$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft File: hobJK4fdXdLuKrtA7HPxePYEWjQ.mft (raw, json) Hash identifier: v+s5Y6KYccTqZgVDoI7/ENeViSNdVCtBw6ORegqVxn4= Subject key identifier: 9F:2C:9B:40:5D:2B:16:A1:01:F3:82:05:8B:6E:6A:71:56:D5:6F:72 Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft Manifest number: 029A Signing time: Sat 09 Aug 2025 02:08:24 +0000 Manifest this update: Sat 09 Aug 2025 02:08:23 +0000 Manifest next update: Sat 16 Aug 2025 02:08:23 +0000 Files and hashes: 1: hobJK4fdXdLuKrtA7HPxePYEWjQ.crl (hash: uJay4L7LYWF0NMYmHG54a4FLPspvOXHaysZSpUcGu4I=) 2: 7D164B822A2811F0819D8C13C4F9AE02.roa (hash: ev+YjLUEFuV9synNnilJkgFER39S40N1zyX1CzULmag=) 3: 7CA593102A2811F0819D8C13C4F9AE02.roa (hash: Ia6tlVbLIeqz/TCnxF60wA233bLpbVn+2ya+t4NGuKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: Aug 9 02:08:23 2025 GMT Not After : Aug 16 02:08:23 2025 GMT Subject: CN=6896ad97-e9d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:48:d3:ee:a8:e9:7d:fc:14:76:8e:6b:97:39: a0:da:cf:10:f8:34:30:80:a9:d1:0b:81:f9:e0:2e: 3d:aa:fd:91:a8:d4:77:41:97:a8:38:13:13:2f:90: 4a:27:db:8e:76:4a:cf:65:e6:5f:cb:80:1f:f3:30: 91:29:7f:69:0a:06:0f:e5:d4:ef:cf:7e:3f:bc:a8: 22:be:47:50:84:d5:da:14:e9:9c:27:69:8e:51:85: 51:87:bd:3e:e3:ff:19:13:fc:5b:c2:02:18:d3:b4: 3f:d8:21:b4:9f:15:9d:44:47:31:cb:20:eb:6c:17: 6a:60:de:e0:6c:01:ca:1b:67:a0:30:f4:91:c3:d3: ff:bf:af:a8:8f:e8:a2:a7:8a:c2:8d:7e:d9:d2:47: 51:c0:5c:1b:69:bc:8a:e9:a7:bc:d1:2d:26:cb:f5: b7:77:8b:7a:fa:30:28:c2:f3:2b:df:55:c2:8f:3a: 05:8b:8c:d6:ae:75:dd:3e:1e:95:ee:b6:5e:36:f2: 63:96:21:dd:63:76:49:53:65:92:ea:e6:84:4d:d6: 37:8a:4c:59:f1:35:72:b3:1f:f1:15:9c:f1:a8:6c: 8f:62:f7:fd:08:29:21:1b:43:fc:12:5f:fa:a5:c2: 8e:20:b1:94:a1:bd:f4:30:9f:8a:c4:2b:a6:9b:e3: 55:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2C:9B:40:5D:2B:16:A1:01:F3:82:05:8B:6E:6A:71:56:D5:6F:72 X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ad:09:e1:83:58:60:4f:9b:ca:b2:25:b8:84:49:3a:78:d4: 30:43:d1:cc:f9:1a:b8:18:1c:1f:ef:62:52:7a:b5:dd:9b:a8: 72:92:3b:81:ac:79:21:94:56:9e:be:50:d0:52:8b:08:7d:0c: 3f:24:fe:de:09:4f:91:8f:16:6c:4c:08:1f:aa:b3:30:92:e4: 90:69:cb:96:0b:9c:ca:15:a1:51:89:18:1c:2e:30:f5:9b:49: 5d:4d:2a:c2:4e:65:b4:db:82:e0:5e:ac:6b:7b:4e:30:8e:79: 41:26:3b:b5:0f:92:6d:25:c3:7a:13:eb:4c:66:df:83:2e:12: 53:0a:9b:49:8e:d2:d7:d4:21:d3:46:0d:8e:48:b0:03:4b:66: d0:c8:bd:8d:94:1f:74:45:65:db:35:b3:0c:82:35:80:e5:8d: 01:3d:0b:04:41:43:12:da:8a:bd:81:a9:1d:8f:b6:f1:c9:25: 81:71:83:9f:9e:55:a4:d2:50:5d:16:d5:10:ca:3a:33:8b:ae: c4:b7:19:01:5c:6c:cf:54:17:01:be:df:92:1e:6a:52:81:ee: 42:93:4b:c2:c5:0f:03:a6:1b:86:bb:0f:a3:42:60:f6:f9:03: 0c:ae:02:98:5a:76:ec:fb:c1:b1:86:d5:51:31:ba:1d:37:26: 67:37:f1:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwODA5MDIwODIzWhcNMjUwODE2MDIwODIzWjAYMRYwFAYD VQQDEw02ODk2YWQ5Ny1lOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+0jT7qjpffwUdo5rlzmg2s8Q+DQwgKnRC4H54C49qv2RqNR3QZeoOBMTL5BK J9uOdkrPZeZfy4Af8zCRKX9pCgYP5dTvz34/vKgivkdQhNXaFOmcJ2mOUYVRh70+ 4/8ZE/xbwgIY07Q/2CG0nxWdREcxyyDrbBdqYN7gbAHKG2egMPSRw9P/v6+oj+ii p4rCjX7Z0kdRwFwbabyK6ae80S0my/W3d4t6+jAowvMr31XCjzoFi4zWrnXdPh6V 7rZeNvJjliHdY3ZJU2WS6uaETdY3ikxZ8TVysx/xFZzxqGyPYvf9CCkhG0P8El/6 pcKOILGUob30MJ+KxCumm+NVNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8sm0Bd KxahAfOCBYtuanFW1W9yMB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81QTQ5NkY4ODBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhk THVLcnRBN0hQeGVQWUVXalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCErQnhg1hgT5vKsiW4hEk6eNQwQ9HM+Rq4GBwf72JSerXdm6hykjuB rHkhlFaevlDQUosIfQw/JP7eCU+RjxZsTAgfqrMwkuSQacuWC5zKFaFRiRgcLjD1 m0ldTSrCTmW024LgXqxre04wjnlBJju1D5JtJcN6E+tMZt+DLhJTCptJjtLX1CHT Rg2OSLADS2bQyL2NlB90RWXbNbMMgjWA5Y0BPQsEQUMS2oq9gakdj7bxySWBcYOf nlWk0lBdFtUQyjozi67EtxkBXGzPVBcBvt+SHmpSge5Ck0vCxQ8DphuGuw+jQmD2 +QMMrgKYWnbs+8GxhtVRMbodNyZnN/EK -----END CERTIFICATE-----Generated at Sun Aug 10 04:16:38 2025 by rpki-client