$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft File: HJuixf6owDTaVR_a3GKlOnoC5ds.mft (raw, json) Hash identifier: Weg+N3oOcPSYX3SQOPoQ+r8ZQTJeVyvPHvCFMHefjQQ= Subject key identifier: 5A:64:CB:49:EA:DA:32:8A:55:59:C8:BB:06:30:60:B5:C6:22:6F:D6 Authority key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB Certificate issuer: /CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Certificate serial: 099A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft Manifest number: 0981 Signing time: Sat 06 Sep 2025 20:19:09 +0000 Manifest this update: Sat 06 Sep 2025 20:19:09 +0000 Manifest next update: Sat 13 Sep 2025 20:19:09 +0000 Files and hashes: 1: HJuixf6owDTaVR_a3GKlOnoC5ds.crl (hash: uCcbWyem1L9sr/CdgfOv4EO/SPdMMwSb8D4dLaOdSIk=) 2: 52FC6006A19911EA96035C38C4F9AE02.roa (hash: wci0Xfqzo59Y8jWuwf9OlzNgtFeflA2lDlymuLqWFus=) 3: 7B136C42CC8511EC8D238672C4F9AE02.roa (hash: vQbCuWQwTDhbmdI3t8jm44MzJ+6k3uWJJXIQLGrnQxI=) 4: 79C02FB0CC8511EC8D238672C4F9AE02.roa (hash: dKpKNCrURAsBv07U8aimKZSBpZKUHuEP819khAXBuFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D86, serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Validity Not Before: Sep 6 20:19:09 2025 GMT Not After : Sep 13 20:19:09 2025 GMT Subject: CN=68bc973d-2b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:09:2d:8e:76:7a:b8:a0:cb:d4:f0:79:f7:06: 74:c0:da:48:e1:04:37:91:7f:1c:cd:c0:87:2b:1e: a2:e3:74:08:0c:a2:c7:01:41:bf:37:e1:79:d5:7d: 98:15:89:e0:69:83:75:90:51:84:38:c5:3e:4a:b2: 04:3e:e3:58:f5:f4:28:ee:58:b2:39:80:db:ff:9b: f3:2f:53:88:e8:ae:9f:9e:44:23:fc:0a:bf:37:9b: 6f:18:a6:4e:a2:6d:1e:c0:64:0f:45:0b:59:46:62: 5b:40:fb:ba:ac:ec:83:b9:9a:6f:5b:76:ab:da:f2: 5e:58:18:3d:4d:c0:fe:d4:13:ef:28:8f:53:34:74: ac:f1:bc:d5:97:d9:20:18:3c:9d:34:2e:37:f8:d1: fc:cd:cb:46:25:03:90:ab:17:30:c9:2d:61:11:3b: bf:89:5a:ea:56:94:ce:02:50:c2:83:ef:7d:ee:1f: d9:c7:c0:32:23:91:54:ab:6d:f1:55:74:78:d6:9a: 45:0d:91:7f:ed:59:a0:d9:10:34:15:5f:8f:7e:b5: f0:3b:f9:39:f2:2c:72:e6:d2:7d:a5:90:ee:dd:d2: 1d:e3:7f:de:17:b6:5e:78:d5:81:68:1b:7c:12:f2: cb:23:11:5a:a1:21:a1:d3:10:7c:d7:91:d4:43:7a: 42:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:64:CB:49:EA:DA:32:8A:55:59:C8:BB:06:30:60:B5:C6:22:6F:D6 X509v3 Authority Key Identifier: keyid:1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d1:9a:60:f9:28:01:5b:be:10:37:db:08:b1:8d:fb:8b:96: 