$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft File: HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json) Hash identifier: ajDOVO+Ly/Gn8JCBLbKE7rtUFoqlTT6t6dsmwR3UrbM= Subject key identifier: EA:BB:ED:A0:44:6A:2C:7A:9E:6F:CB:69:77:BD:FC:85:4A:48:4C:76 Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 Certificate issuer: /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft Manifest number: 0147 Signing time: Wed 23 Jul 2025 04:39:55 +0000 Manifest this update: Wed 23 Jul 2025 04:39:55 +0000 Manifest next update: Wed 30 Jul 2025 04:39:55 +0000 Files and hashes: 1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: 77Myqy7YUZtXuqpJQLHa7gRgscZOY9hx0VPKk7vCDSQ=) 2: 9556705A2E6111EF9D743040C4F9AE02.roa (hash: RLnLzyrrcNZhWSbOgsksg70plHnwm/0y4IiOT7XePHI=) 3: FC34967C6C8611EFBF35D221C4F9AE02.roa (hash: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Validity Not Before: Jul 23 04:39:55 2025 GMT Not After : Jul 30 04:39:55 2025 GMT Subject: CN=6880679b-1708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9b:70:0c:75:21:c1:bc:29:90:86:2e:3f:7f: bb:eb:5f:42:3f:3b:bf:7f:fd:7a:a2:39:3f:93:c5: cc:02:f2:04:eb:8d:d0:bb:d4:08:47:f1:94:05:e3: db:db:32:6b:88:89:ac:06:ed:59:7e:b3:c8:c3:da: 6e:31:c1:4c:83:77:7d:4e:4b:47:67:a0:4f:5c:e5: 3f:db:42:0d:05:09:11:cc:71:39:d4:eb:e9:ee:61: 74:fd:25:ef:f6:0a:65:ce:e0:9b:89:d3:2e:68:00: e1:15:29:2f:46:9c:90:4b:9d:f9:b7:2e:63:8f:48: e6:21:9f:30:a4:24:7b:c9:93:60:fe:de:01:ce:03: 5b:40:e3:9c:05:f9:bc:b4:fd:b2:b9:72:cb:25:bd: 58:82:6e:d4:98:90:4d:86:9b:b3:88:ae:27:e4:23: 2f:e0:16:26:80:e2:46:7d:8c:0a:e3:55:59:01:f6: 18:ce:a0:54:53:43:5a:3d:ca:70:d8:74:02:ac:47: 8e:1f:58:08:60:0f:fa:87:a3:03:76:91:8a:30:48: 6b:ac:a3:17:11:f5:4e:f0:26:7d:c2:37:37:7e:0f: 5e:a7:92:bf:be:58:90:d9:8d:6f:da:30:dd:88:ea: 82:b1:91:e8:62:fe:05:fc:2c:ab:24:b3:4f:39:e4: ad:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BB:ED:A0:44:6A:2C:7A:9E:6F:CB:69:77:BD:FC:85:4A:48:4C:76 X509v3 Authority Key Identifier: keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:7e:63:f7:99:2b:eb:a8:18:c4:90:92:82:40:12:51:bf:0d: 05:4d:65:18:37:2a:d8:2f:d2:81:9a:00:e8:31:8a:5e:50:a4: 2e:52:95:b2:a0:88:b5:9c:69:90:1b:33:fe:0c:79:38:79:0f: 7e:b9:c8:da:97:d8:22:e6:39:f6:d5:b8:e6:a4:27:03:08:38: fe:ad:08:42:c2:fb:c3:b0:92:1b:20:2a:99:4e:fc:44:bc:32: 51:18:d0:66:df:b2:8b:37:b1:33:b6:cb:ed:f9:b6:6a:83:76: 9e:75:bd:70:1d:9c:35:7a:2c:d1:fd:01:31:a3:61:c7:6e:44: eb:fd:38:ff:22:eb:9d:db:20:7f:2b:bc:27:e5:66:a2:23:75: 75:c0:ac:e4:5d:3f:7d:68:25:86:37:aa:08:ec:61:67:07:ed: 15:18:8a:1d:c0:a3:86:1c:04:20:28:20:d0:79:73:19:c9:23: 9b:f6:e4:b4:9c:b2:ee:6e:11:fc:43:30:85:50:bb:67:a2:b3: 14:8d:a3:3e:6d:9e:9c:fd:41:2f:3a:07:10:c1:cb:99:26:21: 32:4f:d3:cb:86:95:74:b9:83:37:01:74:db:b8:5e:36:51:5a: 63:88:0e:fc:3b:5f:f1:f7:c0:d0:ed:ce:c2:45:76:83:15:a6: 8b:e1:6a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDFEMDBDMjgzQ0FBMUFCM0NDNDM3MUEyQTM4NEQ2MkIx Q0Q0NEZCQTcwHhcNMjUwNzIzMDQzOTU1WhcNMjUwNzMwMDQzOTU1WjAYMRYwFAYD VQQDEw02ODgwNjc5Yi0xNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5twDHUhwbwpkIYuP3+7619CPzu/f/16ojk/k8XMAvIE643Qu9QIR/GUBePb 2zJriImsBu1ZfrPIw9puMcFMg3d9TktHZ6BPXOU/20INBQkRzHE51Ovp7mF0/SXv 9gplzuCbidMuaADhFSkvRpyQS535ty5jj0jmIZ8wpCR7yZNg/t4BzgNbQOOcBfm8 tP2yuXLLJb1Ygm7UmJBNhpuziK4n5CMv4BYmgOJGfYwK41VZAfYYzqBUU0NaPcpw 2HQCrEeOH1gIYA/6h6MDdpGKMEhrrKMXEfVO8CZ9wjc3fg9ep5K/vliQ2Y1v2jDd iOqCsZHoYv4F/CyrJLNPOeStAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOq77aBE aix6nm/LaXe9/IVKSEx2MB8GA1UdIwQYMBaAFB0AwoPKoas8xDcaKjhNYrHNRPun MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny81RjNDODQ5Njgz QTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6ekVOeG9xT0UxaXNjMUUt NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRRENnOHFocXp6RU54b3FPRTFpc2MxRS02Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny81RjNDODQ5NjgzQTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6 ekVOeG9xT0UxaXNjMUUtNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRfmP3mSvrqBjEkJKCQBJRvw0FTWUYNyrYL9KBmgDoMYpeUKQuUpWy oIi1nGmQGzP+DHk4eQ9+ucjal9gi5jn21bjmpCcDCDj+rQhCwvvDsJIbICqZTvxE vDJRGNBm37KLN7Eztsvt+bZqg3aedb1wHZw1eizR/QExo2HHbkTr/Tj/Iuud2yB/ K7wn5WaiI3V1wKzkXT99aCWGN6oI7GFnB+0VGIodwKOGHAQgKCDQeXMZySOb9uS0 nLLubhH8QzCFULtnorMUjaM+bZ6c/UEvOgcQwcuZJiEyT9PLhpV0uYM3AXTbuF42 UVpjiA78O1/x98DQ7c7CRXaDFaaL4Wox -----END CERTIFICATE-----Generated at Thu Jul 24 05:05:45 2025 by rpki-client