$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: nmdEZKxea7koyP/msZnDVuKFbaPbuN7pc3JLIhbLNvM= Subject key identifier: 9E:3D:47:6C:26:0B:A1:C2:2D:B5:2B:CB:7C:A4:A2:C2:78:B4:B6:C0 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02A8 Signing time: Sun 15 Jun 2025 01:16:51 +0000 Manifest this update: Sun 15 Jun 2025 01:16:51 +0000 Manifest next update: Sun 22 Jun 2025 01:16:51 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: 9RxEjPfzhxMYBybmP5Q6mhFRBbHzooopwSfHDicA3n4=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: JpDBusAldNWd+IJVkNhhqJJDrViCPn/caif2F0IdJAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Jun 15 01:16:51 2025 GMT Not After : Jun 22 01:16:51 2025 GMT Subject: CN=684e1f03-a400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:20:35:0a:df:00:b4:04:bb:80:5d:5d:74:21: a9:53:20:60:60:5c:3a:d4:f2:bb:f8:be:69:da:44: bd:45:1d:2f:e1:5b:7f:a9:76:81:60:b6:56:bd:0c: 02:57:03:4e:41:11:5b:24:a5:47:11:0e:e9:f7:a0: 4f:30:f5:9c:83:46:ba:57:a0:2e:e0:db:a2:6c:96: 3c:d9:10:b3:ea:f3:6b:b5:ef:32:6b:b9:ee:2b:ca: cf:5b:8b:62:70:5f:7c:dd:17:fa:86:e2:d5:36:63: 4a:af:8c:e6:ae:86:a4:b5:c1:55:51:26:6f:7d:09: 15:d4:26:70:af:ab:78:ec:1f:d4:86:12:ec:1b:e6: ae:1c:88:93:9b:0e:e8:a8:bd:e3:1f:51:59:4e:e4: 4f:79:5c:28:81:48:71:b9:bd:de:ec:08:eb:a6:b0: eb:2c:26:1c:e3:c7:0e:bd:b2:67:9a:27:9b:11:5e: a6:cd:40:d7:01:d0:88:06:92:6e:33:fe:69:53:67: 85:ec:e1:74:73:13:0e:a2:38:7d:3a:2f:19:6f:fd: f5:fc:45:70:4c:55:e1:52:3c:86:01:c1:98:10:29: be:22:81:5b:f9:31:94:b4:16:fa:f0:5c:67:06:ac: 05:23:f6:7c:6e:85:39:23:f7:37:0d:e1:ba:2a:c0: b2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3D:47:6C:26:0B:A1:C2:2D:B5:2B:CB:7C:A4:A2:C2:78:B4:B6:C0 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b0:fa:a4:4e:09:aa:21:af:8c:08:97:31:8d:8a:74:91:52: 00:5c:71:bf:15:3f:5b:f9:c3:58:08:46:1d:fb:4b:82:87:39: 60:04:a0:b5:5d:d9:e1:f7:fb:c7:1a:07:cd:7b:1c:8b:84:66: 17:2f:e2:cb:ca:c4:7c:07:ef:58:b1:b5:c3:7d:d4:9e:d4:6d: 08:6b:4c:2d:43:81:bf:dc:6c:d7:7d:2f:09:fa:3e:39:2a:ed: 4f:e6:e3:ee:7f:c8:0f:fa:5e:8e:ad:a1:8c:6b:ed:87:14:85: 37:99:47:dc:05:ef:bb:6f:de:7d:6a:b0:57:49:c4:e8:e8:5b: 62:49:d8:43:37:2c:b5:c7:ac:47:42:af:36:5c:1b:57:4b:0b: 94:7d:58:b0:36:8c:13:38:e6:0e:d0:83:5d:43:7f:0b:2b:49: 0c:a0:45:7d:6d:d1:86:78:63:60:d4:84:6e:cb:0c:e8:c2:46: d1:f2:8a:98:a1:3d:f5:e7:00:01:d9:73:43:9d:2b:8e:a1:53: 6d:c7:2d:ce:f6:f7:f1:4b:0f:4c:35:e6:8a:a3:f6:c2:b5:67: 28:4a:e4:39:0a:6e:2a:b5:ad:2b:0e:f7:0d:a2:74:e8:60:a5: 2b:e6:1d:ad:0c:30:fc:23:26:7e:b6:43:9d:92:87:5f:c8:26: 00:e1:2a:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwNjE1MDExNjUxWhcNMjUwNjIyMDExNjUxWjAYMRYwFAYD VQQDEw02ODRlMWYwMy1hNDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSA1Ct8AtAS7gF1ddCGpUyBgYFw61PK7+L5p2kS9RR0v4Vt/qXaBYLZWvQwC VwNOQRFbJKVHEQ7p96BPMPWcg0a6V6Au4NuibJY82RCz6vNrte8ya7nuK8rPW4ti cF983Rf6huLVNmNKr4zmroaktcFVUSZvfQkV1CZwr6t47B/UhhLsG+auHIiTmw7o qL3jH1FZTuRPeVwogUhxub3e7AjrprDrLCYc48cOvbJnmiebEV6mzUDXAdCIBpJu M/5pU2eF7OF0cxMOojh9Oi8Zb/31/EVwTFXhUjyGAcGYECm+IoFb+TGUtBb68Fxn BqwFI/Z8boU5I/c3DeG6KsCyawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ49R2wm C6HCLbUry3ykosJ4tLbAMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5sPqkTgmqIa+MCJcxjYp0kVIAXHG/FT9b+cNYCEYd+0uChzlgBKC1 Xdnh9/vHGgfNexyLhGYXL+LLysR8B+9YsbXDfdSe1G0Ia0wtQ4G/3GzXfS8J+j45 Ku1P5uPuf8gP+l6OraGMa+2HFIU3mUfcBe+7b959arBXScTo6FtiSdhDNyy1x6xH Qq82XBtXSwuUfViwNowTOOYO0INdQ38LK0kMoEV9bdGGeGNg1IRuywzowkbR8oqY oT315wAB2XNDnSuOoVNtxy3O9vfxSw9MNeaKo/bCtWcoSuQ5Cm4qta0rDvcNonTo YKUr5h2tDDD8IyZ+tkOdkodfyCYA4Spq -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:59 2025 by rpki-client