$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: 13gxkpWC9sdhm4JCJ1/4oAg/xbXs1++Jsm+BCDVwM0c= Subject key identifier: F6:35:16:21:3C:A7:CA:AF:DE:9C:87:64:AF:90:C7:E9:EC:6B:37:47 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 33 Signing time: Thu 19 Jun 2025 07:02:28 +0000 Manifest this update: Thu 19 Jun 2025 07:02:27 +0000 Manifest next update: Thu 26 Jun 2025 07:02:27 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: GDgwrHCz1bZ4V/eWYVlEB63DMZm4pVX7zOCwOlzODbA=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Jun 19 07:02:27 2025 GMT Not After : Jun 26 07:02:27 2025 GMT Subject: CN=6853b603-5e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1e:35:98:cf:ed:34:f3:4c:09:44:bd:f8:3e: 33:1c:7e:ea:70:e4:4a:64:5e:16:d9:42:27:e0:7e: 37:c3:37:42:35:1a:c4:10:98:75:29:a6:bd:00:0c: ad:21:63:bb:9a:32:af:38:57:42:7c:95:fe:c9:0f: 4f:38:e5:68:46:bf:d0:03:ad:ad:7c:1e:28:d1:5a: 3a:da:c6:50:f1:0d:15:b9:90:04:87:ba:56:9a:b0: 6c:06:36:e4:53:9e:41:f8:95:3e:50:13:26:20:aa: 72:be:b3:29:fe:78:c1:1c:ad:6c:4e:76:8c:47:a2: 9c:79:80:3e:82:70:4d:a9:c8:df:3c:d0:fe:00:8f: f8:ce:6e:2f:b2:42:90:4b:cb:c8:a5:28:b4:50:d2: d4:35:26:21:38:e5:62:93:22:01:11:19:59:55:bc: 74:98:f4:72:93:ee:50:0e:e7:7c:6e:aa:ff:19:a1: 0a:3c:51:4e:73:26:24:d3:5e:3b:ec:d6:88:ec:6f: 16:a5:bc:b0:76:1e:f4:92:84:a9:21:4d:61:5d:6b: b6:28:b2:12:be:c0:53:fd:36:ac:f2:d0:c1:3c:5e: b9:f7:91:c3:24:db:0c:b0:ae:1f:40:ea:d7:c4:bc: da:fe:a8:af:dc:6c:d1:39:fa:7d:e6:40:76:e1:1e: fc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:35:16:21:3C:A7:CA:AF:DE:9C:87:64:AF:90:C7:E9:EC:6B:37:47 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:fd:cc:5d:e2:c4:f8:20:00:4b:7d:bb:51:3a:9f:8e:58:cf: 9e:3c:e6:49:fd:51:85:54:07:a9:06:c7:b0:cb:cf:ee:28:64: 26:66:d0:86:c5:d7:99:04:37:0b:25:00:09:0d:10:16:4c:45: 26:94:24:5b:f6:7c:3f:31:aa:d8:08:76:90:30:74:99:da:b7: aa:2b:63:23:e5:1f:7a:72:89:e5:8e:0d:d6:14:ed:97:db:56: e2:9b:c8:d4:e7:74:89:9b:cd:6b:de:82:3f:9b:32:d3:a0:59: 82:52:69:2c:07:8b:2f:ee:97:49:a4:da:9f:5f:91:3b:78:47: 02:87:10:e5:ad:55:51:b6:5f:af:2f:ed:d6:a5:06:22:3e:b0: 02:b9:db:7f:ea:cc:2b:47:f6:34:f3:e9:80:d9:f1:9c:55:ed: be:b3:d5:0c:b6:f8:55:e9:c3:6b:fd:a9:e3:f9:3f:ed:95:d3: 87:7a:bb:28:b0:0b:f1:62:50:60:9f:43:c7:2f:71:05:71:c3: 0e:17:82:af:0d:a4:2a:27:11:20:98:ee:9b:2c:cd:07:a0:bd: 3c:58:82:f4:c3:78:e1:37:7b:70:02:d7:74:43:44:ae:ea:c8: 76:71:5b:aa:7f:9a:6f:06:b6:51:40:1c:1b:91:aa:1a:ed:3b: ee:4d:ad:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA2MTkwNzAyMjdaFw0yNTA2MjYwNzAyMjdaMBgxFjAUBgNV BAMTDTY4NTNiNjAzLTVlN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbHjWYz+0080wJRL34PjMcfupw5EpkXhbZQifgfjfDN0I1GsQQmHUppr0ADK0h Y7uaMq84V0J8lf7JD0845WhGv9ADra18HijRWjraxlDxDRW5kASHulaasGwGNuRT nkH4lT5QEyYgqnK+syn+eMEcrWxOdoxHopx5gD6CcE2pyN880P4Aj/jObi+yQpBL y8ilKLRQ0tQ1JiE45WKTIgERGVlVvHSY9HKT7lAO53xuqv8ZoQo8UU5zJiTTXjvs 1ojsbxalvLB2HvSShKkhTWFda7YoshK+wFP9Nqzy0ME8Xrn3kcMk2wywrh9A6tfE vNr+qK/cbNE5+n3mQHbhHvxrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9jUWITyn yq/enIdkr5DH6exrN0cwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKP9zF3ixPggAEt9u1E6n45Yz5485kn9UYVUB6kGx7DLz+4oZCZm0IbF 15kENwslAAkNEBZMRSaUJFv2fD8xqtgIdpAwdJnat6orYyPlH3pyieWODdYU7Zfb VuKbyNTndImbzWvegj+bMtOgWYJSaSwHiy/ul0mk2p9fkTt4RwKHEOWtVVG2X68v 7dalBiI+sAK523/qzCtH9jTz6YDZ8ZxV7b6z1Qy2+FXpw2v9qeP5P+2V04d6uyiw C/FiUGCfQ8cvcQVxww4Xgq8NpConESCY7psszQegvTxYgvTDeOE3e3AC13RDRK7q yHZxW6p/mm8GtlFAHBuRqhrtO+5Nrfo= -----END CERTIFICATE-----Generated at Thu Jun 19 17:59:23 2025 by rpki-client