$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft File: hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft (raw, json) Hash identifier: LqUCV6et8OWV3HA2Expu9bzLyEP1WV+rIW0iqVuKYg8= Subject key identifier: E8:C1:C0:60:CF:AC:23:37:0C:D7:64:30:DC:1A:1C:74:E1:9C:C0:8E Authority key identifier: 85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 Certificate issuer: /CN=A9196DCA/serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft Manifest number: 6F Signing time: Sat 09 Aug 2025 07:19:51 +0000 Manifest this update: Sat 09 Aug 2025 07:19:50 +0000 Manifest next update: Sat 16 Aug 2025 07:19:50 +0000 Files and hashes: 1: hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl (hash: t8+DDm3w0weSe3FqDFJIfXeasDk0bkSYdVcDI2dBxsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Validity Not Before: Aug 9 07:19:50 2025 GMT Not After : Aug 16 07:19:50 2025 GMT Subject: CN=6896f696-22ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:89:62:fe:17:33:b0:0d:99:98:30:b2:ba: 4f:3e:17:d8:47:5e:79:0e:a4:55:3e:18:65:81:94: 39:b8:df:0c:78:04:7b:11:09:08:9b:b7:c9:96:01: 61:b7:72:4d:94:55:87:08:f5:91:52:17:f4:b4:db: 57:06:e5:1d:09:e4:98:57:56:07:bb:41:fa:30:73: 82:8b:94:6b:e8:2e:09:a2:f5:c7:2d:fa:eb:4e:ad: 26:8d:aa:c8:5e:67:b6:c5:dd:f2:53:8b:e6:0d:4f: ee:1d:1a:7f:b6:51:75:09:41:8e:20:10:4d:5c:97: 31:c6:73:7c:35:9f:ea:c5:ff:d6:9e:a9:05:0c:a5: 71:16:c3:7c:f9:89:78:03:64:86:23:80:33:3e:64: c0:ba:40:f4:e4:d4:39:47:95:b5:3a:d9:63:93:f9: da:d9:6d:a6:34:7a:15:44:e5:67:6d:05:e8:74:7e: d0:cf:66:44:01:ad:a8:88:4c:d8:4c:7a:fa:a6:ad: 22:84:9d:30:f0:71:8c:3f:41:15:06:90:ad:62:8b: 42:1e:aa:95:e7:9d:d9:f5:c5:11:2f:b1:18:16:aa: 55:a4:d9:c8:2a:18:5b:6e:61:49:42:44:08:50:5c: dc:f2:d8:70:70:18:76:e7:6b:3c:92:a1:4e:fb:34: 90:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C1:C0:60:CF:AC:23:37:0C:D7:64:30:DC:1A:1C:74:E1:9C:C0:8E X509v3 Authority Key Identifier: keyid:85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:60:71:95:d4:8f:c9:c7:04:10:09:d5:a0:42:74:8d:0b:58: 4c:25:53:85:60:a0:02:63:ca:69:0b:a4:18:a1:e8:5d:e5:b9: e4:7d:ec:51:e3:68:da:90:82:9e:02:b5:10:d5:1d:56:3b:62: a7:a0:71:12:ab:5a:da:5e:f4:1e:ac:7c:4b:18:21:ed:57:ad: dd:9e:19:77:4c:1b:60:1d:9e:00:55:e5:10:67:42:88:df:30: e7:ce:5e:39:4d:2e:52:22:3b:c1:1d:2f:4a:57:f7:ad:20:62: a1:34:7a:98:1f:ff:fd:8f:a2:56:a0:d4:b6:fb:46:d7:92:a7: 4f:2b:4e:5a:a4:ac:af:b7:4e:c1:d3:ae:5c:c2:77:79:a4:d4: 36:ce:16:20:fa:cb:29:90:ea:69:7d:6f:87:64:01:c7:75:6f: 61:91:50:92:e4:33:2e:f6:17:aa:89:d1:94:d6:93:70:d0:a5: 29:82:f1:b6:13:99:2e:ea:b3:ec:6e:1a:8a:9d:dc:e3:f1:dc: 39:18:ca:9e:8d:7b:60:5f:2c:0e:3c:37:18:fb:06:e1:01:0d: f8:bb:4b:97:94:b9:75:07:64:ae:b8:88:42:ec:03:6c:de:1b: c9:42:5b:0f:1e:70:a8:b5:ec:08:d4:26:da:52:e3:21:6a:0a: 28:35:6d:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoODVDNTY3MjU5MTAzRDlFMjI5MkU2NERCRkI3OUZEMzlC MjU2RkRFNDAeFw0yNTA4MDkwNzE5NTBaFw0yNTA4MTYwNzE5NTBaMBgxFjAUBgNV BAMTDTY4OTZmNjk2LTIyYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6v4li/hczsA2ZmDCyuk8+F9hHXnkOpFU+GGWBlDm43wx4BHsRCQibt8mWAWG3 ck2UVYcI9ZFSF/S021cG5R0J5JhXVge7Qfowc4KLlGvoLgmi9cct+utOrSaNqshe Z7bF3fJTi+YNT+4dGn+2UXUJQY4gEE1clzHGc3w1n+rF/9aeqQUMpXEWw3z5iXgD ZIYjgDM+ZMC6QPTk1DlHlbU62WOT+drZbaY0ehVE5WdtBeh0ftDPZkQBraiITNhM evqmrSKEnTDwcYw/QRUGkK1ii0IeqpXnndn1xREvsRgWqlWk2cgqGFtuYUlCRAhQ XNzy2HBwGHbnazySoU77NJDhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6MHAYM+s IzcM12Qw3BocdOGcwI4wHwYDVR0jBBgwFoAUhcVnJZED2eIpLmTb+3n9ObJW/eQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzU4M0ZGQzk0Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJcExtVGItM245T2JKV19l US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGNWbkpaRUQyZUlwTG1UYi0zbjlPYkpXX2VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzU4M0ZGQzk0Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJ cExtVGItM245T2JKV19lUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL1gcZXUj8nHBBAJ1aBCdI0LWEwlU4VgoAJjymkLpBih6F3lueR97FHj aNqQgp4CtRDVHVY7YqegcRKrWtpe9B6sfEsYIe1Xrd2eGXdMG2AdngBV5RBnQojf MOfOXjlNLlIiO8EdL0pX960gYqE0epgf//2Polag1Lb7RteSp08rTlqkrK+3TsHT rlzCd3mk1DbOFiD6yymQ6ml9b4dkAcd1b2GRUJLkMy72F6qJ0ZTWk3DQpSmC8bYT mS7qs+xuGoqd3OPx3DkYyp6Ne2BfLA48Nxj7BuEBDfi7S5eUuXUHZK64iELsA2ze G8lCWw8ecKi17AjUJtpS4yFqCig1bew= -----END CERTIFICATE-----Generated at Sun Aug 10 13:58:34 2025 by rpki-client