$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: OD1MV1em9Ffjx9SaW7WtiNKkxPsdzX60E+UGIud+B7A= Subject key identifier: 5F:0C:34:9B:9E:75:66:13:DA:37:C7:4B:3E:C9:FB:47:E2:2F:B0:FF Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D1E Signing time: Fri 04 Jul 2025 18:21:20 +0000 Manifest this update: Fri 04 Jul 2025 18:21:19 +0000 Manifest next update: Fri 11 Jul 2025 18:21:19 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: 3lgaqJlwNgli48kLxZcYYwU4BRC3J3flQcJDJrydKP0=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Jul 4 18:21:19 2025 GMT Not After : Jul 11 18:21:19 2025 GMT Subject: CN=68681ba0-aab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a6:82:c3:ce:33:62:95:ba:2d:a3:ad:21:da: 12:46:75:eb:b6:72:5f:d6:1c:05:36:4b:ed:fc:6d: a2:71:c2:02:08:06:8e:0a:cf:b0:2e:5e:29:58:9d: 62:18:87:f6:20:38:31:5a:1d:9a:b1:cc:01:fa:46: 4f:18:f1:75:e0:d4:24:8b:4e:6b:0b:85:91:41:78: 60:32:80:30:8a:39:14:b8:b0:7d:86:e3:04:1d:8a: 9f:15:a3:9f:c3:9e:87:e0:00:fd:21:0f:a6:bb:d7: 2a:aa:65:8e:5b:14:14:cd:b7:98:b6:e7:90:90:da: 28:18:63:b9:b7:06:10:c3:b2:1e:3f:d2:16:83:4c: 1f:b0:9c:05:ea:61:37:6d:d0:a1:7c:e4:b4:4e:d4: 6f:6b:c9:fd:fd:aa:8b:9f:4c:7b:29:d9:32:66:5c: 3b:63:6c:4b:3b:41:a4:1c:6c:36:bd:2d:fa:09:9b: 40:83:54:f9:a8:9e:6c:d4:06:10:a5:48:20:dd:24: dd:7b:80:f3:b4:ee:4e:7e:11:c3:1d:17:24:03:8e: 11:a9:8f:c7:b8:4b:6f:1b:c6:25:e2:06:da:82:09: 8e:37:b9:25:27:80:74:5d:0c:12:68:ec:0e:74:e4: 61:7b:48:9a:e2:da:78:a1:33:84:73:3c:d5:ae:de: 81:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0C:34:9B:9E:75:66:13:DA:37:C7:4B:3E:C9:FB:47:E2:2F:B0:FF X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:35:9f:c4:4c:9e:62:6a:10:d3:be:44:8b:61:f4:9d:72:59: 01:0b:b2:9c:f0:57:59:22:52:d5:80:f5:66:b9:e2:76:96:7f: a8:83:df:ac:19:c7:a7:4b:32:af:89:28:1c:38:2b:7b:b5:96: 6f:d7:7f:3a:0d:3c:9b:44:38:00:cb:4e:a3:de:a9:a6:55:40: de:c8:72:3d:5c:38:40:3b:f8:55:a9:0f:b4:2e:0b:4f:61:04: 23:04:f1:bf:f6:ee:18:d7:35:77:26:af:71:c9:fa:69:69:52: 6c:b7:69:c2:73:99:c5:51:94:84:78:1f:27:34:05:08:85:f2: 78:5e:8d:51:2a:9b:d7:ba:4a:5f:f3:23:8e:18:cd:03:30:1e: bb:1b:a5:50:82:8d:d6:7f:e7:41:a2:9b:48:6d:5f:b4:1c:66: 6e:dd:de:81:bc:ed:3c:20:28:09:81:29:76:09:ee:54:54:8d: 1a:b0:d5:70:c1:83:3a:b4:2c:9b:07:4b:2d:9c:2e:7f:86:5b: a9:10:e9:b3:be:7e:bf:c5:b4:4c:75:f7:cd:86:f1:dd:bf:25: a9:db:0c:95:ea:66:54:d9:bf:12:3b:bf:4e:8e:84:f9:af:1e: 1e:ca:6b:23:cc:bd:43:a8:ba:19:0c:6c:b3:98:b0:46:79:89: e5:f8:b0:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUwNzA0MTgyMTE5WhcNMjUwNzExMTgyMTE5WjAYMRYwFAYD VQQDEw02ODY4MWJhMC1hYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaaCw84zYpW6LaOtIdoSRnXrtnJf1hwFNkvt/G2iccICCAaOCs+wLl4pWJ1i GIf2IDgxWh2ascwB+kZPGPF14NQki05rC4WRQXhgMoAwijkUuLB9huMEHYqfFaOf w56H4AD9IQ+mu9cqqmWOWxQUzbeYtueQkNooGGO5twYQw7IeP9IWg0wfsJwF6mE3 bdChfOS0TtRva8n9/aqLn0x7KdkyZlw7Y2xLO0GkHGw2vS36CZtAg1T5qJ5s1AYQ pUgg3STde4DztO5OfhHDHRckA44RqY/HuEtvG8Yl4gbaggmON7klJ4B0XQwSaOwO dORhe0ia4tp4oTOEczzVrt6BswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8MNJue dWYT2jfHSz7J+0fiL7D/MB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8NZ/ETJ5iahDTvkSLYfSdclkBC7Kc8FdZIlLVgPVmueJ2ln+og9+s GcenSzKviSgcOCt7tZZv1386DTybRDgAy06j3qmmVUDeyHI9XDhAO/hVqQ+0LgtP YQQjBPG/9u4Y1zV3Jq9xyfppaVJst2nCc5nFUZSEeB8nNAUIhfJ4Xo1RKpvXukpf 8yOOGM0DMB67G6VQgo3Wf+dBoptIbV+0HGZu3d6BvO08ICgJgSl2Ce5UVI0asNVw wYM6tCybB0stnC5/hlupEOmzvn6/xbRMdffNhvHdvyWp2wyV6mZU2b8SO79OjoT5 rx4eymsjzL1DqLoZDGyzmLBGeYnl+LBS -----END CERTIFICATE-----Generated at Sat Jul 5 02:00:08 2025 by rpki-client