$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: PblgfDBZlZcJqxUubMGJ3gjTLIQr1jzhOF9Q669CM0Y= Subject key identifier: BD:44:9B:84:D2:D3:56:98:BA:74:0D:B8:84:C5:B3:F1:5B:CA:2A:0F Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13A2 Signing time: Sun 24 Aug 2025 16:56:39 +0000 Manifest this update: Sun 24 Aug 2025 16:56:38 +0000 Manifest next update: Sun 31 Aug 2025 16:56:38 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: uFz7o1NflZIn0/Duw1ZoY98DH6EQzE2PmxSnTBXkAQY=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5046 (0x13b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Aug 24 16:56:38 2025 GMT Not After : Aug 31 16:56:38 2025 GMT Subject: CN=68ab4446-90a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e8:70:57:43:77:86:a1:e5:9b:fe:05:d5:52: 82:8c:cc:c4:5b:f8:a2:db:fb:9e:85:bb:ff:1d:c9: 7b:6b:1f:1e:a7:28:d9:2a:de:9b:a2:68:31:5d:43: c0:22:1e:df:ea:07:6b:36:c1:08:d1:ed:59:53:6c: 3c:f3:c0:18:f8:13:ad:51:a7:7c:3b:d8:16:c4:4c: 6d:32:3a:f6:50:e7:cf:64:d4:f3:27:8d:4d:70:f3: fa:e6:ab:53:da:7f:56:43:77:b6:67:f5:63:c4:fa: 57:bc:7c:34:c1:19:ce:71:72:9a:d5:2b:f3:2a:39: ab:51:bb:34:55:7e:90:e0:84:85:f3:be:54:32:67: 7a:9b:23:23:c3:1f:62:33:6a:8c:5b:62:42:6b:78: 65:e0:d0:f0:66:0d:ea:9e:10:8d:82:46:2f:b1:65: e4:7e:dc:90:b9:57:f0:79:d6:d7:59:02:c8:d2:a7: ef:d5:09:4c:b6:e6:1d:fe:da:dd:f6:86:e9:1f:c3: 06:62:95:e3:fe:4d:57:77:77:be:eb:7a:c8:4b:f5: 82:f7:d3:6f:79:70:d2:74:37:51:26:03:96:8b:d5: b6:fc:09:06:2d:22:97:9d:74:b8:14:ca:17:7d:c7: 6e:a1:d2:2a:6f:a3:a2:bb:bc:11:47:a5:70:db:91: f5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:44:9B:84:D2:D3:56:98:BA:74:0D:B8:84:C5:B3:F1:5B:CA:2A:0F X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b6:46:e1:21:a2:1e:ea:16:b0:2d:96:fd:5b:8c:59:62:62: d9:7f:48:96:8b:17:d2:f1:1a:0d:08:2c:0a:0e:0d:75:16:c5: 62:11:b3:a3:82:87:98:fe:ae:33:76:b3:8a:12:61:aa:3c:1c: 63:10:f8:c5:1c:97:c0:84:ab:33:ea:ef:ed:6b:ae:09:72:a5: 69:09:8d:b9:ca:64:fc:18:5a:fe:06:38:d4:1a:da:93:38:56: f6:ca:b7:3c:a5:6a:36:2b:97:3a:59:59:e4:83:cc:a7:32:ab: 5b:3b:14:11:63:88:cd:35:20:16:72:49:3e:33:69:e0:44:3a: 9f:d5:6d:a9:31:a0:ec:fe:b2:71:e9:f3:1a:23:73:b9:9f:40: 9c:5a:67:e2:b4:3f:7d:d6:f2:cf:b7:33:6f:a5:db:96:7c:ea: bf:6c:e7:70:f4:2b:d0:d1:84:a5:5c:c7:c7:c8:c6:9f:6d:35: 11:1b:73:54:74:fc:df:2e:60:e0:76:f8:e3:79:75:ca:d8:e1: 12:92:05:da:09:44:a8:be:ec:27:9c:14:fd:6a:ac:68:17:87: 4e:0b:8d:e3:a4:dd:6d:32:af:cf:4a:c5:ab:aa:2a:99:3f:e9: ad:52:e6:57:05:8e:70:7d:72:53:c0:c7:88:77:d9:85:42:c4: 8d:55:1d:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwODI0MTY1NjM4WhcNMjUwODMxMTY1NjM4WjAYMRYwFAYD VQQDEw02OGFiNDQ0Ni05MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OhwV0N3hqHlm/4F1VKCjMzEW/ii2/uehbv/Hcl7ax8epyjZKt6bomgxXUPA Ih7f6gdrNsEI0e1ZU2w888AY+BOtUad8O9gWxExtMjr2UOfPZNTzJ41NcPP65qtT 2n9WQ3e2Z/VjxPpXvHw0wRnOcXKa1SvzKjmrUbs0VX6Q4ISF875UMmd6myMjwx9i M2qMW2JCa3hl4NDwZg3qnhCNgkYvsWXkftyQuVfwedbXWQLI0qfv1QlMtuYd/trd 9obpH8MGYpXj/k1Xd3e+63rIS/WC99NveXDSdDdRJgOWi9W2/AkGLSKXnXS4FMoX fcduodIqb6Oiu7wRR6Vw25H1/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1Em4TS 01aYunQNuITFs/FbyioPMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQtkbhIaIe6hawLZb9W4xZYmLZf0iWixfS8RoNCCwKDg11FsViEbOj goeY/q4zdrOKEmGqPBxjEPjFHJfAhKsz6u/ta64JcqVpCY25ymT8GFr+BjjUGtqT OFb2yrc8pWo2K5c6WVnkg8ynMqtbOxQRY4jNNSAWckk+M2ngRDqf1W2pMaDs/rJx 6fMaI3O5n0CcWmfitD991vLPtzNvpduWfOq/bOdw9CvQ0YSlXMfHyMafbTURG3NU dPzfLmDgdvjjeXXK2OESkgXaCUSovuwnnBT9aqxoF4dOC43jpN1tMq/PSsWrqiqZ P+mtUuZXBY5wfXJTwMeId9mFQsSNVR0z -----END CERTIFICATE-----Generated at Sun Aug 24 21:50:08 2025 by rpki-client