$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: P/0BavNlOPaUqLU9t/kb9zh+IhFewMTfd5BOd/fyWMw= Subject key identifier: 1F:D8:D0:2C:76:3A:C0:B5:A1:9B:B6:B8:E9:82:E4:F5:36:DD:90:73 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 5B Signing time: Fri 05 Sep 2025 07:40:13 +0000 Manifest this update: Fri 05 Sep 2025 07:40:12 +0000 Manifest next update: Fri 12 Sep 2025 07:40:12 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: zLz+8SC8hzE8IbArpMyAHKzWv4nsxEXHZr8ODzSzWfM=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Sep 5 07:40:12 2025 GMT Not After : Sep 12 07:40:12 2025 GMT Subject: CN=68ba93dc-00d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:95:12:8c:dc:7a:2d:63:81:83:bf:da:44: 6f:4e:8a:0a:c4:47:80:ed:8a:38:f9:eb:04:5c:7a: 3d:07:91:e3:ef:ee:2a:c3:7e:f0:93:55:22:e5:4c: 7c:50:68:b7:7e:23:c0:dc:85:51:fd:73:45:10:7b: 73:58:12:6b:8b:7f:c3:45:47:e6:27:95:48:25:84: 73:54:6d:ab:2a:b1:d4:94:26:9c:4d:a8:2f:86:27: b3:27:d5:ab:11:b8:89:ca:d5:47:89:e5:93:6f:57: d6:e4:a1:fe:30:e8:7a:99:5a:65:e3:b0:b0:10:26: 4b:ae:1c:27:23:44:a9:6c:41:18:fd:cb:8a:cb:fe: 09:88:b4:86:76:5c:64:38:5d:04:61:2e:35:16:ae: 2d:d8:60:cc:27:2a:16:dd:14:4e:74:cc:70:2e:a6: a4:6b:0a:d7:12:01:13:da:d2:59:6d:32:4a:f6:97: 65:58:c4:91:4f:c7:34:0e:86:f9:50:39:e6:fa:bd: a7:43:6a:36:c2:e1:62:60:87:c7:d9:4a:55:5c:c7: bb:95:27:81:9e:02:84:1f:96:2d:00:a3:71:92:ea: a3:72:c3:b9:62:dc:91:ed:74:3e:a3:41:37:b4:69: 8a:95:53:36:61:e2:e3:98:51:8a:ea:de:1c:10:cf: 46:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D8:D0:2C:76:3A:C0:B5:A1:9B:B6:B8:E9:82:E4:F5:36:DD:90:73 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:bd:19:a3:47:fa:d1:46:1f:71:f4:56:2d:81:40:86:78:ab: 18:92:0e:a6:b9:85:27:5b:e0:f7:ea:16:e3:1d:fa:74:1a:99: 33:58:d5:09:40:7d:bd:74:20:f9:0a:ca:46:58:22:03:c2:44: 13:ba:49:a2:51:99:ac:59:9e:43:cc:6a:ad:bc:4b:d9:f3:87: 7f:5c:27:3f:8b:70:53:3a:89:f3:86:f1:5d:c7:f8:a2:67:9e: 5f:99:07:28:ee:ba:c6:62:c0:a2:0b:4c:17:f5:4c:5f:74:81: 3b:02:4c:79:9e:a2:df:c9:de:da:bc:cc:51:67:1d:f3:cc:4f: 8c:cb:72:59:cd:57:8e:e4:bb:7c:fc:94:f1:75:86:7a:a9:83: 59:87:12:ca:86:96:fc:45:ea:f9:80:33:c2:4d:8a:0d:a6:64: 23:01:71:d4:80:87:0b:92:f5:89:df:b9:5c:7a:34:95:fa:ec: 39:1d:b4:85:5e:8f:13:87:9e:12:98:7a:c5:4b:0a:46:f1:12: b3:55:26:db:0d:e3:7d:cf:1c:e9:d0:00:7e:cf:93:3b:c8:82: 77:fa:0a:62:d6:a2:df:df:91:30:77:8b:51:6e:ad:a1:28:01: df:f8:51:92:da:e6:f3:f5:4f:1c:79:29:95:13:90:29:1b:90: c2:72:32:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA5MDUwNzQwMTJaFw0yNTA5MTIwNzQwMTJaMBgxFjAUBgNV BAMTDTY4YmE5M2RjLTAwZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8qJUSjNx6LWOBg7/aRG9OigrER4Dtijj56wRcej0HkePv7irDfvCTVSLlTHxQ aLd+I8DchVH9c0UQe3NYEmuLf8NFR+YnlUglhHNUbasqsdSUJpxNqC+GJ7Mn1asR uInK1UeJ5ZNvV9bkof4w6HqZWmXjsLAQJkuuHCcjRKlsQRj9y4rL/gmItIZ2XGQ4 XQRhLjUWri3YYMwnKhbdFE50zHAupqRrCtcSARPa0lltMkr2l2VYxJFPxzQOhvlQ Oeb6vadDajbC4WJgh8fZSlVcx7uVJ4GeAoQfli0Ao3GS6qNyw7li3JHtdD6jQTe0 aYqVUzZh4uOYUYrq3hwQz0brAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH9jQLHY6 wLWhm7a46YLk9TbdkHMwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ69GaNH+tFGH3H0Vi2BQIZ4qxiSDqa5hSdb4PfqFuMd+nQamTNY1QlA fb10IPkKykZYIgPCRBO6SaJRmaxZnkPMaq28S9nzh39cJz+LcFM6ifOG8V3H+KJn nl+ZByjuusZiwKILTBf1TF90gTsCTHmeot/J3tq8zFFnHfPMT4zLclnNV47ku3z8 lPF1hnqpg1mHEsqGlvxF6vmAM8JNig2mZCMBcdSAhwuS9YnfuVx6NJX67DkdtIVe jxOHnhKYesVLCkbxErNVJtsN433PHOnQAH7PkzvIgnf6CmLWot/fkTB3i1FuraEo Ad/4UZLa5vP1Txx5KZUTkCkbkMJyMv0= -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:11 2025 by rpki-client