0c:38:f9:8c:0d:e4:b6:46:92:24:68:dc:c2:82:34:47:ef:4c: c4:2b:aa:e4:06:96:3d:f6:9e:b3:c2:15:cb:48:36:8c:2d:25: 19:7a:c8:1d:28:b6:f9:e7:c9:83:8b:fa:ba:90:00:1f:d5:39: 8f:33:07:03:39:be:cb:82:98:24:64:82:9b:6f:c4:a1:c5:09: 6a:68:74:99:ba:2a:07:3e:38:ff:1e:0d:c9:fa:df:06:e1:8a: 46:45:c7:a4:e9:21:a1:73:c5:01:96:da:6c:32:e1:e0:90:e5: 84:5a:a7:a6:03:ff:c5:26:d1:a2:48:82:5b:17:07:93:4d:5f: 72:d1:ea:7c:2c:50:0e:f1:e9:76:9f:7f:f7:20:4f:be:a1:e8: 04:64:b3:84:c9:30:ce:76:5e:48:3c:47:20:40:09:bb:74:c8: 4a:fb:69:00:c1:78:44:08:37:5c:33:55:40:4f:88:e4:2b:53: 4a:ec:8f:a1:c3:05:27:9c:a0:9f:25:ad:67:15:33:c5:f5:30: f3:c0:56:e8:02:42:93:60:78:4a:bb:0f:80:fb:e2:39:69:a7: bd:64:e4:cf:7e:2f:0b:b5:d1:c0:ea:f0:87:a6:f8:81:0e:63: 5f:38:87:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODYxMTAvBgNVBAUTKDFDOUJBMkM1RkVBOEMwMzREQTU1MUZEQURDNjJBNTNB N0EwMkU1REIwHhcNMjUwOTA2MjAxOTA5WhcNMjUwOTEzMjAxOTA5WjAYMRYwFAYD VQQDEw02OGJjOTczZC0yYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowktjnZ6uKDL1PB59wZ0wNpI4QQ3kX8czcCHKx6i43QIDKLHAUG/N+F51X2Y FYngaYN1kFGEOMU+SrIEPuNY9fQo7liyOYDb/5vzL1OI6K6fnkQj/Aq/N5tvGKZO om0ewGQPRQtZRmJbQPu6rOyDuZpvW3ar2vJeWBg9TcD+1BPvKI9TNHSs8bzVl9kg GDydNC43+NH8zctGJQOQqxcwyS1hETu/iVrqVpTOAlDCg+997h/Zx8AyI5FUq23x VXR41ppFDZF/7Vmg2RA0FV+PfrXwO/k58ixy5tJ9pZDu3dId43/eF7ZeeNWBaBt8 EvLLIxFaoSGh0xB815HUQ3pC+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpky0nq 2jKKVVnIuwYwYLXGIm/WMB8GA1UdIwQYMBaAFBybosX+qMA02lUf2txipTp6AuXb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4Ni9DNjdEMTc2RTlB NUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dEVGFWUl9hM0dLbE9ub0M1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hKdWl4ZjZvd0RUYVZSX2EzR0tsT25vQzVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Q4Ni9DNjdEMTc2RTlBNUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dE VGFWUl9hM0dLbE9ub0M1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA80Zpg+SgBW74QN9sIsY37i5YMOPmMDeS2RpIkaNzCgjRH70zEK6rk BpY99p6zwhXLSDaMLSUZesgdKLb558mDi/q6kAAf1TmPMwcDOb7LgpgkZIKbb8Sh xQlqaHSZuioHPjj/Hg3J+t8G4YpGRcek6SGhc8UBltpsMuHgkOWEWqemA//FJtGi SIJbFweTTV9y0ep8LFAO8el2n3/3IE++oegEZLOEyTDOdl5IPEcgQAm7dMhK+2kA wXhECDdcM1VAT4jkK1NK7I+hwwUnnKCfJa1nFTPF9TDzwFboAkKTYHhKuw+A++I5 aae9ZOTPfi8LtdHA6vCHpviBDmNfOIdd -----END CERTIFICATE-----Generated at Mon Sep 8 08:41:42 2025 by rpki-client