$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: J0SyFk4c1oNb8/mrk2wjiJNlyegTJiR2BSZrCm/09Yo= Subject key identifier: A4:13:42:F7:AD:5D:F1:C4:54:AE:A3:77:5D:79:36:CD:D9:AD:AA:2B Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 080F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 07FA Signing time: Fri 22 Aug 2025 21:08:32 +0000 Manifest this update: Fri 22 Aug 2025 21:08:31 +0000 Manifest next update: Fri 29 Aug 2025 21:08:31 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: rZcztqb420YnF/WMCN/DCbdoybJyhdZzmzbFuDQs0tM=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 22 21:08:31 2025 GMT Not After : Aug 29 21:08:31 2025 GMT Subject: CN=68a8dc4f-8bdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b8:5f:4d:fb:75:30:e4:2a:a9:d7:6f:1a:a5: ca:63:79:13:ae:5b:b3:cc:cd:a5:dc:3d:a4:d9:d0: fb:8c:0f:d8:fd:b5:76:ba:da:2e:e5:69:3d:38:a5: 6a:0b:64:61:d4:19:71:84:0a:c6:6e:ae:85:44:24: 14:bd:d8:6d:7f:1c:34:b3:68:08:9d:f9:c1:88:4a: 1e:be:23:d9:d0:bf:9e:9f:04:b8:93:44:d2:a7:01: 4f:db:84:fe:c0:22:3a:5e:ab:ad:be:3e:68:34:bc: 4e:e6:6d:63:73:1d:d4:97:1d:83:e8:0e:1b:e6:c1: bc:de:85:55:8a:ae:dc:2f:13:c0:01:73:b3:b4:e2: cc:08:ee:a8:f6:7e:52:fd:68:1d:17:10:d9:ba:6d: 4c:d5:99:a5:73:d4:e0:a1:d3:2d:c4:48:b6:85:70: b7:e5:d4:d7:6b:cb:f2:b7:bb:89:52:0a:4d:87:0d: e3:1b:36:37:74:84:f9:26:54:ef:08:23:49:9a:a2: 5f:9a:d9:ad:f4:cc:fd:8b:c9:00:72:ac:1d:ae:2f: 05:0e:bc:b3:29:81:f3:b6:4b:7d:fb:79:14:d6:a9: c1:55:53:63:fc:b5:a5:bf:50:ab:ee:b0:72:0d:bc: 8a:a3:1a:e6:19:9b:19:3d:b4:53:c5:02:54:a5:e3: d7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:13:42:F7:AD:5D:F1:C4:54:AE:A3:77:5D:79:36:CD:D9:AD:AA:2B X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5f:0d:9b:85:dc:be:0f:89:44:92:03:79:69:9a:b1:a1:c8: 4f:4f:4a:6c:98:dd:31:4b:93:f3:48:58:9b:ef:53:06:5f:9b: 23:fd:f5:3b:85:d4:f7:a5:b0:ce:8a:70:26:61:dd:97:e8:e9: 33:b6:90:08:a8:c8:d0:cc:9b:2f:05:ad:b9:46:6d:12:26:69: 2e:2e:a5:72:e2:4b:af:b2:22:aa:2f:9a:de:5b:c9:ca:e7:fb: b7:64:45:4e:14:6d:6a:e1:22:cf:a6:35:97:55:40:d8:4e:72: fd:35:0f:c9:9a:08:e5:21:de:a0:6d:8c:ef:e3:1e:29:17:10: 13:78:89:22:5a:ac:7e:37:1d:bf:c1:91:25:77:d2:f2:1c:9c: 63:52:de:01:b5:66:03:2a:60:55:93:13:b6:0b:96:7c:7b:8b: f1:b9:58:41:fb:7f:ea:7f:9c:b7:c4:e5:5f:2f:b1:e1:e6:02: f9:bc:02:f7:07:f7:42:a3:77:92:ef:07:aa:ad:90:71:ee:30: 44:77:20:8b:74:df:ec:b5:6e:b1:2a:93:45:45:30:72:c9:1e: 33:93:13:fd:b8:a3:65:24:b4:fc:bd:8d:ac:10:76:a0:54:29: 7e:4b:c3:d1:6e:44:08:ea:ea:2a:9e:f6:6d:24:25:bd:14:65: 3c:54:0c:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwODIyMjEwODMxWhcNMjUwODI5MjEwODMxWjAYMRYwFAYD VQQDEw02OGE4ZGM0Zi04YmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLhfTft1MOQqqddvGqXKY3kTrluzzM2l3D2k2dD7jA/Y/bV2utou5Wk9OKVq C2Rh1BlxhArGbq6FRCQUvdhtfxw0s2gInfnBiEoeviPZ0L+enwS4k0TSpwFP24T+ wCI6Xqutvj5oNLxO5m1jcx3Ulx2D6A4b5sG83oVViq7cLxPAAXOztOLMCO6o9n5S /WgdFxDZum1M1Zmlc9TgodMtxEi2hXC35dTXa8vyt7uJUgpNhw3jGzY3dIT5JlTv CCNJmqJfmtmt9Mz9i8kAcqwdri8FDryzKYHztkt9+3kU1qnBVVNj/LWlv1Cr7rBy DbyKoxrmGZsZPbRTxQJUpePXoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQTQvet XfHEVK6jd115Ns3ZraorMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMXw2bhdy+D4lEkgN5aZqxochPT0psmN0xS5PzSFib71MGX5sj/fU7 hdT3pbDOinAmYd2X6OkztpAIqMjQzJsvBa25Rm0SJmkuLqVy4kuvsiKqL5reW8nK 5/u3ZEVOFG1q4SLPpjWXVUDYTnL9NQ/JmgjlId6gbYzv4x4pFxATeIkiWqx+Nx2/ wZEld9LyHJxjUt4BtWYDKmBVkxO2C5Z8e4vxuVhB+3/qf5y3xOVfL7Hh5gL5vAL3 B/dCo3eS7weqrZBx7jBEdyCLdN/stW6xKpNFRTByyR4zkxP9uKNlJLT8vY2sEHag VCl+S8PRbkQI6uoqnvZtJCW9FGU8VAxA -----END CERTIFICATE-----Generated at Sun Aug 24 22:16:10 2025 by rpki-client