$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: V61rZC4ETW3Vuhdb6q6gWPvGZNe2j69ggHupMMKt5vc= Subject key identifier: CC:8F:47:3B:83:44:F4:D9:EA:51:40:1D:48:C7:A0:60:0E:9D:23:8C Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0BF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0BED Signing time: Fri 18 Jul 2025 18:57:40 +0000 Manifest this update: Fri 18 Jul 2025 18:57:39 +0000 Manifest next update: Fri 25 Jul 2025 18:57:39 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: IUnNGXij0YQhdOalMmGT7VKgI9EQbZegRKJLZHaHHXo=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3060 (0xbf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Jul 18 18:57:39 2025 GMT Not After : Jul 25 18:57:39 2025 GMT Subject: CN=687a9923-a9ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cf:a0:a0:22:ef:bc:dd:fa:b2:2f:0d:de:22: db:85:2b:83:c6:dc:a4:47:9c:c7:67:e0:20:20:eb: 69:06:fe:09:0d:3d:b2:a1:ef:1a:56:57:7a:36:61: a4:a1:7d:e6:c3:29:4d:91:ce:7b:a0:3c:d9:59:d6: e2:5a:6c:ac:0a:11:5c:da:ad:b8:8f:5b:ea:49:da: e3:43:05:11:f4:c9:06:a3:00:5e:c7:7d:d3:81:a7: b4:1a:09:46:01:66:a8:21:8c:84:a3:55:b1:4e:70: 61:a8:34:a5:bc:d7:3c:d4:90:a4:ae:54:ff:e9:23: 5d:42:fa:61:92:e1:4a:30:36:22:da:2f:c8:68:e8: f2:5b:ab:7f:74:ab:0d:f8:3c:6f:6a:0f:13:47:e9: 1f:67:69:51:04:5e:1b:98:e5:ae:f5:69:ec:c8:fd: dc:6e:29:d7:6c:b8:09:e5:ea:a8:dc:5e:c3:09:e5: 58:1f:00:db:d9:0f:e0:97:fe:1c:07:c5:6f:90:3e: 95:0c:ce:6c:bf:11:4f:6d:39:f7:68:d7:f1:1d:4e: 8d:ca:e7:e3:04:bf:d5:cc:cf:f0:a6:fa:2d:b4:fb: bd:dc:15:36:4e:d8:88:f5:96:87:4f:e6:4c:23:ee: 88:74:62:f3:4f:12:ea:22:c0:7e:2a:13:2f:9f:91: 06:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8F:47:3B:83:44:F4:D9:EA:51:40:1D:48:C7:A0:60:0E:9D:23:8C X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:72:78:d6:b7:5b:66:84:5c:75:ff:c6:90:31:8c:d0:e3:4f: 49:3e:ef:15:9d:ee:19:76:3c:8c:de:ca:b4:bd:06:88:ae:e1: e6:cd:19:83:53:e2:f5:f6:15:b6:7a:fe:3f:e9:f5:7d:fb:cf: 80:d5:28:75:8e:af:a2:14:2d:a9:97:ca:73:db:be:8c:48:a8: ad:bb:3a:2f:32:63:0c:af:bb:a6:56:fe:05:f1:d4:31:9d:58: 99:ae:b1:eb:40:5a:90:31:f6:2a:50:5f:07:a3:8e:80:a6:ee: c7:ab:94:1c:f0:7b:d2:c3:68:d8:3f:a3:35:66:4b:26:f3:96: d4:6f:0d:0b:d5:fe:54:b6:82:5a:4f:a0:65:79:a0:d0:a0:47: 08:9a:a9:a2:66:65:ce:3d:65:c6:a2:d5:43:d1:51:c1:f3:99: 44:a2:78:dc:ca:c6:56:c2:e0:a5:c9:cc:4f:15:cd:d7:fb:6d: 13:d1:b7:aa:c1:7f:2a:69:e8:48:21:26:75:ed:ca:ac:9f:ef: 68:21:1c:72:c9:8d:cf:54:5b:47:52:18:5d:83:6b:e9:dd:29: 8d:13:67:3c:5b:9b:a7:d2:b9:02:f6:78:d6:96:fe:c7:57:c1: cf:60:12:55:b7:1e:51:39:8e:6f:16:48:0c:5c:62:77:eb:48: fd:06:46:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwNzE4MTg1NzM5WhcNMjUwNzI1MTg1NzM5WjAYMRYwFAYD VQQDEw02ODdhOTkyMy1hOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAms+goCLvvN36si8N3iLbhSuDxtykR5zHZ+AgIOtpBv4JDT2yoe8aVld6NmGk oX3mwylNkc57oDzZWdbiWmysChFc2q24j1vqSdrjQwUR9MkGowBex33Tgae0GglG AWaoIYyEo1WxTnBhqDSlvNc81JCkrlT/6SNdQvphkuFKMDYi2i/IaOjyW6t/dKsN +Dxvag8TR+kfZ2lRBF4bmOWu9WnsyP3cbinXbLgJ5eqo3F7DCeVYHwDb2Q/gl/4c B8VvkD6VDM5svxFPbTn3aNfxHU6NyufjBL/VzM/wpvottPu93BU2TtiI9ZaHT+ZM I+6IdGLzTxLqIsB+KhMvn5EG7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyPRzuD RPTZ6lFAHUjHoGAOnSOMMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5cnjWt1tmhFx1/8aQMYzQ409JPu8Vne4ZdjyM3sq0vQaIruHmzRmD U+L19hW2ev4/6fV9+8+A1Sh1jq+iFC2pl8pz276MSKituzovMmMMr7umVv4F8dQx nViZrrHrQFqQMfYqUF8Ho46Apu7Hq5Qc8HvSw2jYP6M1Zksm85bUbw0L1f5UtoJa T6BleaDQoEcImqmiZmXOPWXGotVD0VHB85lEonjcysZWwuClycxPFc3X+20T0beq wX8qaehIISZ17cqsn+9oIRxyyY3PVFtHUhhdg2vp3SmNE2c8W5un0rkC9njWlv7H V8HPYBJVtx5ROY5vFkgMXGJ360j9BkZn -----END CERTIFICATE-----Generated at Sun Jul 20 03:50:21 2025 by rpki-client