$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: gUbCNeP/J3irjCi1Hjoj6zzYQF1N1zfUYfhwl9qYohg= Subject key identifier: 8F:CE:3F:34:32:74:B3:33:BA:5F:92:CE:63:80:2E:28:3B:55:B7:F1 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0AA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0A42 Signing time: Fri 08 Aug 2025 20:14:18 +0000 Manifest this update: Fri 08 Aug 2025 20:14:17 +0000 Manifest next update: Fri 15 Aug 2025 20:14:17 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: xmM9Shyx+Gowz5Uh3FQF9fYQwNCdeF4NIBTIRvYoYCI=) 2: A81364AC4B0611EF91534014C4F9AE02.roa (hash: w/5bZBiXDjvqgxnP7qfHyeDTFEoVXi8DgwG0C4ccn5Q=) 3: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: Ve3ejv62M16tRhsxP6f89AusOlZpUFORwV+rrPuD1sg=) 4: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg=) 5: B8D18508EDE011EF88407251C4F9AE02.roa (hash: 7FKsDT71I8DwEjcBpbCZQH8HmSgZkJ2Kdkp2VjtHRzA=) 6: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: eMC9itpv3oFgg3wC16WZV3uYeAr5DZklaR+zjZUUL1Q=) 7: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=) 8: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: 74YlPjSTLEaBRhMrN5akas7kNpehqYE1ysoQhZlJDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Aug 8 20:14:17 2025 GMT Not After : Aug 15 20:14:17 2025 GMT Subject: CN=68965a9a-c2a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:26:a2:94:3b:9e:0b:f0:9c:52:93:2f:6a:cb: 4d:85:89:7b:ae:3f:ed:16:bf:6b:05:cf:5c:23:0a: 85:05:03:6c:20:f5:66:10:96:fa:95:aa:fe:e3:5b: ff:53:a9:3b:85:2e:c1:f0:63:cc:ab:bd:6d:aa:a7: d1:81:fc:c2:d7:6d:ca:31:1e:db:a5:8d:62:6f:62: e2:e0:d1:84:be:ec:c2:d5:e7:7f:f3:70:18:8c:93: f8:f6:31:e0:66:70:46:74:7b:6b:33:23:ed:d7:29: 8c:13:ff:17:05:d3:d6:50:db:ec:ec:48:b8:f8:89: 1a:1a:39:4e:3b:10:c7:d6:c8:05:19:cd:f8:40:ce: 29:c6:de:e6:1b:07:28:3f:31:17:19:ae:24:3d:ba: 51:54:95:70:86:d1:ae:1d:dd:9c:3c:16:43:11:4e: 51:38:93:a1:d7:57:84:7f:8f:2e:9c:fd:ac:d9:17: 8c:53:16:50:d0:20:7e:2f:85:0f:9d:4d:57:d8:8b: 96:27:a3:7f:a2:67:8b:6c:c6:7a:df:5e:ba:6f:39: dc:32:cb:de:f3:fd:23:de:3f:50:66:49:11:91:cd: 92:11:29:29:59:81:cd:57:24:b6:df:39:f5:b4:d6: a3:90:04:10:eb:97:da:74:6b:08:a2:42:21:fb:e3: a3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CE:3F:34:32:74:B3:33:BA:5F:92:CE:63:80:2E:28:3B:55:B7:F1 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ae:7f:d5:40:b6:89:f9:36:4b:55:6d:63:4a:99:69:78:73: 8b:96:04:2e:0c:ba:70:be:4b:17:c4:8d:c0:c3:e8:63:56:83: c2:f1:3d:11:8f:45:97:1f:d3:d0:97:0f:1f:d3:8b:f9:bb:83: 1a:82:6b:d4:9e:96:5f:45:95:b5:0c:e6:c7:88:37:eb:fa:4a: 59:d7:af:74:40:7e:12:42:ce:c9:a1:39:7c:20:b0:07:0b:a6: a1:d8:f3:76:c1:64:cc:14:f6:0b:b2:56:d1:7a:a1:1e:fb:78: 9e:b4:87:da:01:a4:08:c0:21:06:a0:9b:82:fd:f3:ff:81:92: 77:f0:2b:ee:d4:d7:59:e6:f7:d8:e0:54:26:81:ae:56:34:46: 07:db:86:c7:0e:9f:02:48:1b:6f:e5:a4:59:ef:e1:4d:dc:3d: 61:69:c1:5b:0b:b5:5d:0d:30:6e:e8:31:e1:f2:02:66:e3:a4: d9:17:75:25:b5:05:05:ff:dd:6c:4c:f0:5d:66:11:a8:08:e3: 77:86:63:55:06:eb:00:94:9c:9a:22:c7:44:e7:e9:4a:6c:d0: c3:ff:69:b5:12:54:59:9c:a9:60:ba:f4:de:e4:5c:72:6a:2c: fa:92:e1:c8:1a:51:0d:aa:25:30:08:bc:59:4e:fa:a8:64:5c: d2:74:c7:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjUwODA4MjAxNDE3WhcNMjUwODE1MjAxNDE3WjAYMRYwFAYD VQQDEw02ODk2NWE5YS1jMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCailDueC/CcUpMvastNhYl7rj/tFr9rBc9cIwqFBQNsIPVmEJb6lar+41v/ U6k7hS7B8GPMq71tqqfRgfzC123KMR7bpY1ib2Li4NGEvuzC1ed/83AYjJP49jHg ZnBGdHtrMyPt1ymME/8XBdPWUNvs7Ei4+IkaGjlOOxDH1sgFGc34QM4pxt7mGwco PzEXGa4kPbpRVJVwhtGuHd2cPBZDEU5ROJOh11eEf48unP2s2ReMUxZQ0CB+L4UP nU1X2IuWJ6N/omeLbMZ63166bzncMsve8/0j3j9QZkkRkc2SESkpWYHNVyS23zn1 tNajkAQQ65fadGsIokIh++OjAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/OPzQy dLMzul+SzmOALig7VbfxMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMrn/VQLaJ+TZLVW1jSplpeHOLlgQuDLpwvksXxI3Aw+hjVoPC8T0R j0WXH9PQlw8f04v5u4MagmvUnpZfRZW1DObHiDfr+kpZ1690QH4SQs7JoTl8ILAH C6ah2PN2wWTMFPYLslbReqEe+3ietIfaAaQIwCEGoJuC/fP/gZJ38Cvu1NdZ5vfY 4FQmga5WNEYH24bHDp8CSBtv5aRZ7+FN3D1hacFbC7VdDTBu6DHh8gJm46TZF3Ul tQUF/91sTPBdZhGoCON3hmNVBusAlJyaIsdE5+lKbNDD/2m1ElRZnKlguvTe5Fxy aiz6kuHIGlENqiUwCLxZTvqoZFzSdMeb -----END CERTIFICATE-----Generated at Sun Aug 10 10:35:04 2025 by rpki-client