$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: ancF7V8By5MzDgW7o0KvO4pAgSZGrDHodSmptS3ZVZI= Subject key identifier: EF:10:45:7F:E2:CA:8B:4F:0F:DB:54:4C:70:2E:62:2C:21:6B:A8:D6 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 0658 Signing time: Wed 04 Jun 2025 22:24:22 +0000 Manifest this update: Wed 04 Jun 2025 22:24:22 +0000 Manifest next update: Wed 11 Jun 2025 22:24:22 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: iEy0ZanKIAMfqC8l16EtZA7Te3nL2SVqE/X2Q1fhlwo=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: 5r7yRMUc5swzOzS/9N2QGpH5cUaodsxsl7ok+oJSeSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Jun 4 22:24:22 2025 GMT Not After : Jun 11 22:24:22 2025 GMT Subject: CN=6840c796-f865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5f:41:11:63:fe:59:6d:d9:d7:27:6f:ef:6b: d6:60:91:73:62:aa:2d:e0:3d:f5:6e:58:e0:b4:6c: d9:35:37:e5:77:fc:9f:dd:66:1a:8a:98:30:f7:f2: 1d:a2:47:61:9f:d2:99:cf:c9:87:8b:d8:35:d7:66: 48:29:40:d2:5a:84:df:f4:84:16:d1:b5:30:a5:5a: 4a:6e:5d:e4:92:c1:a9:81:4a:d8:bf:12:6d:50:00: 84:5d:af:81:1e:8d:9c:22:af:1d:f0:2c:ad:5c:9f: eb:73:68:55:c5:ef:fd:c5:c8:13:2f:62:e0:b5:57: 8e:ee:35:5a:ba:c4:de:a9:40:52:f5:d1:a1:88:99: 78:b1:0d:7c:79:79:a9:dc:cc:b5:b3:fc:d7:69:ba: 27:c2:22:c8:e3:5f:20:03:87:88:06:f7:1f:e5:9e: ba:08:39:74:03:a2:5b:29:7f:3e:4d:61:64:9d:c5: 88:62:9c:c4:9d:73:aa:2e:6e:89:fb:d1:ab:a7:94: fc:f1:1f:5c:3b:b4:8d:ee:f8:d9:eb:3c:63:fd:49: 9d:5c:67:14:53:b9:0f:88:43:cf:ea:70:ee:ae:7b: 2b:f7:80:e2:62:79:21:9f:5b:a4:46:fc:5b:d9:f6: fa:cb:7c:ae:25:06:4e:55:3b:c0:ca:c2:e5:2d:9c: ae:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:45:7F:E2:CA:8B:4F:0F:DB:54:4C:70:2E:62:2C:21:6B:A8:D6 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:63:cb:55:0a:df:4d:a7:dc:ee:19:90:33:45:f0:70:c5:94: 2f:b3:3c:8e:8a:f8:cd:3e:f1:9c:56:a4:5e:85:4b:22:19:62: 5c:d7:b0:2d:16:5a:db:44:a3:0b:ec:9a:75:17:d5:7e:c3:72: 2f:7d:81:af:9b:38:41:6b:cd:60:25:e2:e2:ca:19:1f:92:d9: 3c:00:20:bf:74:a7:25:d2:e1:aa:ef:05:61:89:e4:33:70:2d: d8:58:6f:6f:ff:e0:88:5d:a3:c1:b2:c4:aa:c1:a2:2c:8b:8d: 2c:5a:31:ea:75:b3:1b:53:61:78:0d:2c:d8:71:fd:e6:df:2b: 6e:a3:ce:3f:04:47:47:b6:b5:ef:d5:a9:d3:d3:b9:d3:9b:41: c8:15:78:fa:00:da:15:80:c6:6b:7d:99:a3:ff:c6:26:f5:8d: 03:7d:f6:d8:f0:b9:f2:77:c2:25:87:5a:d2:48:d1:b4:e1:04: 62:a2:d3:04:ab:6a:33:57:30:5e:0b:bc:0d:4d:a6:80:82:9a: fc:4d:98:aa:f6:63:09:20:ea:8e:ea:72:53:da:c0:6f:41:85: 28:22:22:4f:63:0d:2b:97:cc:ea:eb:b6:c6:87:2c:b6:df:0e: 38:18:06:dd:28:a6:a5:e5:72:12:27:93:13:27:6e:0c:ac:5e: 12:d1:82:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUwNjA0MjIyNDIyWhcNMjUwNjExMjIyNDIyWjAYMRYwFAYD VQQDEw02ODQwYzc5Ni1mODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV9BEWP+WW3Z1ydv72vWYJFzYqot4D31bljgtGzZNTfld/yf3WYaipgw9/Id okdhn9KZz8mHi9g112ZIKUDSWoTf9IQW0bUwpVpKbl3kksGpgUrYvxJtUACEXa+B Ho2cIq8d8CytXJ/rc2hVxe/9xcgTL2LgtVeO7jVausTeqUBS9dGhiJl4sQ18eXmp 3My1s/zXabonwiLI418gA4eIBvcf5Z66CDl0A6JbKX8+TWFkncWIYpzEnXOqLm6J +9Grp5T88R9cO7SN7vjZ6zxj/UmdXGcUU7kPiEPP6nDurnsr94DiYnkhn1ukRvxb 2fb6y3yuJQZOVTvAysLlLZyuzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8QRX/i yotPD9tUTHAuYiwha6jWMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRY8tVCt9Np9zuGZAzRfBwxZQvszyOivjNPvGcVqRehUsiGWJc17At FlrbRKML7Jp1F9V+w3IvfYGvmzhBa81gJeLiyhkfktk8ACC/dKcl0uGq7wVhieQz cC3YWG9v/+CIXaPBssSqwaIsi40sWjHqdbMbU2F4DSzYcf3m3ytuo84/BEdHtrXv 1anT07nTm0HIFXj6ANoVgMZrfZmj/8Ym9Y0DffbY8Lnyd8Ilh1rSSNG04QRiotME q2ozVzBeC7wNTaaAgpr8TZiq9mMJIOqO6nJT2sBvQYUoIiJPYw0rl8zq67bGhyy2 3w44GAbdKKal5XISJ5MTJ24MrF4S0YI1 -----END CERTIFICATE-----Generated at Fri Jun 6 17:41:36 2025 by rpki-client