$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: 9ApVpu8L7yxOnUvnWe39xJ9h+AdRxMUHb41VvZ8JBbQ= Subject key identifier: 1E:42:CD:65:DA:97:31:5A:25:DC:0D:89:C0:9D:D3:51:66:88:99:60 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0FA2 Signing time: Fri 08 Aug 2025 17:43:53 +0000 Manifest this update: Fri 08 Aug 2025 17:43:53 +0000 Manifest next update: Fri 15 Aug 2025 17:43:53 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: TUQvlSB9/m4UG1cbZ6JMVs5soVe1fm/bKvGUdmw+HkQ=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4022 (0xfb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Aug 8 17:43:53 2025 GMT Not After : Aug 15 17:43:53 2025 GMT Subject: CN=68963759-2341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:88:21:5c:77:c8:4c:c5:11:7d:52:a0:06: 41:e2:d0:e0:6b:7d:e5:20:5c:ed:1c:47:dc:be:6b: ba:86:32:34:4f:03:bb:93:a1:dd:3c:65:9b:cb:81: c6:f6:a5:d9:df:4a:7a:6e:f9:65:84:f1:32:c5:4d: 40:61:d1:b3:27:18:79:8f:cb:93:cd:36:53:3f:ff: 26:ba:a6:cb:8c:da:a3:b3:89:ac:40:77:ca:16:8b: db:f7:48:11:85:b7:cd:18:53:36:c1:84:a4:c2:fb: a2:16:fd:a0:18:f4:37:4c:15:c5:65:2d:51:4b:d4: ae:68:fa:cc:1b:0c:44:93:31:7f:26:9a:f3:7a:95: 9b:28:86:4c:fc:6f:d6:ce:bd:3b:89:a8:47:3f:1d: 35:53:bb:e1:c3:2f:64:3c:51:b2:57:ea:e7:d2:7f: 39:de:5b:e0:28:7c:cf:39:30:16:ae:eb:81:7a:2d: cb:80:f9:2a:1c:4c:8b:34:04:5d:26:3c:61:49:ab: 32:ef:d7:c1:e1:5f:a9:b2:1e:2f:ea:cd:99:00:d5: 69:da:ba:16:6d:28:22:55:1e:31:c9:96:cc:98:ea: a8:0e:87:04:92:9e:f1:40:b2:1e:f9:10:12:df:57: ba:6a:57:ff:2a:8c:71:af:8b:16:f4:f5:1d:9c:30: 39:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:42:CD:65:DA:97:31:5A:25:DC:0D:89:C0:9D:D3:51:66:88:99:60 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:9f:6e:d9:ba:6a:66:07:3a:95:42:ef:c9:74:49:a6:83:5c: 47:26:c3:79:e4:2a:dc:d3:6a:6d:74:5b:6b:0d:00:79:72:5b: f3:b9:7b:ba:99:63:1a:ac:bf:be:33:b0:a3:27:e7:21:d1:2f: 3f:5b:70:2a:74:13:b4:0c:c2:6d:85:d8:55:7d:f1:92:31:17: fe:89:b4:81:0f:a5:12:aa:b5:53:46:ec:68:96:4d:9a:ce:4f: 1e:73:28:11:4d:2e:44:34:68:10:3f:3f:1a:8d:02:56:7c:e0: 4e:7e:04:bd:4c:19:a9:2a:28:6d:44:cb:d4:91:8d:de:16:9b: 1b:9f:c6:74:e8:c0:25:94:a5:56:aa:12:27:52:21:06:bb:26: 8c:c7:b5:49:1c:a9:a1:a0:b5:66:16:ab:42:22:9e:e8:d5:a3: 0e:83:2f:1c:d9:3b:21:07:27:a2:31:77:4a:da:c2:b2:a4:b9: 06:b1:69:78:c5:16:20:b1:c6:f8:87:d1:97:8a:d3:56:c7:f2: 7b:62:0a:4d:f5:65:a8:f0:53:02:41:e6:2b:90:43:a0:ed:22: 16:a0:0d:2b:52:fb:af:02:b6:74:be:fc:01:0f:2f:18:e9:b5: 13:0e:2c:36:42:48:77:cd:3a:03:ee:ba:8f:5a:93:bf:08:ff: b8:9e:a3:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwODA4MTc0MzUzWhcNMjUwODE1MTc0MzUzWjAYMRYwFAYD VQQDEw02ODk2Mzc1OS0yMzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DOIIVx3yEzFEX1SoAZB4tDga33lIFztHEfcvmu6hjI0TwO7k6HdPGWby4HG 9qXZ30p6bvllhPEyxU1AYdGzJxh5j8uTzTZTP/8muqbLjNqjs4msQHfKFovb90gR hbfNGFM2wYSkwvuiFv2gGPQ3TBXFZS1RS9SuaPrMGwxEkzF/JprzepWbKIZM/G/W zr07iahHPx01U7vhwy9kPFGyV+rn0n853lvgKHzPOTAWruuBei3LgPkqHEyLNARd JjxhSasy79fB4V+psh4v6s2ZANVp2roWbSgiVR4xyZbMmOqoDocEkp7xQLIe+RAS 31e6alf/Koxxr4sW9PUdnDA50wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5CzWXa lzFaJdwNicCd01FmiJlgMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAn27ZumpmBzqVQu/JdEmmg1xHJsN55Crc02ptdFtrDQB5clvzuXu6 mWMarL++M7CjJ+ch0S8/W3AqdBO0DMJthdhVffGSMRf+ibSBD6USqrVTRuxolk2a zk8ecygRTS5ENGgQPz8ajQJWfOBOfgS9TBmpKihtRMvUkY3eFpsbn8Z06MAllKVW qhInUiEGuyaMx7VJHKmhoLVmFqtCIp7o1aMOgy8c2TshByeiMXdK2sKypLkGsWl4 xRYgscb4h9GXitNWx/J7YgpN9WWo8FMCQeYrkEOg7SIWoA0rUvuvArZ0vvwBDy8Y 6bUTDiw2Qkh3zToD7rqPWpO/CP+4nqMy -----END CERTIFICATE-----Generated at Fri Aug 8 20:56:13 2025 by rpki-client