$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: DXRzSlSJ27Cm4n1eR3C9r5kJ0pnjy5cYyutLyLiEFqQ= Subject key identifier: 93:B0:57:F4:49:E9:8C:50:2D:B6:48:2B:5E:5C:C9:AF:0F:07:56:EF Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 0327 Signing time: Sat 09 Aug 2025 01:40:57 +0000 Manifest this update: Sat 09 Aug 2025 01:40:57 +0000 Manifest next update: Sat 16 Aug 2025 01:40:57 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: NAjz4iDTTzcY4YldJjgFAV2fFOoDiPAWap1HTdVx3Eg=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 3: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Aug 9 01:40:57 2025 GMT Not After : Aug 16 01:40:57 2025 GMT Subject: CN=6896a729-a113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:85:c9:16:43:54:69:0d:47:c9:e0:1f:5c:b9: f7:b1:f9:0f:4b:9d:82:d8:2b:da:e4:ae:77:62:6f: 83:03:36:2b:0a:72:b1:d1:ce:eb:5c:1e:89:0e:74: c5:58:ea:ee:5e:12:17:ce:f8:b9:8c:f6:29:e6:a0: 0d:d6:f0:27:c6:a0:68:46:d7:98:f7:6e:bf:b6:09: b1:57:40:1e:0e:77:99:f1:6e:0e:dc:4f:c7:54:7c: eb:2b:53:d8:c4:c3:60:7d:fe:fe:9f:f9:1f:f3:77: 6d:1c:5d:fb:c4:4c:36:41:b5:a5:3c:14:6a:34:9c: 0c:07:f7:86:f0:dd:ac:f8:82:08:41:7a:8e:8b:31: 3e:76:97:4e:c9:db:0a:c2:a3:d4:d8:f9:ea:2f:80: e3:78:5e:21:dd:35:b7:54:50:23:aa:84:bf:a6:8c: 02:e5:ac:44:a7:5f:9d:f0:29:29:9f:5a:87:ac:fb: 7d:9d:20:94:03:a7:02:8d:16:14:10:97:83:13:27: a6:99:c6:27:b3:5a:4b:c6:30:ec:47:18:bd:ea:b4: 48:03:50:a7:8f:6d:8b:ed:c6:bc:24:00:2f:7f:21: fb:46:19:5c:03:83:10:26:02:8a:2c:d4:de:ee:e5: 7b:f0:4b:e7:01:e9:9f:43:46:78:32:7c:0b:9d:11: 5c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B0:57:F4:49:E9:8C:50:2D:B6:48:2B:5E:5C:C9:AF:0F:07:56:EF X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:fb:f2:ca:0e:96:20:c6:08:0e:96:b2:b2:40:65:40:0d:ad: 6b:18:d8:55:41:9b:14:07:0d:9e:6a:36:69:a0:be:39:f8:31: 69:4f:04:d4:25:a3:83:e3:45:7d:bb:c6:69:72:77:f3:41:d6: 0c:4d:f9:3b:d8:b1:60:49:f9:15:23:79:3e:84:04:ef:2d:f1: c8:44:58:9b:e5:b8:9d:53:68:7c:6b:26:9e:26:0e:f7:d2:24: 90:c5:5e:f9:35:3c:7f:9c:5a:8d:3f:d1:00:e5:15:93:c4:cd: e3:0b:11:ea:07:56:c8:d5:88:b7:58:54:ef:44:5e:47:8a:e3: 79:f5:fd:2f:94:90:ad:45:61:7c:d0:80:5a:48:3c:1c:ae:2a: c4:bb:14:18:22:88:0e:87:e4:b7:8b:1e:e1:07:d8:6c:68:3f: 92:49:0a:40:19:fa:5b:3a:ed:3a:98:45:60:8d:50:45:a7:75: b8:d6:ec:f7:ce:a1:87:7b:da:d8:3a:c7:ca:df:b5:99:a0:1e: 49:c5:5d:71:78:f5:d4:ca:78:74:07:f6:5f:83:c1:75:a8:9a: 26:2f:c3:af:21:f9:d4:aa:d1:2b:bb:d0:dd:8c:09:bc:df:af: bd:41:60:14:66:13:59:c0:47:2b:74:22:65:bb:77:0b:81:7f: 07:e1:cf:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwODA5MDE0MDU3WhcNMjUwODE2MDE0MDU3WjAYMRYwFAYD VQQDEw02ODk2YTcyOS1hMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYXJFkNUaQ1HyeAfXLn3sfkPS52C2Cva5K53Ym+DAzYrCnKx0c7rXB6JDnTF WOruXhIXzvi5jPYp5qAN1vAnxqBoRteY926/tgmxV0AeDneZ8W4O3E/HVHzrK1PY xMNgff7+n/kf83dtHF37xEw2QbWlPBRqNJwMB/eG8N2s+IIIQXqOizE+dpdOydsK wqPU2PnqL4DjeF4h3TW3VFAjqoS/powC5axEp1+d8Ckpn1qHrPt9nSCUA6cCjRYU EJeDEyemmcYns1pLxjDsRxi96rRIA1Cnj22L7ca8JAAvfyH7RhlcA4MQJgKKLNTe 7uV78EvnAemfQ0Z4MnwLnRFcBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOwV/RJ 6YxQLbZIK15cya8PB1bvMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4+/LKDpYgxggOlrKyQGVADa1rGNhVQZsUBw2eajZpoL45+DFpTwTU JaOD40V9u8ZpcnfzQdYMTfk72LFgSfkVI3k+hATvLfHIRFib5bidU2h8ayaeJg73 0iSQxV75NTx/nFqNP9EA5RWTxM3jCxHqB1bI1Yi3WFTvRF5HiuN59f0vlJCtRWF8 0IBaSDwcrirEuxQYIogOh+S3ix7hB9hsaD+SSQpAGfpbOu06mEVgjVBFp3W41uz3 zqGHe9rYOsfK37WZoB5JxV1xePXUynh0B/Zfg8F1qJomL8OvIfnUqtEru9DdjAm8 36+9QWAUZhNZwEcrdCJlu3cLgX8H4c+j -----END CERTIFICATE-----Generated at Sat Aug 9 23:16:27 2025 by rpki-client