$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: lWEB2KYziunUs9Sp81AVupPzecpL9POuA3bLDFNOT3s= Subject key identifier: 12:C4:75:A2:B4:48:AB:1D:DA:32:86:2F:BB:20:74:DB:FB:CA:DF:EB Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 139A Signing time: Fri 08 Aug 2025 17:08:57 +0000 Manifest this update: Fri 08 Aug 2025 17:08:57 +0000 Manifest next update: Fri 15 Aug 2025 17:08:57 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: ZBCkgix8rmXP1fSif43WpxGf1SAA75igSG1vu7IqeTk=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5038 (0x13ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Aug 8 17:08:57 2025 GMT Not After : Aug 15 17:08:57 2025 GMT Subject: CN=68962f29-d65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ef:17:ab:79:1f:08:5f:a3:0b:41:2c:bf:85: 36:ff:d7:66:9b:cf:34:28:c2:09:a7:d9:60:ed:0a: 1c:d9:89:00:d3:33:6f:6b:47:b6:00:55:72:e8:be: 21:c3:f8:ff:8a:15:08:6a:8d:05:1f:29:d1:42:7c: be:35:d5:8e:2f:af:47:29:0c:cb:da:7e:b0:b1:2a: 13:99:1c:94:de:c9:6a:8a:98:a2:3b:ea:49:2c:0e: b3:1f:4b:48:38:0c:48:e3:72:9a:1e:94:b1:6e:7c: 9e:72:80:7d:f9:dc:4d:ac:96:95:d1:d0:7d:3e:72: 94:78:b7:5d:61:6c:ad:cc:9c:97:2d:d4:1b:f4:9c: 2c:97:db:1a:0a:52:41:46:9a:00:bc:54:d6:3b:55: 42:87:cc:97:9d:4a:d2:ab:ec:df:c7:e2:ba:75:98: 1d:cf:7b:49:2e:41:1a:80:c7:7e:71:a0:58:cb:0a: bb:fa:22:8b:50:45:95:0f:96:48:53:04:eb:8c:c7: 7b:01:14:c9:32:19:8a:f0:65:0e:c3:89:b1:0e:43: 6a:3d:5d:f8:be:2d:dd:9f:9f:92:63:12:0e:61:70: 4b:d1:40:d6:0e:a7:61:3d:00:57:ae:fb:1c:8e:e2: 6e:e5:cd:a3:04:d9:9f:95:97:c8:41:c7:2e:f5:81: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C4:75:A2:B4:48:AB:1D:DA:32:86:2F:BB:20:74:DB:FB:CA:DF:EB X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:b4:cf:27:02:15:b5:bc:73:b0:3d:ab:80:77:1f:db:19:7b: de:79:fe:42:65:08:62:0f:fa:f9:a7:38:30:95:80:bf:29:05: 2b:98:56:92:46:33:f7:2f:32:ee:33:4d:3b:09:c6:d2:09:d6: 42:e3:8f:fc:20:65:09:13:05:27:1a:02:3e:d3:09:59:83:5e: b4:2f:43:bd:1b:de:22:57:36:22:26:cc:7e:a4:c6:bb:aa:d4: d2:36:ef:b7:46:e5:f0:c4:f7:2c:1f:52:3a:66:80:cc:6a:b6: 8a:b8:e3:11:e1:19:bd:01:e1:f9:b8:68:0d:ad:2d:e3:97:1c: 4e:c0:f8:00:5b:54:e2:b2:e1:9e:3d:fe:2e:7a:c7:49:8c:81: 94:77:ab:3e:3f:e2:68:49:50:18:1f:0e:41:01:55:bf:01:9f: 08:aa:41:f8:51:d9:55:c1:12:56:5b:34:be:83:8c:8a:87:56: 8f:48:86:3d:47:49:b8:4b:14:c3:9f:ef:65:52:73:a6:46:15: 9d:3a:12:40:b1:d1:4d:e9:c4:99:f1:8c:ae:2f:a2:6a:56:ec: d2:19:88:be:33:6f:68:75:11:86:78:be:9a:21:c5:21:4d:e9: a7:a9:ff:a3:b3:e1:db:6c:26:b4:39:e2:40:3d:03:d2:2e:19: 62:52:b6:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwODA4MTcwODU3WhcNMjUwODE1MTcwODU3WjAYMRYwFAYD VQQDEw02ODk2MmYyOS1kNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+8Xq3kfCF+jC0Esv4U2/9dmm880KMIJp9lg7Qoc2YkA0zNva0e2AFVy6L4h w/j/ihUIao0FHynRQny+NdWOL69HKQzL2n6wsSoTmRyU3slqipiiO+pJLA6zH0tI OAxI43KaHpSxbnyecoB9+dxNrJaV0dB9PnKUeLddYWytzJyXLdQb9Jwsl9saClJB RpoAvFTWO1VCh8yXnUrSq+zfx+K6dZgdz3tJLkEagMd+caBYywq7+iKLUEWVD5ZI UwTrjMd7ARTJMhmK8GUOw4mxDkNqPV34vi3dn5+SYxIOYXBL0UDWDqdhPQBXrvsc juJu5c2jBNmflZfIQccu9YFrIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLEdaK0 SKsd2jKGL7sgdNv7yt/rMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAntM8nAhW1vHOwPauAdx/bGXveef5CZQhiD/r5pzgwlYC/KQUrmFaS RjP3LzLuM007CcbSCdZC44/8IGUJEwUnGgI+0wlZg160L0O9G94iVzYiJsx+pMa7 qtTSNu+3RuXwxPcsH1I6ZoDMaraKuOMR4Rm9AeH5uGgNrS3jlxxOwPgAW1TisuGe Pf4uesdJjIGUd6s+P+JoSVAYHw5BAVW/AZ8IqkH4UdlVwRJWWzS+g4yKh1aPSIY9 R0m4SxTDn+9lUnOmRhWdOhJAsdFN6cSZ8YyuL6JqVuzSGYi+M29odRGGeL6aIcUh Temnqf+js+HbbCa0OeJAPQPSLhliUrY5 -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:25 2025 by rpki-client