$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: ySID9VoowDEX8xjNF6U+ssuTOqsfIqMXBtyfPMzlzmo= Subject key identifier: 6F:E2:EC:1B:05:47:9A:38:A2:29:D0:3C:12:DD:DE:C1:25:2F:A2:41 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 8F Signing time: Sat 19 Jul 2025 06:50:09 +0000 Manifest this update: Sat 19 Jul 2025 06:50:09 +0000 Manifest next update: Sat 26 Jul 2025 06:50:09 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: BljHaTe50EpvTd4jZZBMTipuJsGV6OLDTI8iDRYVB84=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 76K1YbroX8X8W0IqnMICi5xKvh2ELCOHzwZ1tdiFlUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Jul 19 06:50:09 2025 GMT Not After : Jul 26 06:50:09 2025 GMT Subject: CN=687b4021-f6cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d8:1d:8b:a4:9b:0e:5c:26:a7:d8:99:5d:9b: 65:a7:54:32:3f:18:de:c7:5e:c6:9b:ce:f6:ac:21: 65:fe:b0:08:7c:16:d3:2b:a1:53:04:2d:34:57:ed: f4:ef:fd:bf:33:34:89:eb:d1:e7:c3:97:0a:7f:e4: 8b:06:95:91:29:2d:3b:e7:fa:44:34:b8:85:6f:1b: 18:b5:9d:d9:bf:b6:b6:1a:bb:f8:6f:f8:ce:da:c1: 6c:61:12:7e:e3:b1:96:ae:b0:09:80:44:c2:0e:6b: 53:ac:31:7d:55:e8:1c:6d:de:87:3a:93:db:da:3b: 18:06:47:82:ce:1d:b4:20:24:60:ce:39:4e:44:1a: bb:c7:ec:22:12:c8:6a:8d:f0:06:46:56:12:24:57: bd:25:98:d3:67:61:c8:36:ac:15:14:42:8a:c1:6a: 62:4a:06:3c:d5:b8:f5:78:a4:c9:b4:ed:e7:79:87: df:73:e7:bc:57:cd:e8:ab:1f:99:4a:5e:26:2b:e1: 8c:e6:89:05:3b:dd:0a:27:77:65:d7:97:8a:8d:66: a3:af:65:8a:aa:ad:75:b6:ad:8c:1a:78:28:c6:53: 87:08:0f:79:d3:a5:1a:e2:12:cd:5c:37:81:6b:b5: d0:36:6e:28:eb:28:ed:99:92:45:c5:78:10:8f:26: d2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E2:EC:1B:05:47:9A:38:A2:29:D0:3C:12:DD:DE:C1:25:2F:A2:41 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:9b:47:2f:e8:7e:8d:50:5c:74:0e:cc:c1:38:3f:82:6a:32: b7:16:26:21:48:35:ef:9e:c4:18:00:e2:06:c2:e9:18:5f:3d: b6:87:80:77:13:ba:6e:68:26:7e:fd:8c:44:e1:af:3f:82:0d: 79:27:ca:ca:4d:8c:60:bc:fe:fd:36:25:0a:8b:26:eb:ff:f1: 9e:74:8a:03:c6:68:92:fc:23:ea:45:a3:28:87:30:91:d9:e5: 1f:2a:27:cc:b6:9e:8a:c2:55:72:19:ed:42:ed:c4:5a:92:8c: b3:39:1f:58:d3:07:fe:64:d7:99:3c:db:c0:ce:80:67:2b:67: 2f:26:57:59:72:3a:9c:27:3e:3e:93:5a:b9:e6:95:23:eb:2e: a3:b3:8f:e1:6c:b6:cb:fa:2f:b8:c2:14:28:3d:d6:fc:fc:ed: 43:30:43:6c:66:86:55:c1:aa:08:0f:c9:41:6a:cd:7f:04:fd: 69:d0:95:b6:65:bc:6d:24:c3:2d:d3:48:33:de:51:84:11:ee: 17:9f:f1:66:89:8a:cb:da:b0:a5:8a:57:13:3a:e4:97:4b:de: ea:9d:17:41:bc:23:c9:a9:4e:e3:d8:73:cc:ef:1e:f7:0c:fd: a6:9d:e3:97:97:c3:a0:00:40:62:24:16:b7:06:4e:25:59:b8: 23:54:54:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUwNzE5MDY1MDA5WhcNMjUwNzI2MDY1MDA5WjAYMRYwFAYD VQQDEw02ODdiNDAyMS1mNmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tgdi6SbDlwmp9iZXZtlp1QyPxjex17Gm872rCFl/rAIfBbTK6FTBC00V+30 7/2/MzSJ69Hnw5cKf+SLBpWRKS075/pENLiFbxsYtZ3Zv7a2Grv4b/jO2sFsYRJ+ 47GWrrAJgETCDmtTrDF9Vegcbd6HOpPb2jsYBkeCzh20ICRgzjlORBq7x+wiEshq jfAGRlYSJFe9JZjTZ2HINqwVFEKKwWpiSgY81bj1eKTJtO3neYffc+e8V83oqx+Z Sl4mK+GM5okFO90KJ3dl15eKjWajr2WKqq11tq2MGngoxlOHCA9506Ua4hLNXDeB a7XQNm4o6yjtmZJFxXgQjybSoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/i7BsF R5o4oinQPBLd3sElL6JBMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSm0cv6H6NUFx0DszBOD+CajK3FiYhSDXvnsQYAOIGwukYXz22h4B3 E7puaCZ+/YxE4a8/gg15J8rKTYxgvP79NiUKiybr//GedIoDxmiS/CPqRaMohzCR 2eUfKifMtp6KwlVyGe1C7cRakoyzOR9Y0wf+ZNeZPNvAzoBnK2cvJldZcjqcJz4+ k1q55pUj6y6js4/hbLbL+i+4whQoPdb8/O1DMENsZoZVwaoID8lBas1/BP1p0JW2 ZbxtJMMt00gz3lGEEe4Xn/FmiYrL2rClilcTOuSXS97qnRdBvCPJqU7j2HPM7x73 DP2mneOXl8OgAEBiJBa3Bk4lWbgjVFQH -----END CERTIFICATE-----Generated at Sun Jul 20 17:27:55 2025 by rpki-client