$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: JEHnTGKXNER5yI5nqSVcRdVzY0C1xDjl5SMO3mXVqaw= Subject key identifier: FF:73:93:D0:CC:96:90:1B:2A:46:8E:C0:69:29:D4:E7:58:44:3F:63 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D14 Signing time: Sat 14 Jun 2025 17:57:08 +0000 Manifest this update: Sat 14 Jun 2025 17:57:07 +0000 Manifest next update: Sat 21 Jun 2025 17:57:07 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: HVnpzxku60IYJLNzjK3sBQTrjN+rYq1sotCDLFat44Q=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3356 (0xd1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Jun 14 17:57:07 2025 GMT Not After : Jun 21 17:57:07 2025 GMT Subject: CN=684db7f4-5bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:24:f1:11:72:4d:f2:a5:2d:4a:c6:0d:8c: cf:12:46:fa:d4:5e:55:a9:63:b1:34:3a:2d:c5:8d: 38:43:14:1d:33:69:8c:a3:af:cb:ca:ab:72:11:42: 4d:b4:f5:00:98:72:3c:3a:6b:2d:56:ea:c4:7e:17: c8:d6:21:59:df:e7:92:6e:4c:ab:3b:2b:a2:5c:ff: bc:28:1a:1c:67:45:dd:25:e4:0d:c6:17:77:75:37: 4e:56:09:df:b0:cb:a5:48:0f:5c:10:07:08:8c:fe: 0a:9d:6b:8f:4e:94:7d:95:14:c6:c0:11:40:39:9d: 69:a0:e6:fc:81:f0:b3:65:a9:53:49:a4:df:ac:79: d6:b3:79:1c:aa:59:32:bc:2f:ed:70:f1:44:8e:c1: ee:fc:08:5c:9f:36:6f:37:af:f1:c8:1b:3a:c9:dd: 86:58:75:2b:0d:77:77:65:89:0b:be:d0:86:e8:ac: fe:21:41:e6:fb:3e:5b:af:92:59:eb:6b:c5:ea:7c: 95:cc:fa:9d:21:ae:c0:9d:eb:44:7b:9f:d8:15:d9: a6:c1:7f:71:9f:0a:2f:7e:1e:35:11:57:3c:ed:d0: 58:d1:7a:0e:c6:7d:4d:b5:1d:73:e7:a1:35:a0:f2: 67:6a:33:cd:bc:8d:b8:85:f5:95:dd:dd:6b:84:fe: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:73:93:D0:CC:96:90:1B:2A:46:8E:C0:69:29:D4:E7:58:44:3F:63 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:bd:ba:5a:7f:a4:b1:b9:75:3c:40:06:44:b3:c4:ef:cb:00: ff:92:cb:81:70:f1:cb:c5:23:f7:c6:da:c7:3f:56:d7:4a:e1: 1f:9d:79:8b:6a:d4:9d:68:41:07:63:89:af:d2:43:b2:d4:cc: 5d:b0:fe:92:d8:e2:70:4b:98:00:20:3a:12:d8:5b:dc:e3:e3: fc:70:6e:14:81:69:c0:80:8e:3f:89:47:0f:75:d4:48:a2:00: d6:fd:5b:88:f8:67:ad:40:56:a7:d3:fd:a3:96:22:0b:31:72: 01:f8:d8:cc:13:55:94:af:63:c9:6d:36:09:47:6e:1d:9b:4e: cb:f6:96:65:d7:d7:7a:93:b5:a6:ea:ab:61:cd:d0:c4:96:f0: 73:b7:86:e4:73:1a:a3:f3:44:1b:f9:02:ca:83:60:d5:5b:d4: a7:dc:37:30:c6:b4:a5:36:8e:bd:b3:76:f0:57:cc:e6:2e:a7: a0:48:6c:92:64:db:dd:66:7f:2f:ca:94:99:a7:18:8c:a4:76: 99:4e:7b:c3:80:f8:97:7c:ee:31:0b:0d:b4:af:3f:c0:01:25: b5:04:a9:a7:7a:33:35:18:6b:90:d5:99:da:02:dd:76:f1:88: db:bc:64:0b:c7:3e:2b:77:37:65:32:7b:15:f5:43:78:f0:03: 4c:bc:42:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUwNjE0MTc1NzA3WhcNMjUwNjIxMTc1NzA3WjAYMRYwFAYD VQQDEw02ODRkYjdmNC01YmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFQk8RFyTfKlLUrGDYzPEkb61F5VqWOxNDotxY04QxQdM2mMo6/LyqtyEUJN tPUAmHI8OmstVurEfhfI1iFZ3+eSbkyrOyuiXP+8KBocZ0XdJeQNxhd3dTdOVgnf sMulSA9cEAcIjP4KnWuPTpR9lRTGwBFAOZ1poOb8gfCzZalTSaTfrHnWs3kcqlky vC/tcPFEjsHu/AhcnzZvN6/xyBs6yd2GWHUrDXd3ZYkLvtCG6Kz+IUHm+z5br5JZ 62vF6nyVzPqdIa7AnetEe5/YFdmmwX9xnwovfh41EVc87dBY0XoOxn1NtR1z56E1 oPJnajPNvI24hfWV3d1rhP5J5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9zk9DM lpAbKkaOwGkp1OdYRD9jMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArvbpaf6SxuXU8QAZEs8TvywD/ksuBcPHLxSP3xtrHP1bXSuEfnXmL atSdaEEHY4mv0kOy1MxdsP6S2OJwS5gAIDoS2Fvc4+P8cG4UgWnAgI4/iUcPddRI ogDW/VuI+GetQFan0/2jliILMXIB+NjME1WUr2PJbTYJR24dm07L9pZl19d6k7Wm 6qthzdDElvBzt4bkcxqj80Qb+QLKg2DVW9Sn3DcwxrSlNo69s3bwV8zmLqegSGyS ZNvdZn8vypSZpxiMpHaZTnvDgPiXfO4xCw20rz/AASW1BKmnejM1GGuQ1ZnaAt12 8YjbvGQLxz4rdzdlMnsV9UN48ANMvEKL -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:12 2025 by rpki-client