$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft File: hobJK4fdXdLuKrtA7HPxePYEWjQ.mft (raw, json) Hash identifier: x7pz4O7U7albDNdhnjtk3h4v/HVrD5Q6LxHBs7y1UwQ= Subject key identifier: A2:B3:0E:1D:93:82:B8:46:C6:91:4C:BA:00:F3:08:75:21:96:8C:C7 Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft Manifest number: 027C Signing time: Sun 15 Jun 2025 01:22:37 +0000 Manifest this update: Sun 15 Jun 2025 01:22:36 +0000 Manifest next update: Sun 22 Jun 2025 01:22:36 +0000 Files and hashes: 1: hobJK4fdXdLuKrtA7HPxePYEWjQ.crl (hash: lJlevJQuo8CoABGX9PhQKW4CSP6PTtMm961OZWnt7D4=) 2: 7D164B822A2811F0819D8C13C4F9AE02.roa (hash: mDNZv224II9doQ1iNCGuKTRk+eFwgECKzo+AWal5Fq0=) 3: 7CA593102A2811F0819D8C13C4F9AE02.roa (hash: AgK/4KQKRm1k0cfVPX0Zdc5eL/A0KNuVFO4G4wksfbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: Jun 15 01:22:36 2025 GMT Not After : Jun 22 01:22:36 2025 GMT Subject: CN=684e205d-fc51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:69:70:e3:38:75:8e:4c:96:6c:67:49:ea: bf:94:aa:61:99:af:21:49:21:7a:12:96:54:8a:28: 60:6c:28:95:62:34:99:19:77:1e:34:c8:74:ba:78: df:1f:64:90:00:9a:7a:a1:a9:77:6b:7a:19:0e:95: 90:d2:1a:7f:b4:34:74:60:62:6e:b4:b4:ea:60:7b: b7:61:ff:47:2b:b3:5b:da:50:2e:a4:f0:36:94:35: 43:b9:54:55:45:28:c5:be:bc:16:3e:b1:1e:19:44: 74:05:4c:20:bd:9b:af:ad:da:a5:98:ab:1e:42:63: 4e:5f:36:59:8a:b4:69:7b:97:13:64:3a:f7:1b:c1: 49:12:b2:c8:bd:bc:1d:12:35:68:1e:7c:10:b9:7f: a1:7e:00:9e:f6:6a:36:10:de:61:40:f1:6a:4c:2a: 89:89:da:61:be:22:50:52:1f:cb:5f:61:ce:e7:c6: 2b:af:38:a2:75:f4:8d:c1:da:69:08:33:a0:5d:0e: 10:4a:ec:0b:78:ea:12:86:04:d2:37:bf:c4:6a:f4: f0:19:38:7b:3b:e0:fc:e7:ac:4a:a2:e5:ca:ff:b5: a7:81:da:de:1b:8c:4d:79:b8:f1:60:97:22:8c:f6: 0a:d1:19:de:21:97:8a:d6:21:b8:72:62:47:c2:2b: de:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B3:0E:1D:93:82:B8:46:C6:91:4C:BA:00:F3:08:75:21:96:8C:C7 X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3c:69:61:2d:4c:c3:f3:1b:7b:ca:dc:78:bc:71:71:59:7b: fd:84:07:39:8a:83:8e:4b:20:8f:de:76:15:b5:98:9e:cf:48: 2f:e8:87:49:98:30:ff:a6:e5:ad:d0:f8:96:3a:44:c5:d9:87: b4:a6:a0:cc:5c:32:72:81:2a:e6:a6:ad:79:e1:2d:3c:b9:0a: fa:59:86:40:50:b0:fc:1a:0f:4a:c7:74:57:57:ad:44:27:64: e7:23:b7:cd:3c:45:54:d7:f4:80:cc:c7:71:86:be:dd:ab:3a: 53:e1:30:8d:56:a7:0f:b0:51:2f:1f:03:07:de:e2:8f:77:c6: 50:62:7c:c0:26:bc:fb:a6:1a:ae:f0:c0:82:28:2e:48:12:7b: 25:59:32:e1:73:d4:a3:de:83:3b:30:64:30:b2:a9:ae:b6:e4: 0d:7b:5b:f4:79:2b:62:2d:77:24:ee:4c:d2:2e:f2:9f:dd:dc: 12:f5:ef:a0:26:69:09:b4:e3:99:65:e7:03:71:51:79:92:5d: 6a:42:54:99:f1:01:34:a5:18:51:2f:05:d4:15:c4:db:52:d4: b5:fa:95:47:82:62:5f:e8:f2:97:6f:aa:a0:aa:76:38:22:cf: 9f:87:85:64:25:f9:5f:b1:6d:7b:e4:19:43:8b:aa:0f:49:19: c1:76:ec:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwNjE1MDEyMjM2WhcNMjUwNjIyMDEyMjM2WjAYMRYwFAYD VQQDEw02ODRlMjA1ZC1mYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu11pcOM4dY5MlmxnSeq/lKphma8hSSF6EpZUiihgbCiVYjSZGXceNMh0unjf H2SQAJp6oal3a3oZDpWQ0hp/tDR0YGJutLTqYHu3Yf9HK7Nb2lAupPA2lDVDuVRV RSjFvrwWPrEeGUR0BUwgvZuvrdqlmKseQmNOXzZZirRpe5cTZDr3G8FJErLIvbwd EjVoHnwQuX+hfgCe9mo2EN5hQPFqTCqJidphviJQUh/LX2HO58YrrziidfSNwdpp CDOgXQ4QSuwLeOoShgTSN7/EavTwGTh7O+D856xKouXK/7WngdreG4xNebjxYJci jPYK0RneIZeK1iG4cmJHwivefwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKzDh2T grhGxpFMugDzCHUhlozHMB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81QTQ5NkY4ODBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhk THVLcnRBN0hQeGVQWUVXalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2PGlhLUzD8xt7ytx4vHFxWXv9hAc5ioOOSyCP3nYVtZiez0gv6IdJ mDD/puWt0PiWOkTF2Ye0pqDMXDJygSrmpq154S08uQr6WYZAULD8Gg9Kx3RXV61E J2TnI7fNPEVU1/SAzMdxhr7dqzpT4TCNVqcPsFEvHwMH3uKPd8ZQYnzAJrz7phqu 8MCCKC5IEnslWTLhc9Sj3oM7MGQwsqmutuQNe1v0eStiLXck7kzSLvKf3dwS9e+g JmkJtOOZZecDcVF5kl1qQlSZ8QE0pRhRLwXUFcTbUtS1+pVHgmJf6PKXb6qgqnY4 Is+fh4VkJflfsW175BlDi6oPSRnBduyE -----END CERTIFICATE-----Generated at Sun Jun 15 09:36:13 2025 by rpki-client