$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: /lDxiOpTwBW1Jc7OVy09iAk9Eu73eQ57lL6j1sy5eEk= Subject key identifier: 3A:B1:1A:A4:D0:1B:FA:09:88:84:C1:27:F3:47:A0:19:12:C0:0A:C1 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 1392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 137E Signing time: Sat 14 Jun 2025 16:56:14 +0000 Manifest this update: Sat 14 Jun 2025 16:56:13 +0000 Manifest next update: Sat 21 Jun 2025 16:56:13 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: NhotP9r9qNppNxB4NHf/9jDeOZTrwx+CQumoEZpm5aY=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5010 (0x1392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Jun 14 16:56:13 2025 GMT Not After : Jun 21 16:56:13 2025 GMT Subject: CN=684da9ae-6058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f0:8d:a1:7d:1d:04:a2:22:ff:c1:67:64:7d: 0d:4e:5e:fd:6d:66:7c:0a:aa:b5:2b:49:6b:15:35: 55:27:c4:a3:c6:77:e6:a7:c7:5c:ac:da:51:9e:10: 2a:c3:a7:df:02:c8:05:44:a2:64:c3:03:d7:b5:3e: aa:59:2b:d2:2b:77:f9:ee:7b:c4:63:98:c0:f7:01: 8a:a9:22:a4:59:ab:91:af:50:e5:9b:5a:c9:76:5d: 93:f7:e8:2a:86:84:34:07:1a:8a:6a:aa:44:25:78: b5:1a:96:b3:66:74:f3:f3:de:c9:7e:d3:6d:45:65: fd:b5:e3:1a:c5:a3:d3:a9:fc:67:6b:30:9c:e4:7c: 2f:18:de:11:17:08:2b:15:31:94:b7:6a:e2:94:e2: 02:06:53:58:22:43:be:e6:26:26:a7:8a:b3:a2:55: a0:c9:58:b3:42:c2:8e:31:98:85:2f:71:41:b1:ec: 9d:cd:13:4c:c2:51:19:fa:02:30:7d:03:df:ef:c0: 3b:cc:cc:27:ef:6f:e7:d9:57:2a:62:71:d9:b7:54: fc:dc:6a:c3:8a:98:7f:e0:41:91:e9:2d:ac:4c:60: 46:43:61:4e:44:88:22:7d:f8:d0:1d:03:a8:fc:d3: 5e:74:0f:23:c6:0c:88:4c:e9:42:ca:e0:86:cc:7f: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B1:1A:A4:D0:1B:FA:09:88:84:C1:27:F3:47:A0:19:12:C0:0A:C1 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:7d:3d:94:9b:59:43:1b:2c:ca:0d:c9:07:f5:91:41:fc:09: 66:a1:e3:02:74:2f:63:0d:f4:9a:05:ec:39:52:52:34:e3:bb: 5a:52:19:03:0b:d7:42:b4:98:83:da:c6:a4:d1:75:92:29:c4: bf:7a:e7:bc:af:9d:72:94:12:d2:a7:b1:ad:fa:d1:c3:67:2f: 5e:28:3a:e0:60:0a:d4:2a:c5:c9:8d:68:50:45:cd:50:ef:4a: fa:c6:9c:15:7e:5f:66:b3:f7:fb:f7:6e:3d:7c:8f:fc:5c:eb: 88:84:d2:1b:bc:a4:13:66:b1:9a:32:26:33:85:b7:bf:1b:28: 50:62:af:66:c6:1f:77:cc:b2:1a:dc:2b:e2:b5:f8:7f:ad:56: 8d:38:d3:ee:8b:24:ad:c5:4f:c8:56:52:14:db:b1:3b:99:c4: 4e:96:6c:ca:ee:e1:36:a5:84:52:96:23:db:01:7f:88:98:af: 9c:4e:45:f3:80:d6:d4:e0:9f:ee:a5:fb:ca:fa:4c:4a:5e:8e: a2:7c:ac:30:0e:12:90:2e:50:55:11:f4:de:1b:81:d0:09:ea: 82:57:1a:7f:83:95:3b:c8:36:4f:81:4f:eb:d0:4e:e8:1c:db: 33:74:a7:bf:0e:a5:b7:6b:19:f3:a4:88:46:cd:25:ef:02:4a: eb:8f:2e:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwNjE0MTY1NjEzWhcNMjUwNjIxMTY1NjEzWjAYMRYwFAYD VQQDEw02ODRkYTlhZS02MDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/CNoX0dBKIi/8FnZH0NTl79bWZ8Cqq1K0lrFTVVJ8Sjxnfmp8dcrNpRnhAq w6ffAsgFRKJkwwPXtT6qWSvSK3f57nvEY5jA9wGKqSKkWauRr1Dlm1rJdl2T9+gq hoQ0BxqKaqpEJXi1GpazZnTz897JftNtRWX9teMaxaPTqfxnazCc5HwvGN4RFwgr FTGUt2rilOICBlNYIkO+5iYmp4qzolWgyVizQsKOMZiFL3FBseydzRNMwlEZ+gIw fQPf78A7zMwn72/n2VcqYnHZt1T83GrDiph/4EGR6S2sTGBGQ2FORIgiffjQHQOo /NNedA8jxgyITOlCyuCGzH+mPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqxGqTQ G/oJiITBJ/NHoBkSwArBMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCfT2Um1lDGyzKDckH9ZFB/AlmoeMCdC9jDfSaBew5UlI047taUhkD C9dCtJiD2sak0XWSKcS/eue8r51ylBLSp7Gt+tHDZy9eKDrgYArUKsXJjWhQRc1Q 70r6xpwVfl9ms/f79249fI/8XOuIhNIbvKQTZrGaMiYzhbe/GyhQYq9mxh93zLIa 3Cvitfh/rVaNONPuiyStxU/IVlIU27E7mcROlmzK7uE2pYRSliPbAX+ImK+cTkXz gNbU4J/upfvK+kxKXo6ifKwwDhKQLlBVEfTeG4HQCeqCVxp/g5U7yDZPgU/r0E7o HNszdKe/DqW3axnzpIhGzSXvAkrrjy7v -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:45 2025 by rpki-client