$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: Q/Kbup/g0mBssrzwauvn1MEDlKFn+6V3ni2bBuAxubs= Subject key identifier: BB:14:48:7F:20:06:CD:C7:B5:4D:9D:20:A9:BD:E6:79:66:C2:7E:A6 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0F97 Signing time: Fri 18 Jul 2025 17:42:13 +0000 Manifest this update: Fri 18 Jul 2025 17:42:12 +0000 Manifest next update: Fri 25 Jul 2025 17:42:12 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: xABMYYxyz6zMJz8IdeLsCk9ghlF13EFGacQRrFIyW6k=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Jul 18 17:42:12 2025 GMT Not After : Jul 25 17:42:12 2025 GMT Subject: CN=687a8774-fa40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:53:5e:32:de:f8:1e:80:e6:a8:96:21:6f: 3c:99:c2:71:91:68:5e:03:e9:61:fc:52:4b:92:f1: ab:58:d6:95:be:d6:2a:3d:a4:d1:5b:2b:d2:b1:0b: 0b:e5:34:55:20:c9:58:3a:db:82:7c:e1:3d:5f:1e: bc:bb:6a:4b:50:59:57:01:0c:b8:28:c6:22:7a:8c: b8:fc:a5:71:e0:79:81:d9:2b:69:df:72:7a:c8:b8: 79:e6:46:31:41:04:23:63:0d:61:40:d3:18:68:0d: c6:e4:a4:c2:12:6a:7b:cb:30:6e:7e:35:20:76:28: 0a:87:9b:47:0d:40:3a:3f:3e:11:c9:81:6f:72:d8: d2:82:f0:b5:d8:a4:f0:bd:13:23:64:3e:2d:a4:1c: 4e:26:eb:e6:69:de:5f:f3:c3:e6:57:be:4d:9f:c2: 9c:d6:1f:31:c4:a4:73:1e:e6:a8:d1:5a:b6:1e:cd: 8d:65:bb:6b:82:82:de:15:37:1e:5d:1f:cd:b6:cb: c3:62:d0:8e:74:a4:ce:a0:7b:f1:ff:57:02:7b:4b: 74:4b:25:e9:d5:16:26:ea:3c:aa:79:e4:b1:d0:4f: 70:c5:23:c0:fa:9d:fb:0a:e0:34:4c:b5:9d:a7:78: 1e:6a:8c:74:36:72:e3:4f:fd:5f:0a:c3:0e:19:68: 10:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:14:48:7F:20:06:CD:C7:B5:4D:9D:20:A9:BD:E6:79:66:C2:7E:A6 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:05:f7:78:0c:4e:d8:71:d9:7e:12:4a:f8:60:b5:9e:b0:4a: 6f:de:84:ce:5e:6f:6b:e4:df:48:8f:d8:ab:62:f7:50:5a:8a: 09:a7:9c:fc:ba:5b:65:8b:46:2f:26:ac:7a:8e:f4:da:82:9b: 6c:85:3b:ba:ab:17:1c:cf:45:a1:82:c4:40:a9:09:d9:17:a4: 1a:dc:2b:31:c4:9a:68:ad:f3:44:37:d7:3e:af:35:f6:a2:ea: 98:03:ed:da:7c:e9:a4:e9:ed:c8:60:f1:f9:f4:1a:b2:6b:bf: 82:76:90:59:b4:7d:8c:4c:f6:6e:17:de:05:8b:32:4f:2e:74: 18:3e:49:2b:3e:ef:1d:67:3c:ca:21:1b:b1:4f:c7:cd:b4:cb: be:c0:62:1c:fe:3a:6f:a1:61:42:15:00:70:29:1c:89:94:b3: e0:9c:35:dd:aa:7e:ff:cb:fc:c8:b4:a6:cb:61:d7:c3:1b:fe: ce:e4:68:bd:ff:68:7b:ea:45:95:4d:91:e1:43:9c:e8:42:8f: f4:b1:16:3a:da:1e:45:0b:be:d1:21:fc:88:f8:85:76:71:22: 59:e9:02:67:5e:e2:9a:07:96:c4:ef:35:6c:3e:88:c6:35:3d: 64:a5:eb:51:30:c3:23:76:7f:a4:74:1f:6b:a6:a0:d4:a1:84: 10:7c:ba:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwNzE4MTc0MjEyWhcNMjUwNzI1MTc0MjEyWjAYMRYwFAYD VQQDEw02ODdhODc3NC1mYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrhTXjLe+B6A5qiWIW88mcJxkWheA+lh/FJLkvGrWNaVvtYqPaTRWyvSsQsL 5TRVIMlYOtuCfOE9Xx68u2pLUFlXAQy4KMYieoy4/KVx4HmB2Stp33J6yLh55kYx QQQjYw1hQNMYaA3G5KTCEmp7yzBufjUgdigKh5tHDUA6Pz4RyYFvctjSgvC12KTw vRMjZD4tpBxOJuvmad5f88PmV75Nn8Kc1h8xxKRzHuao0Vq2Hs2NZbtrgoLeFTce XR/NtsvDYtCOdKTOoHvx/1cCe0t0SyXp1RYm6jyqeeSx0E9wxSPA+p37CuA0TLWd p3geaox0NnLjT/1fCsMOGWgQNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsUSH8g Bs3HtU2dIKm95nlmwn6mMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhBfd4DE7Ycdl+Ekr4YLWesEpv3oTOXm9r5N9Ij9irYvdQWooJp5z8 ultli0YvJqx6jvTagptshTu6qxccz0WhgsRAqQnZF6Qa3CsxxJporfNEN9c+rzX2 ouqYA+3afOmk6e3IYPH59Bqya7+CdpBZtH2MTPZuF94FizJPLnQYPkkrPu8dZzzK IRuxT8fNtMu+wGIc/jpvoWFCFQBwKRyJlLPgnDXdqn7/y/zItKbLYdfDG/7O5Gi9 /2h76kWVTZHhQ5zoQo/0sRY62h5FC77RIfyI+IV2cSJZ6QJnXuKaB5bE7zVsPojG NT1kpetRMMMjdn+kdB9rpqDUoYQQfLqS -----END CERTIFICATE-----Generated at Sun Jul 20 16:28:15 2025 by rpki-client