$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: L8oAyAzO4FCSn5emOZE3CeX98hLfTgVjOGV+H9ccui4= Subject key identifier: 4D:B8:4F:62:C6:1C:41:52:8C:23:DD:C5:8D:87:89:51:86:5D:2F:17 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02CB Signing time: Sat 09 Aug 2025 02:02:12 +0000 Manifest this update: Sat 09 Aug 2025 02:02:12 +0000 Manifest next update: Sat 16 Aug 2025 02:02:12 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: 50TD8v5JpTgJXztppuN9mPkpYSAih6IAwjNbpZwP4KY=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: sWRu/KJ6P64VeS1L+PAelF/6BKr+SrI1ab0xsyyupmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Aug 9 02:02:12 2025 GMT Not After : Aug 16 02:02:12 2025 GMT Subject: CN=6896ac24-e5a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:56:13:1a:2d:1e:18:ad:dc:3e:1c:c7:ba: 24:10:35:24:76:c2:5a:e1:f7:88:d5:46:71:1c:36: 45:36:02:45:f8:fb:76:51:3e:2c:6a:7b:b3:06:87: 0a:5d:36:99:0e:bb:6e:1a:70:d8:66:81:73:90:5a: 7d:0d:6a:c8:b5:54:42:0a:e3:63:34:42:91:ca:bb: 08:50:b0:85:04:ba:4a:72:86:4c:3f:3b:3e:ff:5a: c8:02:ff:ad:4d:33:31:c8:2b:7e:dc:82:c0:fc:e4: 2b:09:3c:53:32:34:92:b7:55:e5:4d:2f:3e:39:4f: ca:b7:9e:83:26:ea:ec:4c:f0:86:23:1c:0a:35:a9: e9:d9:b7:20:cb:78:f7:95:0a:c2:f7:7a:30:10:93: 9e:0c:39:69:53:40:f9:c9:b1:cc:2f:3b:6f:cd:68: 5c:ca:25:d2:ce:9a:fe:99:eb:07:8c:14:ec:12:2a: d8:97:44:b3:3f:73:99:19:db:7c:8c:59:51:25:02: e5:a1:a3:1c:9d:25:60:b0:f3:09:76:5a:78:ee:a2: ac:8b:54:29:dd:b3:a5:c4:41:de:be:2b:7e:97:a6: ab:0b:f8:48:5a:dd:6d:01:d6:c7:89:bb:06:4a:7a: 76:99:55:5d:13:6b:28:02:0c:60:13:e6:9e:27:66: c2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B8:4F:62:C6:1C:41:52:8C:23:DD:C5:8D:87:89:51:86:5D:2F:17 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ed:cb:ce:13:88:9f:b8:9e:9a:ca:d9:bc:51:25:0a:87:b6: d1:52:7f:61:c5:af:70:44:50:93:a6:dc:3d:4a:6c:c3:f5:7e: a0:32:85:9f:e3:13:e0:0d:32:8b:83:a1:67:b1:3e:fa:ea:67: 86:24:58:47:6c:03:7c:f3:bd:40:09:d2:83:fe:e9:0e:e5:8d: 5a:12:a7:6a:16:17:65:c4:4c:67:aa:0a:ec:4d:79:6b:70:ea: 8d:3b:b1:ff:f6:3c:2d:88:74:cd:2c:92:44:0d:eb:ec:3b:ed: 15:ec:df:82:c0:75:85:eb:e5:4c:81:05:2a:d1:e6:06:22:02: 7a:cb:ce:0a:3c:d3:43:86:ed:ee:a4:6f:da:ac:44:9c:88:12: ef:9f:bc:b2:e0:51:40:8b:03:23:5a:43:70:39:73:41:26:2a: 91:be:e2:17:af:6d:65:03:0f:0b:53:9b:36:cf:b6:07:f1:36: 60:76:da:09:b5:7b:a7:42:d1:93:1b:e4:d5:6f:f9:4b:30:94: a4:da:ca:b2:98:13:99:8d:44:dd:b8:24:7a:8f:5a:52:fb:9c: f2:17:d9:9e:67:2a:1d:6d:81:71:57:79:68:19:04:8c:c1:4a: 0c:ac:57:46:aa:ce:e0:25:b1:18:f3:68:d9:16:b3:6f:7b:07: 67:47:fd:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwODA5MDIwMjEyWhcNMjUwODE2MDIwMjEyWjAYMRYwFAYD VQQDEw02ODk2YWMyNC1lNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXRWExotHhit3D4cx7okEDUkdsJa4feI1UZxHDZFNgJF+Pt2UT4sanuzBocK XTaZDrtuGnDYZoFzkFp9DWrItVRCCuNjNEKRyrsIULCFBLpKcoZMPzs+/1rIAv+t TTMxyCt+3ILA/OQrCTxTMjSSt1XlTS8+OU/Kt56DJursTPCGIxwKNanp2bcgy3j3 lQrC93owEJOeDDlpU0D5ybHMLztvzWhcyiXSzpr+mesHjBTsEirYl0SzP3OZGdt8 jFlRJQLloaMcnSVgsPMJdlp47qKsi1Qp3bOlxEHevit+l6arC/hIWt1tAdbHibsG Snp2mVVdE2soAgxgE+aeJ2bC6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE24T2LG HEFSjCPdxY2HiVGGXS8XMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP7cvOE4ifuJ6aytm8USUKh7bRUn9hxa9wRFCTptw9SmzD9X6gMoWf 4xPgDTKLg6FnsT766meGJFhHbAN8871ACdKD/ukO5Y1aEqdqFhdlxExnqgrsTXlr cOqNO7H/9jwtiHTNLJJEDevsO+0V7N+CwHWF6+VMgQUq0eYGIgJ6y84KPNNDhu3u pG/arESciBLvn7yy4FFAiwMjWkNwOXNBJiqRvuIXr21lAw8LU5s2z7YH8TZgdtoJ tXunQtGTG+TVb/lLMJSk2sqymBOZjUTduCR6j1pS+5zyF9meZyodbYFxV3loGQSM wUoMrFdGqs7gJbEY82jZFrNvewdnR/20 -----END CERTIFICATE-----Generated at Sun Aug 10 04:29:52 2025 by rpki-client