$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: aJoLpUVGHDjaciensG8ReGnCcnDcTP+ii6aP/tFIxcs= Subject key identifier: 1B:47:86:F1:E8:8C:54:B5:0C:DD:89:CC:2D:95:54:E3:B6:2E:3B:6A Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 98 Signing time: Tue 05 Aug 2025 07:02:56 +0000 Manifest this update: Tue 05 Aug 2025 07:02:55 +0000 Manifest next update: Tue 12 Aug 2025 07:02:55 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: QqBuSQOyS3bfgRAJgaMW04ZjZxpILoeWX+JgtCZcMio=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 76K1YbroX8X8W0IqnMICi5xKvh2ELCOHzwZ1tdiFlUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Aug 5 07:02:55 2025 GMT Not After : Aug 12 07:02:55 2025 GMT Subject: CN=6891aca0-f60e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b4:e9:e5:34:f4:9a:1d:a2:eb:39:fc:7c:da: 86:c7:12:4b:8c:51:c4:74:45:e7:dd:ca:f3:45:6b: cf:7e:57:86:a9:5f:73:e3:59:23:5c:1e:61:ec:aa: 34:e2:dc:c4:6c:9b:9f:78:66:b4:57:fe:2d:2d:3f: 64:a1:a0:4f:b6:9b:3c:16:53:f0:a4:f4:09:56:b9: 54:f5:59:58:4e:bb:fe:06:18:ab:6f:1e:0d:e2:8f: b8:1d:7e:e4:6a:40:ac:82:35:2b:67:9c:26:04:a6: 25:89:54:29:dc:47:2f:74:ae:ff:49:fd:7d:e9:00: 7a:83:05:7d:cf:08:84:64:9d:bd:4f:11:3c:9b:17: 6d:9d:2a:3d:d7:16:07:f0:8e:57:0f:79:06:fc:af: 8c:f3:fa:d0:44:aa:ed:97:5e:69:45:9c:8b:1f:9c: f3:64:24:56:08:e8:8f:92:b8:db:34:ae:df:60:d8: ab:aa:a3:a5:a9:11:a4:0a:63:e5:f9:d9:11:e4:c4: 53:36:a8:bb:c2:ee:7b:62:dc:fe:c3:7a:35:8f:63: c7:90:01:12:c7:a3:03:5d:73:4d:82:2a:04:1d:fc: 60:ee:27:cf:95:c2:53:14:71:38:a6:a5:92:12:af: 5c:fc:29:17:c3:f8:63:38:22:bd:3e:91:02:b5:ce: ef:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:47:86:F1:E8:8C:54:B5:0C:DD:89:CC:2D:95:54:E3:B6:2E:3B:6A X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:c6:2c:7a:40:2c:ab:5e:f8:3e:ee:62:61:3e:b0:98:8e:cf: a0:23:64:d7:9a:3d:ac:c7:e5:c7:e7:ee:11:d9:a5:39:97:75: 0e:59:ca:a5:ff:40:16:64:ec:10:cb:dc:6d:f2:2c:fa:3f:52: 3e:e0:23:a1:2f:17:f6:bf:d1:31:d7:81:37:44:d3:5e:dc:ce: c6:b8:ec:30:94:dd:68:63:1b:f4:4b:44:3b:d5:0a:05:52:fd: a3:6e:5e:90:d6:60:b7:ef:a2:c2:2e:13:44:43:f2:48:0e:ab: 3c:55:2e:a4:9d:90:64:07:9e:17:63:be:d2:64:54:9a:12:b2: e1:c0:3c:1a:25:95:2c:d2:18:d0:f7:8e:bd:db:42:a9:1a:8c: f5:c5:11:ef:9a:28:74:04:75:3f:c9:2a:25:b1:75:36:0e:90: 18:b5:0d:9c:bf:86:dc:02:bb:ee:15:14:c6:c7:0d:f6:14:c2: 06:41:14:eb:2e:81:54:eb:a9:5a:b4:45:10:8d:66:5e:08:6c: 45:f3:72:6c:00:66:4a:7d:b2:9d:79:30:30:b5:bf:26:1e:8f: d9:2a:da:f8:7b:a8:f2:e2:db:a6:08:db:af:71:f0:e8:bb:a7: 2d:13:80:03:26:4d:4a:ec:99:0e:ae:c1:98:71:0d:fa:10:ae: cf:c5:ea:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUwODA1MDcwMjU1WhcNMjUwODEyMDcwMjU1WjAYMRYwFAYD VQQDEw02ODkxYWNhMC1mNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrTp5TT0mh2i6zn8fNqGxxJLjFHEdEXn3crzRWvPfleGqV9z41kjXB5h7Ko0 4tzEbJufeGa0V/4tLT9koaBPtps8FlPwpPQJVrlU9VlYTrv+Bhirbx4N4o+4HX7k akCsgjUrZ5wmBKYliVQp3EcvdK7/Sf196QB6gwV9zwiEZJ29TxE8mxdtnSo91xYH 8I5XD3kG/K+M8/rQRKrtl15pRZyLH5zzZCRWCOiPkrjbNK7fYNirqqOlqRGkCmPl +dkR5MRTNqi7wu57Ytz+w3o1j2PHkAESx6MDXXNNgioEHfxg7ifPlcJTFHE4pqWS Eq9c/CkXw/hjOCK9PpECtc7v7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtHhvHo jFS1DN2JzC2VVOO2LjtqMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAxix6QCyrXvg+7mJhPrCYjs+gI2TXmj2sx+XH5+4R2aU5l3UOWcql /0AWZOwQy9xt8iz6P1I+4COhLxf2v9Ex14E3RNNe3M7GuOwwlN1oYxv0S0Q71QoF Uv2jbl6Q1mC376LCLhNEQ/JIDqs8VS6knZBkB54XY77SZFSaErLhwDwaJZUs0hjQ 946920KpGoz1xRHvmih0BHU/ySolsXU2DpAYtQ2cv4bcArvuFRTGxw32FMIGQRTr LoFU66latEUQjWZeCGxF83JsAGZKfbKdeTAwtb8mHo/ZKtr4e6jy4tumCNuvcfDo u6ctE4ADJk1K7JkOrsGYcQ36EK7PxepW -----END CERTIFICATE-----Generated at Tue Aug 5 17:28:41 2025 by rpki-client