$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: okeX0dZtwNNAjHrMl47T+X1nDZ8MBV+CS9yusuuL3W8= Subject key identifier: 43:46:D8:31:7C:66:96:6A:64:2D:B0:59:A5:A8:58:B9:E7:10:C7:B8 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 10 Signing time: Mon 11 Aug 2025 08:22:46 +0000 Manifest this update: Mon 11 Aug 2025 08:22:45 +0000 Manifest next update: Mon 18 Aug 2025 08:22:45 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: oCNRWZqw4XL7WVqLnP0aJwbsUOBdYwzW0FhBwFFGqBs=) 2: 7FD328F0623011F080AE2931C4F9AE02.roa (hash: ONyCk1roWHelbumh8YXUaFO1cjx4c4+1qAe3JKP89I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Aug 11 08:22:45 2025 GMT Not After : Aug 18 08:22:45 2025 GMT Subject: CN=6899a855-9edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6e:7d:42:eb:6a:ea:9a:90:9f:14:02:2c:b4: 1c:2e:14:bd:9c:6a:b5:a4:2e:41:73:e0:5a:4e:f1: 54:44:87:aa:86:b4:32:5f:e4:37:3e:26:c3:bf:a5: 28:84:44:e7:fe:9f:4c:1b:e7:7f:15:67:cc:12:d0: b7:9c:0e:41:0b:b4:13:a4:a2:6c:bb:1d:8d:99:95: 85:45:99:d2:a8:92:f5:f0:ad:45:40:8e:cd:e4:00: e5:f5:8f:da:32:ad:95:7b:65:09:5f:2f:82:44:c0: b4:d2:86:50:a2:43:d0:af:eb:e9:a6:5c:85:e5:09: 21:4f:67:94:cf:64:3b:9e:1d:a4:cc:e6:53:8f:a2: 53:4a:5d:5f:a0:d3:89:13:bc:ab:b5:9b:eb:c1:f0: 25:e5:c8:8a:4a:2f:fb:11:69:ea:81:c1:e0:61:ea: e8:c5:c7:63:49:54:df:c9:23:57:b2:0a:ae:c4:c7: d8:8a:b4:d8:7c:9b:af:c2:43:9a:0b:1d:a3:ce:36: ba:ef:03:19:5c:0e:03:3e:6a:11:6f:f5:44:1d:6f: 7e:7f:8a:56:fa:b2:ff:ac:4d:16:8f:06:81:4a:37: 57:5e:a8:1f:6e:ad:94:4e:f4:c2:48:a0:d1:6e:61: fc:bb:d9:10:ec:19:5c:16:c8:29:d1:61:65:37:fb: 9e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:46:D8:31:7C:66:96:6A:64:2D:B0:59:A5:A8:58:B9:E7:10:C7:B8 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:17:39:bc:40:ad:3c:fd:a5:11:21:cb:db:d0:16:f6:28:a1: e2:63:d3:04:ed:38:97:11:c7:ac:e1:9b:76:ec:fa:ec:e9:df: 0a:c9:fb:33:df:33:89:76:70:6e:ac:d3:f2:59:77:8a:af:55: 9f:8a:05:d2:fd:0a:3f:6b:c5:7d:66:6a:9d:4e:4f:a2:ed:47: 7d:3a:9e:e5:38:31:82:09:8e:12:05:65:b5:f4:54:2c:27:a7: 59:19:62:36:9d:bc:98:19:ed:37:54:65:6c:ba:6f:80:45:f2: af:b9:71:5d:b2:28:cc:80:bb:ff:7b:46:71:b4:45:2c:7e:6c: 7d:ed:6a:41:5f:aa:4d:ca:0f:fc:d7:12:a7:91:72:ae:73:cd: 88:25:20:2d:d9:3d:33:ad:43:6b:31:cb:e4:2c:03:ee:05:64: 7d:d9:86:52:94:17:93:ba:7b:c0:ef:d1:e9:2b:14:c6:bb:90: 06:79:49:29:ea:bf:cf:c2:81:0f:7a:ee:31:38:24:27:56:a5: 6d:61:7a:10:ba:73:a4:52:7c:71:d9:8d:16:8d:5e:bc:4a:63: dc:7c:1f:92:c7:31:7e:1d:0d:42:79:dd:d7:2d:1d:9c:21:26: ad:d0:9a:66:61:9d:0e:5f:1d:d4:7d:61:0e:42:45:fd:10:94: 16:be:66:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNTA4MTEwODIyNDVaFw0yNTA4MTgwODIyNDVaMBgxFjAUBgNV BAMTDTY4OTlhODU1LTllZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAbn1C62rqmpCfFAIstBwuFL2carWkLkFz4FpO8VREh6qGtDJf5Dc+JsO/pSiE ROf+n0wb538VZ8wS0LecDkELtBOkomy7HY2ZlYVFmdKokvXwrUVAjs3kAOX1j9oy rZV7ZQlfL4JEwLTShlCiQ9Cv6+mmXIXlCSFPZ5TPZDueHaTM5lOPolNKXV+g04kT vKu1m+vB8CXlyIpKL/sRaeqBweBh6ujFx2NJVN/JI1eyCq7Ex9iKtNh8m6/CQ5oL HaPONrrvAxlcDgM+ahFv9UQdb35/ilb6sv+sTRaPBoFKN1deqB9urZRO9MJIoNFu Yfy72RDsGVwWyCnRYWU3+56lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ0bYMXxm lmpkLbBZpahYuecQx7gwHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJMXObxArTz9pREhy9vQFvYooeJj0wTtOJcRx6zhm3bs+uzp3wrJ+zPf M4l2cG6s0/JZd4qvVZ+KBdL9Cj9rxX1map1OT6LtR306nuU4MYIJjhIFZbX0VCwn p1kZYjadvJgZ7TdUZWy6b4BF8q+5cV2yKMyAu/97RnG0RSx+bH3takFfqk3KD/zX EqeRcq5zzYglIC3ZPTOtQ2sxy+QsA+4FZH3ZhlKUF5O6e8Dv0ekrFMa7kAZ5SSnq v8/CgQ967jE4JCdWpW1hehC6c6RSfHHZjRaNXrxKY9x8H5LHMX4dDUJ53dctHZwh Jq3QmmZhnQ5fHdR9YQ5CRf0QlBa+ZuU= -----END CERTIFICATE-----Generated at Wed Aug 13 05:35:55 2025 by rpki-client