$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: VVBZoBUcVQx2vOarpM9+Y1UM6qEjz/gyeSEltDQGemU= Subject key identifier: 3C:9D:4C:D6:CE:9A:07:A4:FC:99:60:D2:26:92:62:20:F5:61:B7:79 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 43 Signing time: Mon 21 Jul 2025 07:40:17 +0000 Manifest this update: Mon 21 Jul 2025 07:40:17 +0000 Manifest next update: Mon 28 Jul 2025 07:40:17 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: KhPkuobUAw3024wgXbyoC3ndrNsgQraRZm2Rk1gWWxc=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Jul 21 07:40:17 2025 GMT Not After : Jul 28 07:40:17 2025 GMT Subject: CN=687deee1-5477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:f6:b1:56:43:7b:1a:32:5b:14:3e:b6:62: 56:84:46:cb:4a:60:ff:d2:97:df:21:e8:ca:41:d8: a9:53:3f:8b:10:ec:be:70:14:04:83:9b:92:d0:4d: b6:7e:fe:3d:5f:52:5f:b3:f3:5c:72:a2:d2:fe:25: e1:01:ab:01:6a:52:9a:ae:16:a2:b3:e9:a7:e6:cb: 14:13:7f:b0:ba:54:de:ce:ef:0d:c4:7f:3e:8e:09: f8:04:9d:ce:ff:b8:fc:0a:06:30:6a:7b:fc:91:2d: 4a:d3:a5:fd:d4:ed:9b:4b:d8:61:d0:92:95:e0:dd: fc:1d:35:10:a4:ab:c4:3d:cc:50:c6:f1:42:0e:0e: 37:7f:bd:2d:87:c6:93:2d:43:4c:d5:b7:89:1a:0c: 57:61:0e:8a:d4:07:9d:d8:b7:7f:36:85:37:d9:50: 03:d6:10:43:8c:5e:a6:b6:d3:f7:fe:37:6c:9e:b2: df:87:3d:b0:bf:e6:cb:78:3a:7b:d1:a4:30:5a:06: 76:3e:7a:1a:8d:5b:25:ee:33:03:87:f0:99:14:3c: ad:a8:db:d5:48:ae:52:cf:c8:14:db:2e:92:3f:de: c9:65:ce:45:bb:4e:ed:a7:fd:0b:8f:20:76:55:6f: 43:b4:06:b1:0b:97:88:32:9b:da:1a:19:d4:58:fc: 4b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9D:4C:D6:CE:9A:07:A4:FC:99:60:D2:26:92:62:20:F5:61:B7:79 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d2:6e:70:73:72:db:c7:6f:4e:59:2b:09:71:17:1f:90:10: 22:96:0b:87:2a:8b:40:1a:db:bf:1d:c1:0e:7c:8c:cc:a6:68: 31:03:d7:05:9f:a1:ef:67:8c:67:7e:f1:11:97:9c:a6:c9:cd: 91:e1:73:f3:aa:fe:9f:07:5c:20:c9:46:5a:fd:88:ab:f0:8b: c9:dc:87:3b:e6:e0:9c:46:9f:32:4d:56:5e:bb:e4:af:a5:b3: 89:03:6d:73:d1:a4:20:c7:80:1f:eb:de:d9:f2:03:d8:58:b4: 16:98:63:27:f5:0b:fd:c5:21:bf:cc:68:b5:cf:3b:9c:8f:d2: 78:90:c6:d7:64:07:d0:9d:7f:19:30:77:71:dd:5e:ff:21:21: 51:39:76:00:a6:42:dc:c9:f7:57:f6:1f:1b:7a:f8:88:cc:6f: e6:41:ec:0d:89:c1:95:cc:52:4d:82:bf:3a:66:59:24:e3:20: 53:51:a8:4c:9c:c0:a6:cf:42:ff:cb:50:eb:0b:e7:c3:6b:4a: 1c:db:a7:94:d4:3e:c3:2f:28:a5:37:59:4b:62:43:55:b0:22: bc:d4:d1:18:fa:e7:af:ae:a7:a2:75:ee:71:cc:ad:84:56:92: 13:b0:5f:9a:9c:2f:44:07:55:e8:c3:35:94:e0:22:6e:83:24: 34:bd:72:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA3MjEwNzQwMTdaFw0yNTA3MjgwNzQwMTdaMBgxFjAUBgNV BAMTDTY4N2RlZWUxLTU0NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr5PaxVkN7GjJbFD62YlaERstKYP/Sl98h6MpB2KlTP4sQ7L5wFASDm5LQTbZ+ /j1fUl+z81xyotL+JeEBqwFqUpquFqKz6afmyxQTf7C6VN7O7w3Efz6OCfgEnc7/ uPwKBjBqe/yRLUrTpf3U7ZtL2GHQkpXg3fwdNRCkq8Q9zFDG8UIODjd/vS2HxpMt Q0zVt4kaDFdhDorUB53Yt382hTfZUAPWEEOMXqa20/f+N2yest+HPbC/5st4OnvR pDBaBnY+ehqNWyXuMwOH8JkUPK2o29VIrlLPyBTbLpI/3sllzkW7Tu2n/QuPIHZV b0O0BrELl4gym9oaGdRY/EsFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPJ1M1s6a B6T8mWDSJpJiIPVht3kwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI/SbnBzctvHb05ZKwlxFx+QECKWC4cqi0Aa278dwQ58jMymaDED1wWf oe9njGd+8RGXnKbJzZHhc/Oq/p8HXCDJRlr9iKvwi8nchzvm4JxGnzJNVl675K+l s4kDbXPRpCDHgB/r3tnyA9hYtBaYYyf1C/3FIb/MaLXPO5yP0niQxtdkB9Cdfxkw d3HdXv8hIVE5dgCmQtzJ91f2Hxt6+IjMb+ZB7A2JwZXMUk2CvzpmWSTjIFNRqEyc wKbPQv/LUOsL58NrShzbp5TUPsMvKKU3WUtiQ1WwIrzU0Rj656+up6J17nHMrYRW khOwX5qcL0QHVejDNZTgIm6DJDS9cuk= -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:17 2025 by rpki-client