$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: qckM4y8mQbJ1vPWT1AaIUKtQ8t1jyAUFD5RxQHq9PbM= Subject key identifier: 8D:DB:10:54:23:B1:D6:E9:F5:C3:28:28:32:0A:FF:2C:FD:8D:C3:05 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 033B Signing time: Wed 17 Sep 2025 01:33:06 +0000 Manifest this update: Wed 17 Sep 2025 01:33:06 +0000 Manifest next update: Wed 24 Sep 2025 01:33:06 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: U5f2FeoVs8QpPH8QOlLjBNktcRb4H/I5y3RqAsGJPjk=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 3: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Sep 17 01:33:06 2025 GMT Not After : Sep 24 01:33:06 2025 GMT Subject: CN=68ca0fd2-8e28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:27:de:d6:21:22:32:a1:42:f9:d1:fc:28:34: 2f:b4:67:fe:23:1a:83:f1:9c:18:84:61:59:aa:49: 1d:b5:9b:a0:34:62:c1:0e:6e:11:8a:dc:ee:06:dd: 83:2d:3e:db:48:7b:e1:c7:0f:da:83:b1:94:33:b7: 35:39:ad:8b:65:93:f7:06:af:84:41:35:6f:d7:c4: 04:04:db:ef:6c:af:92:e8:ad:7d:f1:b5:eb:ca:69: f7:25:25:f9:eb:91:38:32:19:47:19:bf:13:02:cb: ec:ea:21:9b:94:d7:82:04:33:21:4a:fb:22:46:8b: 27:ba:0d:a4:39:d1:af:9e:7f:85:55:9c:1f:c0:95: 3f:c9:fb:b7:fd:a7:1b:5a:84:a0:25:2b:10:52:7e: f5:0e:4e:65:6b:40:d0:d8:07:ca:34:87:31:9e:44: 18:57:e0:24:3d:0c:49:89:80:f3:1e:b1:0f:d0:2f: 78:fe:a1:1c:b6:ec:4c:75:9d:0f:e6:4a:c8:81:d8: cc:4f:fc:fa:01:de:a3:c7:ef:b5:64:66:3a:85:64: ba:0d:f2:27:39:1c:9e:cb:c9:7e:6a:03:80:a2:04: 2a:b6:89:29:af:aa:ea:a2:1a:53:c9:83:eb:a5:41: 04:a8:fd:ba:30:68:7f:28:6f:08:42:68:65:a9:cb: af:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DB:10:54:23:B1:D6:E9:F5:C3:28:28:32:0A:FF:2C:FD:8D:C3:05 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5b:e6:8b:3f:48:28:ba:7c:ba:57:67:c2:92:67:8e:fc:1a: d5:ba:cd:fe:1c:c1:35:dd:78:5a:9b:24:13:98:9e:1d:30:b1: f4:8f:f1:25:f2:46:30:28:6c:a7:04:9e:e5:3c:d8:19:06:8d: 5f:04:13:32:6a:f8:3e:08:c0:87:f1:bf:ab:66:fe:5c:67:eb: db:e2:3f:42:ba:cf:ac:2b:36:9a:07:7a:e6:43:9a:b6:2a:83: 2e:d1:f4:3a:d2:b8:75:c2:45:85:de:ed:05:5d:d5:fe:60:a9: 48:2e:4f:b4:98:fc:ab:e8:57:e3:77:2c:5d:84:99:8c:cf:07: 7d:3f:33:ce:a7:6a:52:dd:74:6e:db:73:fa:48:fe:d2:08:16: f4:5b:c0:f8:2f:7d:25:65:4d:41:8d:46:7f:a3:76:56:c6:96: 43:75:d4:9e:0a:42:c6:54:bd:4a:4b:ce:71:da:54:82:d9:a4: ea:2c:0d:b0:bc:ad:3c:1c:cb:de:31:0d:a2:f6:5b:dd:d0:c9: 61:a9:ce:dc:a7:f0:4a:9d:e0:ab:5b:e1:6e:ed:07:68:d5:ad: 7b:01:8c:a6:02:a3:c6:5f:3e:f0:ec:82:45:09:94:f9:fc:60: 1c:91:5a:a2:1d:51:73:d1:f0:ca:67:bc:b2:a3:0a:0c:38:bd: c3:34:b6:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwOTE3MDEzMzA2WhcNMjUwOTI0MDEzMzA2WjAYMRYwFAYD VQQDEw02OGNhMGZkMi04ZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCfe1iEiMqFC+dH8KDQvtGf+IxqD8ZwYhGFZqkkdtZugNGLBDm4RitzuBt2D LT7bSHvhxw/ag7GUM7c1Oa2LZZP3Bq+EQTVv18QEBNvvbK+S6K198bXrymn3JSX5 65E4MhlHGb8TAsvs6iGblNeCBDMhSvsiRosnug2kOdGvnn+FVZwfwJU/yfu3/acb WoSgJSsQUn71Dk5la0DQ2AfKNIcxnkQYV+AkPQxJiYDzHrEP0C94/qEctuxMdZ0P 5krIgdjMT/z6Ad6jx++1ZGY6hWS6DfInORyey8l+agOAogQqtokpr6rqohpTyYPr pUEEqP26MGh/KG8IQmhlqcuv/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3bEFQj sdbp9cMoKDIK/yz9jcMFMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtW+aLP0gouny6V2fCkmeO/BrVus3+HME13XhamyQTmJ4dMLH0j/El 8kYwKGynBJ7lPNgZBo1fBBMyavg+CMCH8b+rZv5cZ+vb4j9Cus+sKzaaB3rmQ5q2 KoMu0fQ60rh1wkWF3u0FXdX+YKlILk+0mPyr6FfjdyxdhJmMzwd9PzPOp2pS3XRu 23P6SP7SCBb0W8D4L30lZU1BjUZ/o3ZWxpZDddSeCkLGVL1KS85x2lSC2aTqLA2w vK08HMveMQ2i9lvd0Mlhqc7cp/BKneCrW+Fu7Qdo1a17AYymAqPGXz7w7IJFCZT5 /GAckVqiHVFz0fDKZ7yyowoMOL3DNLbZ -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:20 2025 by rpki-client