$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: TqSiV/3zPDE0OLWUZ2Tk27dPnJGgLI7hoku76tsY0zM= Subject key identifier: A9:5F:15:FD:13:D4:29:4A:2A:6B:67:E6:AF:91:AB:97:A7:E2:F0:C7 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 80 Signing time: Sat 19 Jul 2025 06:54:55 +0000 Manifest this update: Sat 19 Jul 2025 06:54:54 +0000 Manifest next update: Sat 26 Jul 2025 06:54:54 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: P6q2ffUV/6rjQZdC0+Hqxw4gZl66Z+8eQFkDqKvAVC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Jul 19 06:54:54 2025 GMT Not After : Jul 26 06:54:54 2025 GMT Subject: CN=687b413e-426b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:7e:35:b0:2e:ee:77:f5:88:bc:16:3a:d5: 88:53:c1:cb:5c:93:fd:af:28:99:13:01:df:92:36: a5:b9:d6:bc:74:b6:05:c6:58:0e:93:18:ac:77:53: a5:94:65:25:8e:09:5a:b3:55:ce:df:f1:0b:9e:04: 07:ef:3b:ff:cc:a6:df:74:ff:7f:28:6e:ed:4d:dc: 9c:a9:0f:25:d2:ed:47:e1:ef:d1:69:fb:05:0e:b7: b1:de:cd:30:4e:54:ad:88:1c:ac:84:58:60:f9:2c: 46:69:40:f8:66:d5:88:35:99:66:3a:e2:8b:1f:0b: 9e:2a:7b:30:9a:96:b9:b4:8c:0d:d3:f3:d8:a6:7d: eb:f0:92:c8:b7:3d:a3:4c:64:61:5a:00:d0:82:96: 09:27:11:73:9c:7f:52:8d:17:0c:6f:63:5b:71:02: c5:df:00:f9:85:04:c1:f5:46:b1:1b:cb:54:f4:84: b6:73:d5:da:47:cb:16:fb:5b:dd:db:70:36:f1:8b: 9d:d2:45:09:b6:bf:21:a0:77:42:5e:43:6d:c1:56: 9b:b3:50:12:c4:9f:08:9b:47:c8:be:61:3d:97:e0: 2f:8b:a7:47:b0:28:8e:6f:6e:44:f6:50:f3:b5:43: 61:0b:be:cf:d4:83:92:b3:bb:80:ed:51:e0:1a:ad: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5F:15:FD:13:D4:29:4A:2A:6B:67:E6:AF:91:AB:97:A7:E2:F0:C7 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:91:89:c6:b3:c8:db:34:09:8b:22:21:cd:7b:52:e5:f8:e5: 6b:6f:32:84:60:25:32:6b:65:04:d7:5c:8a:d0:60:c4:1a:a2: 06:dc:a7:b5:0e:73:53:1e:a7:2b:cb:fa:00:26:d2:4a:84:f7: 42:5d:0d:30:b1:f4:09:54:e8:d5:ad:78:cd:ad:9a:0f:b7:da: 7e:32:2e:03:8c:c2:70:08:6b:76:02:8e:21:99:2f:31:4f:32: f2:52:08:6f:34:dd:7a:40:ce:03:e9:38:56:56:e1:14:7c:61: 40:e7:db:df:0d:1d:e4:3f:90:0c:fe:60:de:66:05:77:40:a2: 22:c8:ba:21:00:7f:04:7e:9c:ef:0a:20:bd:6d:99:29:49:d2: 3a:0d:04:df:e8:d9:4b:61:b2:b6:9b:a2:53:c3:24:59:22:f3: 58:8e:8d:34:57:60:6f:51:0c:b3:77:3a:b6:81:cf:71:63:1f: d8:b8:15:5e:3f:87:0c:74:c4:bb:21:9e:12:20:de:ec:8a:38: 18:2b:75:95:15:b8:e2:ce:7d:4f:34:64:3d:d7:ef:96:2f:ca: 96:f2:df:c3:0f:44:d2:4e:f0:da:3a:04:07:f9:e4:7a:f2:45: de:27:a7:f1:98:2f:fb:53:fe:f2:42:86:fb:eb:6b:e6:a9:3d: 18:21:e1:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUwNzE5MDY1NDU0WhcNMjUwNzI2MDY1NDU0WjAYMRYwFAYD VQQDEw02ODdiNDEzZS00MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3d+NbAu7nf1iLwWOtWIU8HLXJP9ryiZEwHfkjaluda8dLYFxlgOkxisd1Ol lGUljglas1XO3/ELngQH7zv/zKbfdP9/KG7tTdycqQ8l0u1H4e/RafsFDrex3s0w TlStiByshFhg+SxGaUD4ZtWINZlmOuKLHwueKnswmpa5tIwN0/PYpn3r8JLItz2j TGRhWgDQgpYJJxFznH9SjRcMb2NbcQLF3wD5hQTB9UaxG8tU9IS2c9XaR8sW+1vd 23A28Yud0kUJtr8hoHdCXkNtwVabs1ASxJ8Im0fIvmE9l+Avi6dHsCiOb25E9lDz tUNhC77P1IOSs7uA7VHgGq3pyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlfFf0T 1ClKKmtn5q+Rq5en4vDHMB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpkYnGs8jbNAmLIiHNe1Ll+OVrbzKEYCUya2UE11yK0GDEGqIG3Ke1 DnNTHqcry/oAJtJKhPdCXQ0wsfQJVOjVrXjNrZoPt9p+Mi4DjMJwCGt2Ao4hmS8x TzLyUghvNN16QM4D6ThWVuEUfGFA59vfDR3kP5AM/mDeZgV3QKIiyLohAH8Efpzv CiC9bZkpSdI6DQTf6NlLYbK2m6JTwyRZIvNYjo00V2BvUQyzdzq2gc9xYx/YuBVe P4cMdMS7IZ4SIN7sijgYK3WVFbjizn1PNGQ91++WL8qW8t/DD0TSTvDaOgQH+eR6 8kXeJ6fxmC/7U/7yQob762vmqT0YIeFr -----END CERTIFICATE-----Generated at Sun Jul 20 22:44:59 2025 by rpki-client