$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: OTwwEM9W1OpDKgPCn8ZfqLxG5Kq7k4NpGvhuy98Rqjk= Subject key identifier: 24:AB:9A:18:2D:2D:14:EF:F8:78:97:F8:6C:2A:6E:13:14:1A:59:75 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 4D Signing time: Sat 09 Aug 2025 07:51:00 +0000 Manifest this update: Sat 09 Aug 2025 07:51:00 +0000 Manifest next update: Sat 16 Aug 2025 07:51:00 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: pZFc44aXMb5Wkp3TqfBrmOPqQ5Oc7unMXBHogjkwZuU=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Aug 9 07:51:00 2025 GMT Not After : Aug 16 07:51:00 2025 GMT Subject: CN=6896fde4-6757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:4b:0e:a1:fe:31:e8:d2:98:b6:36:9d:33: d9:09:2f:1e:fc:2a:ea:61:5e:b1:ee:5f:ef:93:46: 91:ce:ef:6e:91:24:c5:c2:76:76:28:75:e8:9d:88: 14:2a:e2:5d:ce:2e:dd:94:1e:67:8b:9f:02:8b:96: 8e:35:01:c4:a8:75:02:8e:c4:a5:a6:05:dc:11:1b: a1:42:45:4f:cb:ba:6d:53:f5:f3:66:54:c1:db:2c: d4:2c:08:c6:bc:dc:dc:cd:5d:4a:41:91:af:95:3a: 37:f9:ed:0a:ab:28:3c:d8:9d:34:89:2c:ee:7a:c2: bb:c3:a3:ff:4c:33:da:f6:dc:e6:9e:e6:01:50:44: 96:71:4f:11:91:42:56:f8:ff:63:b9:4f:20:a0:ee: 56:67:59:92:6d:6b:16:2f:22:cd:26:26:c7:8b:62: a4:d0:5e:e9:94:e3:8f:be:5b:d4:4e:6b:38:db:ea: 13:a0:ca:0f:00:27:95:fc:e9:c6:53:bd:86:2c:c1: 9c:50:e8:5c:98:81:8f:69:ca:c6:f7:ce:69:4e:fa: c4:cd:c9:23:f4:1a:05:0d:be:be:8a:b6:f3:46:29: 5e:0d:6b:3f:85:7c:ce:74:ec:86:b8:89:82:ec:ca: db:4d:ec:ce:3c:4a:59:45:93:b5:f7:bf:ea:d7:19: 52:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AB:9A:18:2D:2D:14:EF:F8:78:97:F8:6C:2A:6E:13:14:1A:59:75 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f0:c9:3f:b4:96:78:3c:f8:58:1a:6a:53:1b:35:f7:c4:2a: cf:d0:a9:51:50:a9:e7:ca:e9:4d:73:0c:7c:45:81:56:45:51: 3f:ca:e6:1f:9a:f4:80:9e:3f:b3:df:79:47:b1:1b:2e:38:76: ef:d1:cf:21:25:64:8f:e0:db:c4:79:33:69:e5:15:b2:82:29: 59:85:89:8c:c8:46:aa:4f:76:ae:5f:94:7f:23:88:22:90:e9: 25:24:38:0e:50:26:f5:15:11:a6:c9:15:18:d8:d1:d6:cc:48: de:8c:4e:37:61:5a:e8:57:d6:92:3b:9f:28:65:9c:d7:f9:7c: 8d:34:99:01:9f:5a:68:e7:53:f7:b6:ac:1c:30:e5:60:d4:9f: 50:ef:69:16:e1:2d:4a:19:a0:b3:1c:75:f6:eb:f2:e8:21:58: 02:65:36:c9:54:ce:74:ef:6e:e6:a6:f9:21:b5:db:38:ff:12: 8c:4c:c5:b8:d4:8e:7d:40:a3:40:3d:98:f7:2f:c6:82:05:0e: da:91:93:da:d5:78:66:cb:d8:bc:35:7e:0b:a5:9e:d6:29:e5: 2e:aa:fd:78:51:1c:9b:65:46:2e:4b:76:6f:11:fb:9b:7c:b6: bf:85:aa:62:e3:46:a3:a4:a6:90:c7:87:b5:f3:bd:12:44:3b: 33:9f:4a:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA4MDkwNzUxMDBaFw0yNTA4MTYwNzUxMDBaMBgxFjAUBgNV BAMTDTY4OTZmZGU0LTY3NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKL0sOof4x6NKYtjadM9kJLx78KuphXrHuX++TRpHO726RJMXCdnYodeidiBQq 4l3OLt2UHmeLnwKLlo41AcSodQKOxKWmBdwRG6FCRU/Lum1T9fNmVMHbLNQsCMa8 3NzNXUpBka+VOjf57QqrKDzYnTSJLO56wrvDo/9MM9r23Oae5gFQRJZxTxGRQlb4 /2O5TyCg7lZnWZJtaxYvIs0mJseLYqTQXumU44++W9ROazjb6hOgyg8AJ5X86cZT vYYswZxQ6FyYgY9pysb3zmlO+sTNySP0GgUNvr6KtvNGKV4Naz+FfM507Ia4iYLs yttN7M48SllFk7X3v+rXGVLLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJKuaGC0t FO/4eJf4bCpuExQaWXUwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEfwyT+0lng8+FgaalMbNffEKs/QqVFQqefK6U1zDHxFgVZFUT/K5h+a 9ICeP7PfeUexGy44du/RzyElZI/g28R5M2nlFbKCKVmFiYzIRqpPdq5flH8jiCKQ 6SUkOA5QJvUVEabJFRjY0dbMSN6MTjdhWuhX1pI7nyhlnNf5fI00mQGfWmjnU/e2 rBww5WDUn1DvaRbhLUoZoLMcdfbr8ughWAJlNslUznTvbuam+SG12zj/EoxMxbjU jn1Ao0A9mPcvxoIFDtqRk9rVeGbL2Lw1fgulntYp5S6q/XhRHJtlRi5Ldm8R+5t8 tr+FqmLjRqOkppDHh7XzvRJEOzOfSu0= -----END CERTIFICATE-----Generated at Sat Aug 9 23:25:46 2025 by rpki-client