$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: hxC69MrWrix6RUQdAEMwauNjsx7fmQV7Pe0tIH5Za4c= Subject key identifier: 40:BD:C8:C3:F4:D9:2A:89:48:BA:FE:67:AC:D8:3C:32:EB:36:48:61 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0BF9 Signing time: Sun 10 Aug 2025 18:46:15 +0000 Manifest this update: Sun 10 Aug 2025 18:46:14 +0000 Manifest next update: Sun 17 Aug 2025 18:46:14 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: sxViEMO+cNoryQ/Ey+BTpdNoP1RRBRypCuaq8ognyYs=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 18:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3072 (0xc00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Aug 10 18:46:14 2025 GMT Not After : Aug 17 18:46:14 2025 GMT Subject: CN=6898e8f7-c9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c7:50:89:b5:a7:00:26:81:79:03:72:d0:fb: 64:f0:33:32:8b:53:d3:17:44:fd:a9:36:95:07:39: 69:d0:d3:f7:d4:af:93:40:d2:fc:10:8e:b9:f4:1e: f4:bb:ed:d0:b0:6e:64:0d:61:52:63:03:2f:18:9d: 60:18:29:ad:48:95:42:d9:26:16:5e:17:83:f4:ed: 5d:fd:25:83:5a:c7:f9:bd:b9:19:64:6e:61:42:aa: a8:c6:5e:94:39:39:57:39:3c:78:bc:7d:05:3a:c5: a7:76:35:5f:be:c8:6e:2c:94:a5:69:d8:be:b1:d2: 5d:7e:18:3e:44:c2:27:3c:c1:6e:4e:21:f0:ff:d3: ae:4a:a3:39:b1:9d:f1:f7:6d:a7:3e:04:05:62:dc: df:ac:3c:73:ff:cf:38:57:59:a6:0f:5a:32:d8:39: 1e:6b:1d:d2:5d:97:68:bd:00:3e:90:65:72:71:f4: 12:72:3b:df:bb:1b:00:55:74:3f:72:15:e5:b6:91: 46:c2:69:c2:b1:62:97:e2:72:0a:18:23:2f:47:b2: 44:bf:f9:8a:33:1e:f0:d7:48:b5:07:7a:b2:12:d0: 6a:60:d4:ab:21:3c:28:44:02:39:5f:03:b0:21:ed: 48:e1:8b:eb:6f:52:57:0c:6f:60:d7:ad:e5:72:51: bd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BD:C8:C3:F4:D9:2A:89:48:BA:FE:67:AC:D8:3C:32:EB:36:48:61 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:12:10:e8:60:84:e4:48:f4:76:bc:6e:7a:8e:c1:7a:cd:9b: b4:d2:25:dc:ef:6b:ee:e6:d1:12:41:b3:ed:ee:11:47:0c:ba: ca:7e:53:4b:8b:67:2c:eb:9f:61:e5:7c:6a:bd:cc:67:c5:70: a5:b6:71:c4:d8:4e:cc:82:85:4c:58:bb:6f:7d:c2:0a:5a:9d: 0a:2e:d5:63:d5:d2:b3:a3:d8:ec:75:42:ea:67:d0:df:07:11: dd:13:22:4f:eb:a6:9d:05:7b:78:1a:9d:f9:b3:1e:40:ba:bb: 21:e1:e8:71:70:4c:00:ed:cf:2e:d0:1b:1a:45:af:2c:66:99: 8b:2e:cc:c9:33:6c:9e:b5:d7:50:1d:56:1c:93:8f:85:27:51: 43:3a:3d:5f:81:43:87:81:d5:82:18:ce:a2:7c:18:7d:e7:55: 56:fa:45:d7:6c:96:5d:8c:2b:7a:88:14:b6:6e:62:0b:04:b7: 39:4d:cf:41:3c:f2:9a:28:8a:59:0a:2e:48:f7:30:23:6c:7b: be:a1:46:94:d7:4d:0c:6c:83:cd:90:96:74:df:87:6a:ed:3e: e0:a8:71:c3:d1:63:a9:e5:37:f1:04:f2:c5:b7:a7:eb:03:11: 20:f5:9b:76:49:29:c0:fe:a6:6f:61:eb:ec:62:6a:e4:3b:7c: f4:4d:de:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwODEwMTg0NjE0WhcNMjUwODE3MTg0NjE0WjAYMRYwFAYD VQQDEw02ODk4ZThmNy1jOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsdQibWnACaBeQNy0Ptk8DMyi1PTF0T9qTaVBzlp0NP31K+TQNL8EI659B70 u+3QsG5kDWFSYwMvGJ1gGCmtSJVC2SYWXheD9O1d/SWDWsf5vbkZZG5hQqqoxl6U OTlXOTx4vH0FOsWndjVfvshuLJSladi+sdJdfhg+RMInPMFuTiHw/9OuSqM5sZ3x 922nPgQFYtzfrDxz/884V1mmD1oy2Dkeax3SXZdovQA+kGVycfQScjvfuxsAVXQ/ chXltpFGwmnCsWKX4nIKGCMvR7JEv/mKMx7w10i1B3qyEtBqYNSrITwoRAI5XwOw Ie1I4Yvrb1JXDG9g163lclG9hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC9yMP0 2SqJSLr+Z6zYPDLrNkhhMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcEhDoYITkSPR2vG56jsF6zZu00iXc72vu5tESQbPt7hFHDLrKflNL i2cs659h5XxqvcxnxXCltnHE2E7MgoVMWLtvfcIKWp0KLtVj1dKzo9jsdULqZ9Df BxHdEyJP66adBXt4Gp35sx5Aursh4ehxcEwA7c8u0BsaRa8sZpmLLszJM2yetddQ HVYck4+FJ1FDOj1fgUOHgdWCGM6ifBh951VW+kXXbJZdjCt6iBS2bmILBLc5Tc9B PPKaKIpZCi5I9zAjbHu+oUaU100MbIPNkJZ034dq7T7gqHHD0WOp5TfxBPLFt6fr AxEg9Zt2SSnA/qZvYevsYmrkO3z0Td7M -----END CERTIFICATE-----Generated at Tue Aug 12 14:44:38 2025 by rpki-client