$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: hI/jXsWQNZOjs/t15mrx2s3PPpiXMvQoxpmXgXfrunk= Subject key identifier: FA:D1:DE:E0:16:45:3D:BD:2A:C9:43:66:FE:3A:18:CC:8E:FE:1D:01 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0809 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 07F4 Signing time: Sun 10 Aug 2025 21:02:59 +0000 Manifest this update: Sun 10 Aug 2025 21:02:58 +0000 Manifest next update: Sun 17 Aug 2025 21:02:58 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: zIkRBaR9F9Fj091B8jpWR0I4Z4h3qTZiBIKs8O2LZ3E=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 10 21:02:58 2025 GMT Not After : Aug 17 21:02:58 2025 GMT Subject: CN=68990903-fd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a3:a5:67:ec:64:ec:4c:ab:ab:c1:41:d4:a2: 80:13:b0:64:32:a1:c2:8f:50:1d:fa:5b:5a:fa:c9: 91:d7:3f:52:ed:e2:46:d2:22:15:0c:9f:bc:20:25: 5f:b8:e7:58:fa:aa:18:60:e5:e3:cb:dc:a6:3d:d4: 9e:61:fc:00:67:8b:cb:8b:e4:65:2c:e1:5d:a6:e5: 45:4b:ae:37:03:92:a2:db:7d:fd:cb:d2:5a:42:e4: 1c:b3:28:17:7c:d0:00:99:ef:4d:e7:70:18:45:18: 04:30:06:eb:f4:4a:d5:33:29:d4:b4:ca:89:ce:97: d3:c5:f2:88:4a:da:6f:d7:b1:c5:70:99:31:01:10: 6d:d1:22:46:f5:31:69:19:db:00:00:20:5f:7e:93: c1:49:61:ff:bc:4f:49:43:87:8b:f9:5a:7c:e7:74: 74:de:f0:0c:0a:c8:c6:03:ca:d4:6b:00:36:5c:92: 5e:6c:b5:3f:6b:1e:6e:36:51:8b:61:94:e2:42:f5: eb:cf:7b:db:c2:95:88:aa:a9:f7:02:57:86:65:2e: a4:eb:70:6e:4a:70:6c:de:26:10:85:27:25:ec:84: 98:15:8c:1c:b7:74:12:25:be:d8:03:9e:7e:96:ec: 7b:74:1e:96:70:a8:8e:2a:41:ea:05:b1:3b:bd:4f: bc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D1:DE:E0:16:45:3D:BD:2A:C9:43:66:FE:3A:18:CC:8E:FE:1D:01 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:63:29:30:59:e9:7f:3f:ab:7d:9c:22:0d:fb:8e:b4:f6:3e: 20:b0:2e:70:60:d4:d9:33:6b:29:2a:b2:12:4e:2f:6f:46:dd: 7f:07:8f:91:93:fc:eb:a0:01:69:95:aa:4d:7b:c9:48:8f:ac: 87:b0:7a:4c:89:01:16:93:e3:f9:95:36:04:82:00:97:45:8a: 2d:08:7e:c0:31:da:75:42:78:e8:ee:fc:9d:69:c0:d4:91:9d: 15:35:16:27:82:35:4f:a1:1d:dc:ea:55:0a:19:d7:55:61:a9: 0d:fa:ac:d3:7a:12:ad:73:35:0d:a3:7c:d8:03:3a:92:d3:4d: 33:97:ac:83:68:9b:4c:3c:7c:7d:cf:b8:d3:54:a3:9c:8d:1d: 97:8b:74:a5:2b:13:f0:75:c5:f2:65:85:db:30:94:c3:77:43: 04:d1:ac:75:69:18:b1:3a:98:2c:83:3b:69:d2:ef:20:c5:94: 83:a2:e4:d5:ae:3f:60:c3:eb:44:11:81:c5:51:ec:de:90:02: f6:8a:29:e7:a1:fe:3c:01:e4:95:11:88:b5:07:ad:65:08:f1: 46:c6:83:81:ce:f4:8f:a6:11:30:16:63:22:0d:e1:3e:ba:f8: 9f:1f:2a:dd:8c:1b:c9:e6:64:3d:8f:ee:13:d0:4f:94:46:f7: 3b:3d:cf:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwODEwMjEwMjU4WhcNMjUwODE3MjEwMjU4WjAYMRYwFAYD VQQDEw02ODk5MDkwMy1mZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmKOlZ+xk7Eyrq8FB1KKAE7BkMqHCj1Ad+lta+smR1z9S7eJG0iIVDJ+8ICVf uOdY+qoYYOXjy9ymPdSeYfwAZ4vLi+RlLOFdpuVFS643A5Ki2339y9JaQuQcsygX fNAAme9N53AYRRgEMAbr9ErVMynUtMqJzpfTxfKIStpv17HFcJkxARBt0SJG9TFp GdsAACBffpPBSWH/vE9JQ4eL+Vp853R03vAMCsjGA8rUawA2XJJebLU/ax5uNlGL YZTiQvXrz3vbwpWIqqn3AleGZS6k63BuSnBs3iYQhScl7ISYFYwct3QSJb7YA55+ lux7dB6WcKiOKkHqBbE7vU+8KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrR3uAW RT29KslDZv46GMyO/h0BMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTYykwWel/P6t9nCIN+4609j4gsC5wYNTZM2spKrISTi9vRt1/B4+R k/zroAFplapNe8lIj6yHsHpMiQEWk+P5lTYEggCXRYotCH7AMdp1Qnjo7vydacDU kZ0VNRYngjVPoR3c6lUKGddVYakN+qzTehKtczUNo3zYAzqS000zl6yDaJtMPHx9 z7jTVKOcjR2Xi3SlKxPwdcXyZYXbMJTDd0ME0ax1aRixOpgsgztp0u8gxZSDouTV rj9gw+tEEYHFUezekAL2iinnof48AeSVEYi1B61lCPFGxoOBzvSPphEwFmMiDeE+ uvifHyrdjBvJ5mQ9j+4T0E+URvc7Pc/0 -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:48 2025 by rpki-client