$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: HW8aVxKKWQOvuKyBiG40hhccyPcT52QqUgPGCUiBxwA= Subject key identifier: 20:9E:BD:63:BF:A3:71:6D:80:27:AB:2B:1C:BB:32:2B:6A:FF:0C:7D Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 34AA Signing time: Sun 10 Aug 2025 14:34:08 +0000 Manifest this update: Sun 10 Aug 2025 14:34:08 +0000 Manifest next update: Sun 17 Aug 2025 14:34:08 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: dNgdZnMkkZNKFgk6IY0x8HYtVbmIgT3qjMdpkXj8Sqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Aug 10 14:34:08 2025 GMT Not After : Aug 17 14:34:08 2025 GMT Subject: CN=6898ade0-c964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:9e:6f:41:21:0a:07:1c:73:44:d1:59:57: 00:b8:d7:08:5b:c7:f8:74:d6:1a:9f:0c:5e:a9:a1: 6c:3a:4e:03:f7:2e:cc:b8:1d:0a:a0:37:77:41:0d: 5a:b1:c4:c8:a6:1d:73:3d:ef:40:02:4c:90:26:10: 38:30:71:49:8e:d2:ef:82:d5:9a:20:7c:ad:fe:31: 33:ac:6d:bf:e9:1a:2c:a0:5e:20:ba:39:79:1f:9b: d4:8b:52:24:33:1b:82:c6:a4:6d:2a:d1:ac:e7:e3: 4a:e9:ea:14:c8:64:9c:35:83:c9:55:5b:63:cc:a5: c7:43:da:ab:b4:55:25:e9:8a:2d:2b:98:3a:ee:68: 45:5c:52:e6:11:11:35:02:f8:0d:36:e6:87:e9:e2: 4a:fe:1f:ee:19:45:ce:b4:4b:53:6e:37:1c:ce:b8: 80:00:76:25:16:c7:ec:39:d6:24:21:35:89:30:1d: a9:94:68:a3:aa:c9:5a:04:82:c5:a5:14:b3:b2:10: a1:34:8e:65:d9:95:76:9f:28:dc:9c:de:e7:82:69: 6d:33:c0:a0:d1:d2:10:c3:09:2b:b1:2c:e4:92:53: 63:cc:c8:aa:99:80:00:54:0c:ba:28:33:de:09:9f: fa:af:9f:1e:96:af:da:94:af:1b:9d:26:82:00:31: d7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9E:BD:63:BF:A3:71:6D:80:27:AB:2B:1C:BB:32:2B:6A:FF:0C:7D X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6a:62:0b:4c:76:61:75:8a:a4:5b:2a:d0:30:1d:50:53:fb: c2:12:0f:2a:04:5e:ec:2b:04:4b:26:6c:c7:41:24:3b:c8:b7: 12:6c:94:fd:6d:f0:0a:c6:1a:07:30:80:bc:64:eb:d6:b0:16: e7:75:7a:c5:31:2a:6c:f6:95:fb:fd:af:06:47:2e:f8:6b:56: 4a:96:0b:2e:35:b0:4d:d0:b7:dd:46:42:14:d5:1a:07:33:c6: 54:ec:0c:36:84:06:73:99:4e:bb:c8:3c:98:0f:7b:fd:87:da: db:2c:43:4c:40:54:aa:0f:cb:53:23:af:ec:9e:9b:38:2e:50: f7:5f:84:28:5d:c6:2f:7d:7a:e0:18:a7:46:bb:95:94:e2:00: 34:8f:ae:c0:81:86:79:62:8f:de:4f:85:db:02:21:eb:bb:6a: 03:17:21:75:08:bc:0a:60:9d:46:c8:83:fd:aa:23:6b:2c:6a: 27:a9:73:e0:a2:59:06:aa:68:53:53:60:70:13:00:59:b9:bf: c6:5d:12:04:b5:e6:35:50:df:34:7f:f7:59:8c:e7:a8:78:d8: b2:16:c2:bf:50:0d:32:da:67:06:a6:52:4c:53:ec:c6:6d:df: 36:f2:21:cd:cf:13:cd:dd:1f:61:69:ff:68:2e:2b:74:1a:93: 86:6a:ee:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjUwODEwMTQzNDA4WhcNMjUwODE3MTQzNDA4WjAYMRYwFAYD VQQDEw02ODk4YWRlMC1jOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eGeb0EhCgccc0TRWVcAuNcIW8f4dNYanwxeqaFsOk4D9y7MuB0KoDd3QQ1a scTIph1zPe9AAkyQJhA4MHFJjtLvgtWaIHyt/jEzrG2/6RosoF4gujl5H5vUi1Ik MxuCxqRtKtGs5+NK6eoUyGScNYPJVVtjzKXHQ9qrtFUl6YotK5g67mhFXFLmERE1 AvgNNuaH6eJK/h/uGUXOtEtTbjcczriAAHYlFsfsOdYkITWJMB2plGijqslaBILF pRSzshChNI5l2ZV2nyjcnN7ngmltM8Cg0dIQwwkrsSzkklNjzMiqmYAAVAy6KDPe CZ/6r58elq/alK8bnSaCADHXBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCevWO/ o3FtgCerKxy7Mitq/wx9MB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6amILTHZhdYqkWyrQMB1QU/vCEg8qBF7sKwRLJmzHQSQ7yLcSbJT9 bfAKxhoHMIC8ZOvWsBbndXrFMSps9pX7/a8GRy74a1ZKlgsuNbBN0LfdRkIU1RoH M8ZU7Aw2hAZzmU67yDyYD3v9h9rbLENMQFSqD8tTI6/snps4LlD3X4QoXcYvfXrg GKdGu5WU4gA0j67AgYZ5Yo/eT4XbAiHru2oDFyF1CLwKYJ1GyIP9qiNrLGonqXPg olkGqmhTU2BwEwBZub/GXRIEteY1UN80f/dZjOeoeNiyFsK/UA0y2mcGplJMU+zG bd828iHNzxPN3R9haf9oLit0GpOGau54 -----END CERTIFICATE-----Generated at Sun Aug 10 16:10:25 2025 by rpki-client