$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft File: hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft (raw, json) Hash identifier: ze53Yi/qOKdXBURrvom0ShkCZVX0mV88hsPatxVyXeE= Subject key identifier: 7D:0A:76:20:DA:89:7F:E2:9A:A1:98:49:2A:0F:85:3E:BE:D4:03:2A Authority key identifier: 85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 Certificate issuer: /CN=A9196DCA/serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft Manifest number: 53 Signing time: Sun 15 Jun 2025 06:17:48 +0000 Manifest this update: Sun 15 Jun 2025 06:17:48 +0000 Manifest next update: Sun 22 Jun 2025 06:17:48 +0000 Files and hashes: 1: hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl (hash: I5gVGkAjMphK4C49nwMkU8cBwgovkNfBuIyHd9znPsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Validity Not Before: Jun 15 06:17:48 2025 GMT Not After : Jun 22 06:17:48 2025 GMT Subject: CN=684e658c-ddd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:82:23:20:12:b3:8d:3c:06:6d:53:6d:f0: 6d:5a:72:fe:13:7e:c1:f4:28:a5:bf:59:20:77:b7: 47:42:60:3d:6c:08:2d:dc:47:8d:4d:e8:13:6d:34: 37:26:d7:bb:86:7a:eb:cc:28:17:f9:11:3d:19:9a: c6:4d:5b:3b:64:70:d5:d5:43:23:53:8a:cb:a9:6a: 06:9f:82:8b:59:7a:f8:96:35:af:58:3d:9f:cb:06: 76:d0:61:20:fd:aa:29:2f:a1:78:7d:90:52:4b:eb: 12:50:97:32:21:ef:8c:a4:dc:f2:23:72:26:4d:5a: cf:86:d6:b1:9c:31:a5:71:02:f2:de:83:90:f8:ce: f2:c9:44:ed:44:9d:1f:d9:8a:54:b7:d4:90:0e:cc: 96:f0:09:14:66:2c:6e:88:16:55:c1:40:9d:71:ad: e1:7d:0d:f8:d8:fa:86:d9:c6:ce:88:97:7c:7c:99: 4e:1c:b8:f0:c1:d4:28:13:d4:8d:f2:2e:15:43:89: a5:dc:45:d6:9d:1c:56:4a:bb:01:7b:97:a4:d4:6a: 21:04:78:f1:51:92:a0:3c:e3:1b:47:71:56:31:cc: 55:d8:02:fb:10:38:05:61:33:94:44:5e:3b:7b:c6: 3d:51:1c:0e:d8:38:48:d8:c5:97:5e:91:7a:28:92: 69:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0A:76:20:DA:89:7F:E2:9A:A1:98:49:2A:0F:85:3E:BE:D4:03:2A X509v3 Authority Key Identifier: keyid:85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:64:08:43:8b:01:dc:62:a6:fd:55:21:76:51:38:d4:65:f0: 27:3a:54:6b:28:b4:1c:7b:75:5c:7a:20:54:59:04:fa:2e:41: 4d:a9:84:20:46:b6:40:f8:7f:2c:ed:39:6b:7d:95:85:1c:7b: 38:05:58:e7:51:ba:f0:96:22:42:99:31:7d:ec:e3:de:ff:38: 4d:a3:32:b8:f5:a4:e9:73:02:09:86:28:17:b9:90:ab:0e:09: 8e:e0:86:0c:7d:71:94:aa:c8:d9:90:3c:3f:b9:1b:95:c1:fa: 6e:32:cd:b5:7f:b7:2b:ca:6a:54:a8:22:99:9b:92:15:de:66: 7e:e3:b0:91:0a:95:2e:6a:d6:7e:ab:36:a1:37:7d:21:c5:bc: cf:38:b9:7f:eb:b7:46:74:f5:3f:d6:da:a7:ca:0c:c9:b2:c7: 15:5a:1b:76:af:a7:b1:e9:de:8d:e8:32:04:77:bf:54:8b:24: ee:c7:e9:91:89:6f:96:d2:d2:12:01:2e:16:6b:d3:85:83:a2: 75:41:9f:aa:c8:19:3e:e3:f2:c3:4a:8f:9b:c3:42:03:93:2d: ed:e8:b4:01:ce:eb:c0:e7:f3:9c:6f:ab:f3:0e:28:ac:c5:07: 25:24:5b:12:67:ea:b4:bc:c3:63:50:26:ff:83:7e:26:98:d6: 68:5a:36:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoODVDNTY3MjU5MTAzRDlFMjI5MkU2NERCRkI3OUZEMzlC MjU2RkRFNDAeFw0yNTA2MTUwNjE3NDhaFw0yNTA2MjIwNjE3NDhaMBgxFjAUBgNV BAMTDTY4NGU2NThjLWRkZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaCYIjIBKzjTwGbVNt8G1acv4TfsH0KKW/WSB3t0dCYD1sCC3cR41N6BNtNDcm 17uGeuvMKBf5ET0ZmsZNWztkcNXVQyNTisupagafgotZeviWNa9YPZ/LBnbQYSD9 qikvoXh9kFJL6xJQlzIh74yk3PIjciZNWs+G1rGcMaVxAvLeg5D4zvLJRO1EnR/Z ilS31JAOzJbwCRRmLG6IFlXBQJ1xreF9DfjY+obZxs6Il3x8mU4cuPDB1CgT1I3y LhVDiaXcRdadHFZKuwF7l6TUaiEEePFRkqA84xtHcVYxzFXYAvsQOAVhM5REXjt7 xj1RHA7YOEjYxZdekXookmnVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfQp2INqJ f+KaoZhJKg+FPr7UAyowHwYDVR0jBBgwFoAUhcVnJZED2eIpLmTb+3n9ObJW/eQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzU4M0ZGQzk0Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJcExtVGItM245T2JKV19l US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGNWbkpaRUQyZUlwTG1UYi0zbjlPYkpXX2VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzU4M0ZGQzk0Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJ cExtVGItM245T2JKV19lUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGtkCEOLAdxipv1VIXZRONRl8Cc6VGsotBx7dVx6IFRZBPouQU2phCBG tkD4fyztOWt9lYUcezgFWOdRuvCWIkKZMX3s497/OE2jMrj1pOlzAgmGKBe5kKsO CY7ghgx9cZSqyNmQPD+5G5XB+m4yzbV/tyvKalSoIpmbkhXeZn7jsJEKlS5q1n6r NqE3fSHFvM84uX/rt0Z09T/W2qfKDMmyxxVaG3avp7Hp3o3oMgR3v1SLJO7H6ZGJ b5bS0hIBLhZr04WDonVBn6rIGT7j8sNKj5vDQgOTLe3otAHO68Dn85xvq/MOKKzF ByUkWxJn6rS8w2NQJv+DfiaY1mhaNhA= -----END CERTIFICATE-----Generated at Sun Jun 15 09:32:48 2025 by rpki-client