$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft File: HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json) Hash identifier: Xo/3VC8DnMKks9frvQlZ16wPgtzSh6oY7qIGSxvSb24= Subject key identifier: 1B:E1:10:86:B0:C3:03:90:32:A8:9E:F4:A5:5A:C5:9D:D4:2D:8A:0C Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 Certificate issuer: /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft Manifest number: 0148 Signing time: Fri 25 Jul 2025 04:37:55 +0000 Manifest this update: Fri 25 Jul 2025 04:37:55 +0000 Manifest next update: Fri 01 Aug 2025 04:37:55 +0000 Files and hashes: 1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: 1oQHcLrVR1WEcj6jb2BG0CTSblvDldoouhrzakhzQB8=) 2: 9556705A2E6111EF9D743040C4F9AE02.roa (hash: RLnLzyrrcNZhWSbOgsksg70plHnwm/0y4IiOT7XePHI=) 3: FC34967C6C8611EFBF35D221C4F9AE02.roa (hash: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 04:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Validity Not Before: Jul 25 04:37:55 2025 GMT Not After : Aug 1 04:37:55 2025 GMT Subject: CN=68830a23-dc4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:e4:7f:b4:27:0d:cc:95:df:68:68:19:25: 92:a9:77:04:47:ea:49:c0:60:e7:9b:0a:4c:11:a3: e5:26:e9:b5:36:60:c8:02:5f:85:f3:4b:bf:17:5c: d5:c5:4f:1a:39:8f:28:41:76:17:9f:e3:81:f0:43: 0a:34:1f:28:07:ed:39:a9:2c:ed:f6:9e:ff:b7:12: be:52:e1:1f:32:90:de:28:3c:80:7d:6b:eb:ca:88: e6:92:19:6c:91:98:89:a1:73:cf:51:cf:87:5d:49: 32:80:14:7d:e5:45:1b:ca:0e:a0:a2:a1:99:e2:e2: d0:5c:54:ae:89:8a:f2:36:88:ff:48:4d:da:8b:ce: 74:3f:95:11:cb:ba:19:a6:fe:78:ec:5d:4c:3e:b2: dd:49:74:c6:19:10:14:a3:c2:b5:39:a0:ff:f3:71: 50:38:e5:53:d8:64:d7:dc:76:b3:ec:97:e9:cf:33: 07:b8:da:01:03:b5:8d:46:c9:85:6c:36:d8:70:47: 83:22:39:d7:ab:66:42:93:c3:7c:36:6a:71:93:51: d0:49:9e:7e:86:19:55:70:56:41:7b:22:50:c8:ee: 84:ed:8a:68:c8:b0:96:36:aa:eb:31:c8:d7:81:24: 38:21:bd:26:c4:fc:a7:3e:bb:a3:b6:0e:5a:5e:b3: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E1:10:86:B0:C3:03:90:32:A8:9E:F4:A5:5A:C5:9D:D4:2D:8A:0C X509v3 Authority Key Identifier: keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:81:4a:18:27:fe:28:c1:29:45:5b:8e:99:c9:66:66:92:6c: 54:f6:03:df:89:9e:23:95:85:62:6f:3f:7d:dd:9a:d7:67:ed: 8d:fd:7d:44:72:14:92:ac:4b:91:b5:42:c9:29:1b:6c:9c:0f: dc:96:d3:8d:cc:12:a0:98:4e:77:d8:ec:00:74:ab:42:e0:4b: 3a:31:83:2f:9e:ab:ff:5a:f8:51:43:31:fa:dc:97:a1:f6:22: da:43:76:61:23:b4:f9:60:6b:93:51:e9:8f:cf:a7:78:68:8b: aa:81:38:22:37:4b:c6:0f:f9:fa:db:45:bc:a8:44:74:60:e4: 42:f0:9b:1f:11:d7:c0:97:d5:17:2f:5a:23:44:c8:50:b0:5d: 7c:eb:54:0e:21:60:67:5f:d1:0f:ef:ec:3b:7d:b3:c9:0d:78: c7:b1:13:54:c2:6e:1e:cf:70:2a:d6:13:0c:b7:37:8e:ae:62: e1:9b:e4:cb:14:56:37:71:b6:2e:37:6e:df:6c:17:dc:f4:e1: 24:1f:ea:0f:33:a3:9d:4a:be:0b:42:28:a4:0c:10:ca:fe:dc: 3e:87:02:52:e1:8d:74:b5:07:05:3b:9d:34:d4:26:fb:7e:53: fb:11:05:00:94:55:81:e5:3f:e4:03:ff:7d:82:27:0a:1e:c6: e4:55:a5:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDFEMDBDMjgzQ0FBMUFCM0NDNDM3MUEyQTM4NEQ2MkIx Q0Q0NEZCQTcwHhcNMjUwNzI1MDQzNzU1WhcNMjUwODAxMDQzNzU1WjAYMRYwFAYD VQQDEw02ODgzMGEyMy1kYzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/bkf7QnDcyV32hoGSWSqXcER+pJwGDnmwpMEaPlJum1NmDIAl+F80u/F1zV xU8aOY8oQXYXn+OB8EMKNB8oB+05qSzt9p7/txK+UuEfMpDeKDyAfWvryojmkhls kZiJoXPPUc+HXUkygBR95UUbyg6goqGZ4uLQXFSuiYryNoj/SE3ai850P5URy7oZ pv547F1MPrLdSXTGGRAUo8K1OaD/83FQOOVT2GTX3Haz7JfpzzMHuNoBA7WNRsmF bDbYcEeDIjnXq2ZCk8N8Nmpxk1HQSZ5+hhlVcFZBeyJQyO6E7YpoyLCWNqrrMcjX gSQ4Ib0mxPynPrujtg5aXrMW1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvhEIaw wwOQMqie9KVaxZ3ULYoMMB8GA1UdIwQYMBaAFB0AwoPKoas8xDcaKjhNYrHNRPun MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny81RjNDODQ5Njgz QTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6ekVOeG9xT0UxaXNjMUUt NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRRENnOHFocXp6RU54b3FPRTFpc2MxRS02Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny81RjNDODQ5NjgzQTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6 ekVOeG9xT0UxaXNjMUUtNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgUoYJ/4owSlFW46ZyWZmkmxU9gPfiZ4jlYVibz993ZrXZ+2N/X1E chSSrEuRtULJKRtsnA/cltONzBKgmE532OwAdKtC4Es6MYMvnqv/WvhRQzH63Jeh 9iLaQ3ZhI7T5YGuTUemPz6d4aIuqgTgiN0vGD/n620W8qER0YORC8JsfEdfAl9UX L1ojRMhQsF1861QOIWBnX9EP7+w7fbPJDXjHsRNUwm4ez3Aq1hMMtzeOrmLhm+TL FFY3cbYuN27fbBfc9OEkH+oPM6OdSr4LQiikDBDK/tw+hwJS4Y10tQcFO5001Cb7 flP7EQUAlFWB5T/kA/99gicKHsbkVaXa -----END CERTIFICATE-----Generated at Sat Jul 26 02:04:12 2025 by rpki-client