$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft File: hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json) Hash identifier: FGM5PZ3VezWTd4FaFnaCaxKBuQx6UJo+9JySbFGJCn8= Subject key identifier: 49:24:23:10:F7:F7:41:B1:A8:7B:68:78:88:FB:E4:D8:BE:A0:E7:63 Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Certificate serial: 05A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft Manifest number: 059B Signing time: Sat 06 Sep 2025 23:32:15 +0000 Manifest this update: Sat 06 Sep 2025 23:32:14 +0000 Manifest next update: Sat 13 Sep 2025 23:32:14 +0000 Files and hashes: 1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: 1M3ynTCJp38S7CTtEEmDMWYjJqI8RQIYFFEfYn17FXY=) 2: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: AcP4+2aIj47AkfHQ0Si3gKCupjSk93I6lVYcHLmJ46k=) 3: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: zDAY/JgF04rYgWurZj2nx6aFtMaDIFUtTRAO3VpvWV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BB4, serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Validity Not Before: Sep 6 23:32:14 2025 GMT Not After : Sep 13 23:32:14 2025 GMT Subject: CN=68bcc47e-c740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:ca:21:b5:8f:30:2b:b2:d9:63:4e:67:6c: 9d:89:01:f8:77:54:f7:19:01:a8:e7:53:70:96:e1: 2b:84:df:94:98:09:e1:67:c3:99:76:88:78:ba:5f: da:a1:9f:99:ee:20:3d:64:1c:de:40:88:4e:09:3b: c1:60:8a:ba:6f:1b:fd:9f:56:ca:27:ac:80:8e:bd: e6:e3:b5:c1:9b:27:22:da:eb:28:8d:b5:52:68:71: d7:e4:cb:e4:90:9f:b6:99:2f:3d:33:5d:41:13:36: e2:0e:40:c1:81:da:6a:d5:91:f0:9a:01:36:b4:31: 1b:91:21:1f:f8:c6:3f:a5:ca:58:ca:b6:99:4e:85: 1c:2f:50:02:49:33:84:35:21:a1:16:d8:c8:0e:a7: 76:ce:7c:b1:de:45:17:fb:e1:2e:13:3d:df:7b:10: 4d:a1:28:34:e5:99:c7:39:d1:78:80:b6:59:42:89: 96:f1:2c:aa:09:41:87:99:49:b4:92:89:36:14:4d: ed:22:79:35:55:27:84:2f:49:dd:d9:27:be:57:94: 98:00:dd:e3:98:3d:3a:5f:12:b7:8c:09:d8:e1:85: 55:27:fb:1c:42:65:64:48:6d:6e:d4:5d:ad:44:dc: 43:69:d8:bf:c1:7f:5c:6d:70:4b:48:08:5b:cf:f9: 40:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:24:23:10:F7:F7:41:B1:A8:7B:68:78:88:FB:E4:D8:BE:A0:E7:63 X509v3 Authority Key Identifier: keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:5b:03:01:e0:64:a7:75:0d:0b:fa:aa:71:67:13:8c:e4:77: 3a:79:cf:fb:bb:30:bb:bc:b0:bf:7d:c7:96:7f:c1:19:22:ec: 22:b1:18:66:19:48:cc:3d:6a:a9:7e:df:31:d6:12:44:76:09: a2:44:e5:89:14:b0:20:b6:ce:62:b8:a8:5c:83:1f:e9:ad:c8: 32:94:6c:22:30:3d:09:3f:36:7d:d2:72:d3:f2:06:78:22:97: e4:b3:bc:fa:57:41:36:6c:8b:4f:56:e2:c9:6c:02:3b:2e:a8: d1:ad:e5:8e:86:ff:ba:b5:e4:d1:13:c9:c6:e6:a2:e8:41:cc: 9e:5d:dd:76:09:35:d7:9e:c6:9a:cc:9a:ab:d2:17:13:cb:4c: db:63:03:47:fc:d7:b2:d4:f4:53:f2:2b:d5:fd:72:f0:78:7f: 79:6d:d1:13:c1:fa:6b:99:21:13:1f:7c:5f:c7:aa:c5:4c:fa: 36:45:45:5a:0a:e7:ce:b0:3b:e5:c1:ef:94:9c:80:51:c8:37: e6:e3:62:71:ef:f7:40:61:ff:ba:16:47:9e:6d:05:9d:78:57: 62:20:90:5f:a3:8e:b2:b7:3b:67:cb:36:f0:4d:4d:5a:d1:8b: 8f:d9:28:c1:de:71:23:ae:4f:d4:7b:a3:73:12:d6:81:eb:bc: e2:af:1d:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5 MEUwOTc0RTQwHhcNMjUwOTA2MjMzMjE0WhcNMjUwOTEzMjMzMjE0WjAYMRYwFAYD VQQDEw02OGJjYzQ3ZS1jNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV/KIbWPMCuy2WNOZ2ydiQH4d1T3GQGo51NwluErhN+UmAnhZ8OZdoh4ul/a oZ+Z7iA9ZBzeQIhOCTvBYIq6bxv9n1bKJ6yAjr3m47XBmyci2usojbVSaHHX5Mvk kJ+2mS89M11BEzbiDkDBgdpq1ZHwmgE2tDEbkSEf+MY/pcpYyraZToUcL1ACSTOE NSGhFtjIDqd2znyx3kUX++EuEz3fexBNoSg05ZnHOdF4gLZZQomW8SyqCUGHmUm0 kok2FE3tInk1VSeEL0nd2Se+V5SYAN3jmD06XxK3jAnY4YVVJ/scQmVkSG1u1F2t RNxDadi/wX9cbXBLSAhbz/lAyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkkIxD3 90GxqHtoeIj75Ni+oOdjMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1 MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUJCNC9CM0U3MzA5Q0U1MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNK NW9sTmhYOXp1M3FRNEpkT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLWwMB4GSndQ0L+qpxZxOM5Hc6ec/7uzC7vLC/fceWf8EZIuwisRhm GUjMPWqpft8x1hJEdgmiROWJFLAgts5iuKhcgx/prcgylGwiMD0JPzZ90nLT8gZ4 Ipfks7z6V0E2bItPVuLJbAI7LqjRreWOhv+6teTRE8nG5qLoQcyeXd12CTXXnsaa zJqr0hcTy0zbYwNH/Ney1PRT8ivV/XLweH95bdETwfprmSETH3xfx6rFTPo2RUVa CufOsDvlwe+UnIBRyDfm42Jx7/dAYf+6FkeebQWdeFdiIJBfo46ytztnyzbwTU1a 0YuP2SjB3nEjrk/Ue6NzEtaB67zirx3u -----END CERTIFICATE-----Generated at Mon Sep 8 22:29:22 2025 by rpki-client