$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: aXm7/m/S4pKTZ8pAZQWotzEeNtIh5t93JTnLCRs3BNw= Subject key identifier: DC:EF:E7:E2:29:84:B5:C7:09:DB:C3:2B:06:68:1A:B9:30:82:B0:73 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 083C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 0837 Signing time: Wed 02 Jul 2025 21:01:55 +0000 Manifest this update: Wed 02 Jul 2025 21:01:55 +0000 Manifest next update: Wed 09 Jul 2025 21:01:55 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: q7cbkgLZR5lnAtTeRdfHR+phjj2hIx0WeJ8Kh12jH8o=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: BTpWw7F/XbdMRveGgpGDkDR4BmkxDYTL8O9GDvpyiEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Jul 2 21:01:55 2025 GMT Not After : Jul 9 21:01:55 2025 GMT Subject: CN=68659e43-8942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a7:58:b9:a9:20:3e:fa:58:44:e8:90:bb:b7: c9:0d:fa:a3:3c:de:6f:41:ce:95:9c:4f:72:59:2e: 6f:6e:d8:0b:c6:53:29:82:e5:3c:e9:73:c7:a1:71: 58:d5:31:ab:b8:33:a9:33:f6:c5:4a:60:9a:e0:50: 12:d0:53:c6:a9:0c:5b:24:1f:22:67:a0:25:99:53: 6f:9b:00:83:c9:8e:33:25:51:cb:38:c4:ef:2d:35: 1d:30:bc:d3:f8:23:c6:cf:10:b1:51:38:9b:e3:71: 5d:f3:55:5d:67:41:26:f7:a2:da:54:b4:d1:bb:1c: b4:2e:42:8f:98:5b:e8:c2:f6:ab:47:46:0f:ff:51: ad:5d:fe:d7:24:26:f6:4f:8b:5b:de:14:13:32:e9: 1c:9f:21:49:64:b6:f0:1a:81:2b:53:5f:da:95:57: 63:14:ec:a7:48:94:a2:c7:b1:f9:92:60:d4:78:54: 5b:c2:68:45:f1:38:88:f7:27:a2:dc:36:3b:c8:42: 74:f5:1e:68:16:18:1b:7a:08:e7:33:ca:fb:67:e9: 75:2e:21:f9:ae:8a:87:41:ef:0c:6d:cf:d0:63:e5: ab:4d:7d:e5:5f:b1:52:cc:fc:5f:80:58:e9:00:e3: aa:f6:9c:41:ed:da:50:72:78:9f:65:ae:10:26:4b: 19:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EF:E7:E2:29:84:B5:C7:09:DB:C3:2B:06:68:1A:B9:30:82:B0:73 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:61:28:8c:fa:48:19:6c:cc:1c:58:43:e7:73:8a:76:8d:78: 35:d1:80:05:e1:ee:2d:95:1a:a5:fd:37:2e:16:93:a7:8a:45: 54:00:07:b0:bb:ec:49:78:a3:30:2c:7b:b1:36:fb:89:52:2f: e9:d4:56:34:48:fa:ab:99:15:5a:9b:63:c9:35:eb:d3:ca:a8: e5:9a:b2:3b:67:df:eb:e8:ca:0c:5d:7d:b4:eb:56:8d:4e:41: 37:e3:3e:42:8f:8f:2c:94:36:08:df:75:de:a7:0b:6f:38:70: c3:1d:33:26:3b:28:c9:6c:c9:1a:f8:1e:e4:8b:e9:25:cc:f5: e9:af:77:14:54:33:30:39:e1:3d:92:ab:60:f0:d0:ce:c8:87: 7c:38:8b:91:45:ae:53:3b:d9:3e:dc:f2:d2:25:94:e4:a4:89: 6d:03:de:e0:de:79:da:48:53:28:ca:2c:c9:ad:d7:77:49:66: b7:06:03:2a:a4:b0:5a:ca:c0:ce:03:74:a4:83:cc:6b:58:36: 0b:33:38:05:89:85:97:81:5e:94:5c:2e:05:32:24:c9:de:10: a7:3a:ea:23:c7:e3:a1:a4:44:14:bf:2a:64:10:04:c8:b2:f1: 33:c1:31:f1:49:1c:a8:a5:9e:19:31:13:23:fc:98:2f:79:0a: 55:25:8d:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwNzAyMjEwMTU1WhcNMjUwNzA5MjEwMTU1WjAYMRYwFAYD VQQDEw02ODY1OWU0My04OTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKdYuakgPvpYROiQu7fJDfqjPN5vQc6VnE9yWS5vbtgLxlMpguU86XPHoXFY 1TGruDOpM/bFSmCa4FAS0FPGqQxbJB8iZ6AlmVNvmwCDyY4zJVHLOMTvLTUdMLzT +CPGzxCxUTib43Fd81VdZ0Em96LaVLTRuxy0LkKPmFvowvarR0YP/1GtXf7XJCb2 T4tb3hQTMukcnyFJZLbwGoErU1/alVdjFOynSJSix7H5kmDUeFRbwmhF8TiI9yei 3DY7yEJ09R5oFhgbegjnM8r7Z+l1LiH5roqHQe8Mbc/QY+WrTX3lX7FSzPxfgFjp AOOq9pxB7dpQcnifZa4QJksZ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzv5+Ip hLXHCdvDKwZoGrkwgrBzMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApYSiM+kgZbMwcWEPnc4p2jXg10YAF4e4tlRql/TcuFpOnikVUAAew u+xJeKMwLHuxNvuJUi/p1FY0SPqrmRVam2PJNevTyqjlmrI7Z9/r6MoMXX2061aN TkE34z5Cj48slDYI33XepwtvOHDDHTMmOyjJbMka+B7ki+klzPXpr3cUVDMwOeE9 kqtg8NDOyId8OIuRRa5TO9k+3PLSJZTkpIltA97g3nnaSFMoyizJrdd3SWa3BgMq pLBaysDOA3Skg8xrWDYLMzgFiYWXgV6UXC4FMiTJ3hCnOuojx+OhpEQUvypkEATI svEzwTHxSRyopZ4ZMRMj/JgveQpVJY3x -----END CERTIFICATE-----Generated at Fri Jul 4 13:38:23 2025 by rpki-client