$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: 4QD4F+9dla0TTqdOqkpse0NDWG3p8z6mN6NRbpsfj4E= Subject key identifier: 2C:B5:D4:4D:EA:30:10:5A:E8:52:00:09:BC:BA:13:8A:39:F7:41:23 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 13BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 138C Signing time: Sat 14 Jun 2025 16:56:51 +0000 Manifest this update: Sat 14 Jun 2025 16:56:51 +0000 Manifest next update: Sat 21 Jun 2025 16:56:51 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: NHC5K0nZ4KRN50ytV7GQEzrJjh97DjXvn/xLfv2BV1c=) 2: F046E896E9B411EFADF57822C4F9AE02.roa (hash: l+bVVNm3bbMbBf2jMtRM0oEIl5YU3KZtVBp4SxX67pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5053 (0x13bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: Jun 14 16:56:51 2025 GMT Not After : Jun 21 16:56:51 2025 GMT Subject: CN=684da9d3-f98f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ec:a4:49:1d:ae:40:2b:dc:b9:85:82:01:e6: 72:92:82:d5:d9:65:c1:21:8e:a1:1f:6d:d0:cf:7c: 4e:47:01:d0:c6:85:b9:29:94:94:37:b2:1a:f8:f2: 18:71:40:5e:be:7e:56:33:79:af:69:9f:c4:36:c1: bf:c5:ad:fc:c8:8f:60:0d:12:3b:57:fb:0e:88:12: 4a:2d:60:c6:0b:ae:88:2d:e4:e4:65:e9:7e:bb:29: dc:5d:8e:f2:5a:f6:c1:07:63:93:49:00:72:55:a5: f1:77:5d:d8:52:b8:b6:24:7b:09:f1:c8:ab:04:f7: f5:94:50:57:53:4d:75:c2:ef:bc:03:c8:da:dc:2e: fb:58:56:02:88:36:50:3d:ce:9e:df:81:7a:ff:11: 60:21:c4:ea:db:ce:1f:87:36:97:99:cb:3b:ee:de: bf:87:87:9b:9b:3f:8c:04:e2:5a:49:57:53:6e:aa: f3:0d:3c:26:44:a8:0a:61:4e:dd:0c:76:72:51:79: ec:d5:96:b8:97:3a:e8:88:df:29:9c:dc:83:e0:9f: dc:69:f8:a5:58:91:d5:52:6d:4d:04:c6:4d:49:e4: 09:f6:ce:37:e3:a1:ee:24:d2:97:a1:88:b0:31:38: 78:aa:20:b3:a0:68:3c:fa:b3:7e:1e:91:85:86:e5: 57:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B5:D4:4D:EA:30:10:5A:E8:52:00:09:BC:BA:13:8A:39:F7:41:23 X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:28:a3:4a:c4:90:0d:32:4e:17:1d:62:55:0f:8c:3b:28:3d: 42:86:9f:67:d8:68:d7:b2:7e:b5:14:8d:8f:4e:07:74:28:9b: d4:0b:ba:c1:17:44:b3:44:c1:3c:e8:25:df:15:c7:e3:6c:83: 62:55:34:31:e5:6f:74:ff:46:c1:71:55:62:cd:c0:d1:c4:e6: 2a:9b:5a:bf:72:71:7e:8c:f8:fe:72:d3:4c:56:50:60:91:06: 40:3c:df:0d:93:25:db:20:d0:5a:0a:ec:3e:35:5c:5a:f0:dc: ca:c1:82:53:3c:b8:e1:60:2d:00:75:3b:62:ce:2e:e3:d7:cf: 4d:bb:be:db:7d:3f:b9:b6:9b:19:5c:83:17:7d:df:b8:f7:7e: b3:99:c7:84:41:3a:a4:6f:ae:b3:68:ba:84:29:af:ee:8d:8a: 0d:2e:42:d4:0a:4a:43:62:b7:88:76:f1:c5:9a:92:d7:f7:59: 3a:e4:1d:12:e2:9c:69:1b:dc:a6:77:1b:03:fa:38:8f:89:da: bf:7f:e0:4b:4a:ef:b8:bd:18:9b:a9:93:36:c0:c9:a6:9f:b4: ec:14:70:04:dc:aa:f8:aa:2f:30:25:97:8e:c6:a6:de:85:cd: f5:aa:d7:9a:c0:3c:b2:4d:cf:89:f5:30:8b:79:41:b9:b6:86: ac:62:0c:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNjE0MTY1NjUxWhcNMjUwNjIxMTY1NjUxWjAYMRYwFAYD VQQDEw02ODRkYTlkMy1mOThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruykSR2uQCvcuYWCAeZykoLV2WXBIY6hH23Qz3xORwHQxoW5KZSUN7Ia+PIY cUBevn5WM3mvaZ/ENsG/xa38yI9gDRI7V/sOiBJKLWDGC66ILeTkZel+uyncXY7y WvbBB2OTSQByVaXxd13YUri2JHsJ8cirBPf1lFBXU011wu+8A8ja3C77WFYCiDZQ Pc6e34F6/xFgIcTq284fhzaXmcs77t6/h4ebmz+MBOJaSVdTbqrzDTwmRKgKYU7d DHZyUXns1Za4lzroiN8pnNyD4J/cafilWJHVUm1NBMZNSeQJ9s4346HuJNKXoYiw MTh4qiCzoGg8+rN+HpGFhuVXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy11E3q MBBa6FIACby6E4o590EjMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFKKNKxJANMk4XHWJVD4w7KD1Chp9n2GjXsn61FI2PTgd0KJvUC7rB F0SzRME86CXfFcfjbINiVTQx5W90/0bBcVVizcDRxOYqm1q/cnF+jPj+ctNMVlBg kQZAPN8NkyXbINBaCuw+NVxa8NzKwYJTPLjhYC0AdTtizi7j189Nu77bfT+5tpsZ XIMXfd+4936zmceEQTqkb66zaLqEKa/ujYoNLkLUCkpDYreIdvHFmpLX91k65B0S 4pxpG9ymdxsD+jiPidq/f+BLSu+4vRibqZM2wMmmn7TsFHAE3Kr4qi8wJZeOxqbe hc31qteawDyyTc+J9TCLeUG5toasYgzE -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:24 2025 by rpki-client