$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: +9KyyLqVl11I4qgi36huvTQCiRfGYgfDcE87lKW+UTY= Subject key identifier: 58:54:4F:67:C0:1B:24:A6:72:E9:01:F0:1E:5E:C7:40:B8:AE:51:48 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 99 Signing time: Fri 05 Sep 2025 06:50:55 +0000 Manifest this update: Fri 05 Sep 2025 06:50:54 +0000 Manifest next update: Fri 12 Sep 2025 06:50:54 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: F2Q/Lq10FwhEjaiKdEC2adJoTunSTxVCQ178/lI621A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Sep 5 06:50:54 2025 GMT Not After : Sep 12 06:50:54 2025 GMT Subject: CN=68ba884f-e89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:e9:df:77:61:39:41:89:fd:2d:fe:50:74: bd:73:e1:fa:de:31:66:fe:23:ff:9b:eb:fa:63:87: 08:6b:60:b8:29:79:e0:d5:d8:65:dd:74:e7:ef:74: f3:70:5e:19:5f:0b:6d:bd:a0:7a:fb:d5:e4:09:8e: e6:ea:3b:59:23:9c:1d:6c:f0:e4:ab:6e:94:2a:66: 44:63:b2:27:9b:2b:5c:44:81:9f:bf:42:ae:90:7d: 57:d6:c1:f8:7a:46:73:75:98:64:b9:a7:23:1e:e5: 70:85:89:9c:72:0b:fe:a6:e7:82:f6:e1:3d:da:4e: 6f:c1:94:4a:bc:0a:51:c9:cf:e1:2c:1b:d6:eb:29: 7d:8f:4e:5d:b6:63:cc:07:74:ef:ce:ce:ca:4f:86: 45:a1:39:56:f4:4f:1c:50:b1:08:68:2b:18:d8:29: 01:25:ca:92:97:0d:44:75:ea:59:db:be:26:11:0c: f3:f8:0c:f3:cc:9e:37:0e:1a:25:78:94:59:ed:a8: 0b:62:a8:53:5a:d7:ca:4f:69:cb:8f:6e:8a:60:95: 34:60:bd:9f:29:c6:27:28:d5:c7:dc:59:15:24:1c: 13:47:44:8c:ec:4c:81:76:1d:2b:e5:be:17:86:0b: 64:f1:52:09:52:11:31:08:1d:0d:47:0b:e3:ba:5a: 93:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:54:4F:67:C0:1B:24:A6:72:E9:01:F0:1E:5E:C7:40:B8:AE:51:48 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:61:cb:7b:e7:36:3e:ce:d5:4c:44:72:8b:3a:ee:49:55:f5: e2:90:fd:a4:83:04:89:18:85:c1:56:85:d9:8e:02:ed:32:1e: f2:df:42:bd:fe:6e:de:d0:ef:f6:da:95:d9:7b:e8:85:42:4f: bf:40:67:b8:3e:55:7d:19:8b:68:92:1a:2e:2e:bc:84:87:11: 4b:fd:86:9b:2f:66:03:1f:86:dc:4e:12:2f:35:38:c2:2e:60: a3:b9:b9:62:0e:47:90:1c:ef:74:2f:6d:f7:11:ea:76:60:dc: 68:f7:94:44:8b:d8:a3:c0:a6:89:03:69:2a:08:9f:7a:89:fb: 0c:45:4c:82:8b:63:f2:18:62:0c:c8:9d:e8:3b:7b:71:8e:87: 9a:1a:2c:ac:16:fa:49:57:d2:58:f7:f3:97:27:e1:7a:63:f8: c9:b8:2f:8c:9f:e4:41:ed:cc:1f:14:56:91:e8:07:aa:3e:7e: fd:72:e5:ad:69:66:35:c9:ff:e8:54:64:e9:cb:bd:8f:fb:c7: b9:4c:e8:6d:85:ab:12:e8:23:49:2a:fb:bf:ac:d2:40:ec:af: 49:c1:fb:cf:7f:f0:95:f5:8c:81:d9:22:70:b5:ba:80:15:e1: 58:81:25:f3:8d:9c:db:96:85:5f:4b:73:e4:91:eb:ff:53:79: 93:a6:fa:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUwOTA1MDY1MDU0WhcNMjUwOTEyMDY1MDU0WjAYMRYwFAYD VQQDEw02OGJhODg0Zi1lODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpbp33dhOUGJ/S3+UHS9c+H63jFm/iP/m+v6Y4cIa2C4KXng1dhl3XTn73Tz cF4ZXwttvaB6+9XkCY7m6jtZI5wdbPDkq26UKmZEY7InmytcRIGfv0KukH1X1sH4 ekZzdZhkuacjHuVwhYmccgv+pueC9uE92k5vwZRKvApRyc/hLBvW6yl9j05dtmPM B3Tvzs7KT4ZFoTlW9E8cULEIaCsY2CkBJcqSlw1EdepZ274mEQzz+AzzzJ43Dhol eJRZ7agLYqhTWtfKT2nLj26KYJU0YL2fKcYnKNXH3FkVJBwTR0SM7EyBdh0r5b4X hgtk8VIJUhExCB0NRwvjulqT1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhUT2fA GySmcukB8B5ex0C4rlFIMB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeYct75zY+ztVMRHKLOu5JVfXikP2kgwSJGIXBVoXZjgLtMh7y30K9 /m7e0O/22pXZe+iFQk+/QGe4PlV9GYtokhouLryEhxFL/YabL2YDH4bcThIvNTjC LmCjubliDkeQHO90L233Eep2YNxo95REi9ijwKaJA2kqCJ96ifsMRUyCi2PyGGIM yJ3oO3txjoeaGiysFvpJV9JY9/OXJ+F6Y/jJuC+Mn+RB7cwfFFaR6AeqPn79cuWt aWY1yf/oVGTpy72P+8e5TOhthasS6CNJKvu/rNJA7K9JwfvPf/CV9YyB2SJwtbqA FeFYgSXzjZzbloVfS3Pkkev/U3mTpvpR -----END CERTIFICATE-----Generated at Sat Sep 6 21:04:35 2025 by rpki-client