$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: Tidh2S8uehhYlYVud3QRnOBmiOi6HYS3bAKv8XMIBM4= Subject key identifier: 7E:DB:03:DB:1B:AE:CD:5B:0A:B9:5D:06:53:32:BB:AD:C3:6F:BA:36 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 07E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 07D5 Signing time: Sat 14 Jun 2025 20:52:52 +0000 Manifest this update: Sat 14 Jun 2025 20:52:52 +0000 Manifest next update: Sat 21 Jun 2025 20:52:52 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: tPSVQPBa/5FTi8aEIC7owYfZGfnFnHwV9FH7BShg3+I=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2024 (0x7e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jun 14 20:52:52 2025 GMT Not After : Jun 21 20:52:52 2025 GMT Subject: CN=684de124-4991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:83:af:9c:d2:49:30:53:5f:9e:4c:9e:0c: 36:63:fa:ad:fb:d9:7d:56:23:b3:e1:79:0f:ba:af: 1b:f8:76:4a:72:d1:c6:d9:f9:0b:2d:13:6e:41:da: 5a:8f:e4:9b:96:a5:1a:ff:a9:b3:e7:d2:4c:8f:81: 8a:93:d6:7b:5e:9e:03:dc:93:aa:af:c5:bb:6b:60: 0d:26:f5:0d:e1:26:68:86:ae:6e:58:63:f3:2f:76: 48:3b:b0:f5:6e:f3:10:ad:c8:5f:21:9e:5a:d8:3a: 4a:08:1a:26:80:ba:95:59:9f:4c:5f:0c:b1:1a:42: 0d:40:0a:24:db:d2:52:86:7f:c4:39:50:c1:a7:02: 14:44:8b:70:ee:eb:17:e7:5a:cd:53:9c:d3:09:57: b8:76:ca:1c:35:da:33:13:30:7a:92:78:0d:2a:90: 6c:44:4e:94:53:09:a4:59:c6:63:3c:18:08:c4:39: 9f:22:50:7f:cc:ae:1a:87:6a:83:5a:d3:fa:bf:1e: 69:e3:0b:0c:e1:61:e2:6d:dc:61:f9:7d:94:83:da: c7:63:43:d8:e2:87:c0:e6:4d:b8:eb:65:c6:12:4c: 37:eb:99:b1:e1:c0:7c:1a:f9:c7:cb:df:6c:a0:5a: 9a:30:e2:61:ae:44:31:ea:6d:bf:81:c6:4a:71:7d: 77:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DB:03:DB:1B:AE:CD:5B:0A:B9:5D:06:53:32:BB:AD:C3:6F:BA:36 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f3:5f:a7:e7:3d:e3:e9:5d:49:ca:b0:44:0b:27:0c:b2:b4: 0d:56:fc:ee:b9:61:a3:2f:3b:f1:ea:56:71:55:9d:c0:b6:80: 5c:0d:52:ba:61:4e:96:0e:b4:22:9c:2c:60:be:a4:10:e9:bc: c9:5e:e7:62:dc:fc:48:04:2c:88:0a:3a:2a:34:85:04:8c:4b: e2:2a:29:96:50:b1:b7:6f:a4:3f:db:a4:7c:15:5f:30:30:29: 15:3e:b4:a7:34:b2:d1:7d:0e:98:af:bf:47:08:04:e2:fb:d8: cc:29:12:88:ea:20:5a:f2:53:48:07:3f:df:bd:a9:a0:6e:bd: 8d:4f:c2:14:47:45:7b:a1:f1:03:c5:64:15:43:a1:6d:1c:48: c1:7c:f6:3b:11:0a:bc:bb:98:ee:0b:bb:e1:6c:27:06:50:91: 99:34:22:30:35:95:eb:f1:d8:22:7b:17:f8:12:59:5d:f6:ce: 70:23:a9:f3:b0:b4:33:da:d8:99:fb:91:31:fe:0b:63:c9:a6: 35:2c:a4:38:bd:74:97:9c:c0:34:f7:a9:e1:a2:94:78:c6:9e: cd:11:4e:c1:a2:11:f9:73:00:e9:2e:6a:3d:15:77:a2:8f:f9: 1b:4f:06:c5:14:b0:03:00:3f:26:e9:be:a2:54:45:bd:07:06: 94:52:ee:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNjE0MjA1MjUyWhcNMjUwNjIxMjA1MjUyWjAYMRYwFAYD VQQDEw02ODRkZTEyNC00OTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte2Dr5zSSTBTX55Mngw2Y/qt+9l9ViOz4XkPuq8b+HZKctHG2fkLLRNuQdpa j+SblqUa/6mz59JMj4GKk9Z7Xp4D3JOqr8W7a2ANJvUN4SZohq5uWGPzL3ZIO7D1 bvMQrchfIZ5a2DpKCBomgLqVWZ9MXwyxGkINQAok29JShn/EOVDBpwIURItw7usX 51rNU5zTCVe4dsocNdozEzB6kngNKpBsRE6UUwmkWcZjPBgIxDmfIlB/zK4ah2qD WtP6vx5p4wsM4WHibdxh+X2Ug9rHY0PY4ofA5k2462XGEkw365mx4cB8GvnHy99s oFqaMOJhrkQx6m2/gcZKcX13IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7bA9sb rs1bCrldBlMyu63Db7o2MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/81+n5z3j6V1JyrBECycMsrQNVvzuuWGjLzvx6lZxVZ3AtoBcDVK6 YU6WDrQinCxgvqQQ6bzJXudi3PxIBCyICjoqNIUEjEviKimWULG3b6Q/26R8FV8w MCkVPrSnNLLRfQ6Yr79HCATi+9jMKRKI6iBa8lNIBz/fvamgbr2NT8IUR0V7ofED xWQVQ6FtHEjBfPY7EQq8u5juC7vhbCcGUJGZNCIwNZXr8dgiexf4Elld9s5wI6nz sLQz2tiZ+5Ex/gtjyaY1LKQ4vXSXnMA096nhopR4xp7NEU7BohH5cwDpLmo9FXei j/kbTwbFFLADAD8m6b6iVEW9BwaUUu5i -----END CERTIFICATE-----Generated at Sat Jun 14 23:14:31 2025 by rpki-client