$ rpki-client -vvf rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft File: Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft (raw, json) Hash identifier: r4D1n0291tGflhjKTt4I1YnnMhC5nOT9rqcwezmik4w= Subject key identifier: A4:3E:49:E5:D2:74:4F:C0:A9:F3:59:E0:B4:6A:28:EE:87:12:FF:DE Authority key identifier: 1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 Certificate issuer: /CN=A912F17E/serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft Manifest number: 34B2 Signing time: Sun 24 Aug 2025 15:07:52 +0000 Manifest this update: Sun 24 Aug 2025 15:07:51 +0000 Manifest next update: Sun 31 Aug 2025 15:07:51 +0000 Files and hashes: 1: Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl (hash: HMYaQiHijEIAUAgTLSfFIGqNM6jxmMS2R9PGg+ArnFI=) 2: FFCDED80FFE111EFB1C18E52C4F9AE02.roa (hash: mU82c9UsN7aMzC4DMeuqqygQy0O+yLmNqhxj9poHsyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F17E, serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Validity Not Before: Aug 24 15:07:51 2025 GMT Not After : Aug 31 15:07:51 2025 GMT Subject: CN=68ab2ac7-8c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:2a:a2:f6:e4:28:7d:28:f6:1b:44:43:b9: 9c:54:f1:da:17:fe:cd:81:46:ab:2e:d3:de:aa:06: 71:61:4c:1b:57:ba:92:7a:f9:41:74:5e:b2:91:87: 57:c3:6c:71:58:0d:ad:92:17:d8:48:48:db:d3:d1: 7b:f4:e8:04:c2:68:79:20:fa:c4:ff:ed:e9:25:bd: e4:3b:0f:dd:27:2a:50:11:d3:9e:28:0f:6b:e1:e9: 04:8b:ba:59:77:91:7b:7c:71:e7:75:4b:97:0f:27: 67:70:1b:dd:cc:df:37:25:1f:10:09:2d:77:a4:90: bc:ee:fb:80:ca:04:57:d0:68:43:d8:1c:3d:dd:8e: 77:10:a2:fb:ba:aa:e7:c6:97:b2:04:d6:8c:fa:54: 8b:a3:44:ec:ac:a1:00:71:31:8d:73:11:b9:f8:85: e5:9d:90:8b:82:80:36:b1:d3:6d:e0:50:9c:62:a6: e4:d2:94:2d:de:ba:27:34:4f:0c:1d:75:fa:00:1e: 99:37:64:0d:57:77:ea:e1:fa:c3:ad:5e:84:c8:41: 39:ad:dc:e5:94:01:6b:3f:5b:e0:6e:4c:95:38:64: 08:22:53:ab:64:49:39:00:c8:d8:84:4d:7d:5c:d3: 14:ad:8f:08:45:a5:d4:ed:5a:97:60:d9:fb:06:25: bd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3E:49:E5:D2:74:4F:C0:A9:F3:59:E0:B4:6A:28:EE:87:12:FF:DE X509v3 Authority Key Identifier: keyid:1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3b:2f:d3:85:04:3d:7b:6f:c0:c3:cc:c1:cf:04:78:f8:f6: 0f:61:e0:24:17:e5:5d:ba:35:8e:e2:94:b4:e0:89:d9:3f:08: f8:2e:7a:1a:75:ab:1d:21:e9:af:11:a7:34:d3:5d:ea:9f:04: 09:a0:b5:a6:18:a3:97:3f:f9:59:6c:75:25:15:e0:e8:15:fa: f5:69:5f:3e:b1:a9:1e:e6:a7:21:13:2a:cb:b8:a4:1d:7d:d1: 38:53:48:49:8e:a0:e8:94:47:ac:63:de:9c:54:28:96:db:97: 66:86:47:40:9d:b7:ed:84:5b:4d:b7:bb:67:29:2d:4c:a2:e3: 10:86:ba:ee:0b:1e:8e:9d:c8:34:8a:d0:a1:5c:dc:1e:9a:a8: 7e:d9:81:f6:b4:59:9c:78:fb:8a:a0:55:4e:a9:41:7a:81:55: 2e:bc:d0:e5:7e:c9:00:3a:d2:e1:8c:2b:2b:42:c2:9a:03:93: 1a:70:92:14:95:90:6f:ec:21:8a:50:ee:2c:99:eb:04:9f:4a: 91:cb:55:58:5a:99:31:0a:c6:35:3c:c2:35:d0:03:63:f9:06: cb:0a:fd:ed:7b:15:cc:21:6b:c3:d0:c3:02:79:cd:9c:a1:08: 96:85:91:c4:93:90:7d:8a:e8:9d:a5:50:c1:89:f8:8f:d3:37: 43:49:d7:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYxN0UxMTAvBgNVBAUTKDFGM0U4QjAxRDg0MUNCRTYyMjBEMDJEMkNEMTExMzU0 RjE5QzQ3QjIwHhcNMjUwODI0MTUwNzUxWhcNMjUwODMxMTUwNzUxWjAYMRYwFAYD VQQDEw02OGFiMmFjNy04YzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQcqovbkKH0o9htEQ7mcVPHaF/7NgUarLtPeqgZxYUwbV7qSevlBdF6ykYdX w2xxWA2tkhfYSEjb09F79OgEwmh5IPrE/+3pJb3kOw/dJypQEdOeKA9r4ekEi7pZ d5F7fHHndUuXDydncBvdzN83JR8QCS13pJC87vuAygRX0GhD2Bw93Y53EKL7uqrn xpeyBNaM+lSLo0TsrKEAcTGNcxG5+IXlnZCLgoA2sdNt4FCcYqbk0pQt3ronNE8M HXX6AB6ZN2QNV3fq4frDrV6EyEE5rdzllAFrP1vgbkyVOGQIIlOrZEk5AMjYhE19 XNMUrY8IRaXU7VqXYNn7BiW9/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ+SeXS dE/AqfNZ4LRqKO6HEv/eMB8GA1UdIwQYMBaAFB8+iwHYQcvmIg0C0s0RE1TxnEey MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjE3RS9GQ0ZGODQ2NjFE QTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnktWWlEUUxTelJFVFZQR2NS N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h6NkxBZGhCeS1ZaURRTFN6UkVUVlBHY1I3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjE3RS9GQ0ZGODQ2NjFEQTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnkt WWlEUUxTelJFVFZQR2NSN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOy/ThQQ9e2/Aw8zBzwR4+PYPYeAkF+VdujWO4pS04InZPwj4Lnoa dasdIemvEac0013qnwQJoLWmGKOXP/lZbHUlFeDoFfr1aV8+sake5qchEyrLuKQd fdE4U0hJjqDolEesY96cVCiW25dmhkdAnbfthFtNt7tnKS1MouMQhrruCx6Oncg0 itChXNwemqh+2YH2tFmcePuKoFVOqUF6gVUuvNDlfskAOtLhjCsrQsKaA5MacJIU lZBv7CGKUO4smesEn0qRy1VYWpkxCsY1PMI10ANj+QbLCv3texXMIWvD0MMCec2c oQiWhZHEk5B9iuidpVDBifiP0zdDSde4 -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:19 2025 by rpki-client