:1f:c6:0a:56:af:bb:5e:bf:96:39:38:47:29:99:be: b7:ff:e1:dc:fd:8c:07:b7:28:1e:43:12:e7:38:13:1f:f9:6f: bc:41:7c:d6:0d:94:aa:3e:33:65:bb:7f:a2:01:3e:aa:d5:63: 17:0c:d9:e5:85:cb:cf:e3:e9:d7:2b:c3:0b:bf:51:d1:18:7e: 31:4a:25:85:eb:7f:3a:f5:3f:3a:85:45:77:e8:ad:74:e7:4f: fa:6d:4f:49:cb:53:15:dd:ee:cd:01:35:19:31:49:ff:bf:ad: 32:b3:35:c0:65:bf:e1:94:09:ce:74:81:32:98:0e:08:2b:70: 23:25:40:c8:52:8c:c2:8d:34:15:d4:fa:cb:4a:13:d1:dd:17: a1:6c:d0:11:e5:d4:4c:1a:ba:20:90:59:b5:48:6d:64:a1:be: f4:58:ea:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwNzAyMTkwMTQxWhcNMjUwNzA5MTkwMTQxWjAYMRYwFAYD VQQDEw02ODY1ODIxNi00NzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfkJUpW0a/suBPhbEhKzjiEgQl529DYlp2gbzFNT+93fBGSSVEeJ4CUwcq2U LrQewi1UYZWgJoaX6SqGbjxj/PNmDFXyvtkxRk5YSJ6jwzja2XB72OYbJH6L21UN Li5+FDpGKuic8O4wxcs4pBzTS1mm6Yfri6RVMHiJNd/ygl4HqGck6mHbxYz4ZgXL C/haa2gyXd5tHYXcDU0w25DZv8mme088GYnfwdE+qVpKANMx5OLWnJZftppk6qkf LLTgjZPWQ6lWByw1vRQrIIge32PGE2IN9iIxJFuNnSFQJaKJth4IYQbE/RZU8KPF koFNm/qeHUSdyFLveMHuzxSMJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFidBgS0 yKXtZz4afqTQvdFAPlrtMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7kmF+7+HUAuLWBkxGEop6+kzJQUB5v2EQmRR4yVUsRjob74jxQifa Vvgo8DtSNcMnT2mwT2RawT2Ac7Fh4B6Zs66z9dtcX86k9dr5YJImukxiU/Bxseo1 BbBH2a0fxgpWr7tev5Y5OEcpmb63/+Hc/YwHtygeQxLnOBMf+W+8QXzWDZSqPjNl u3+iAT6q1WMXDNnlhcvP4+nXK8MLv1HRGH4xSiWF63869T86hUV36K1050/6bU9J y1MV3e7NATUZMUn/v60yszXAZb/hlAnOdIEymA4IK3AjJUDIUozCjTQV1PrLShPR 3RehbNAR5dRMGrogkFm1SG1kob70WOqZ -----END CERTIFICATE-----Generated at Thu Jul 3 15:27:50 2025 by rpki-client