$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: iZ4jl2Ri5wv/IH3gScCGV/C5l2/i6tavMGDNE9ZXGcg= Subject key identifier: 6C:10:56:8C:7D:E2:32:38:C5:0E:BE:23:27:B3:D7:9E:B6:13:EC:66 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 08E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 08DC Signing time: Wed 02 Jul 2025 20:40:34 +0000 Manifest this update: Wed 02 Jul 2025 20:40:33 +0000 Manifest next update: Wed 09 Jul 2025 20:40:33 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: n5XboZXEtjc98MGcGKwNDcDjsKmUep+md5zWosmaPrc=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Jul 2 20:40:33 2025 GMT Not After : Jul 9 20:40:33 2025 GMT Subject: CN=68659942-9895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:71:e6:35:67:5b:eb:e2:cf:da:22:cb:a1:09: b9:82:58:25:cb:6e:6f:e0:56:08:93:37:c4:8f:13: ab:b4:84:79:c4:06:e1:ef:f4:a0:6d:8e:1f:97:71: 9a:de:f0:00:94:48:4c:5a:94:68:d2:e7:21:fa:c0: 1d:42:e8:50:7a:72:d6:6e:d3:ff:bd:53:35:64:a7: ed:24:a6:0e:f2:73:aa:b2:96:52:fb:88:87:95:10: 82:6f:f9:86:86:2e:84:ad:bd:05:23:e4:92:ca:56: 2e:5a:39:08:f3:ad:1e:0f:05:a3:63:8a:89:10:f0: d1:b0:a4:ab:c9:3f:f0:74:d1:4a:79:38:b2:58:77: 5f:f4:90:69:bd:58:59:47:38:b2:3c:87:aa:9c:07: fe:15:6e:7b:d0:7a:01:40:04:62:c4:14:d1:3e:3e: e3:fd:7f:85:be:0c:4d:8e:47:f5:8b:8a:ef:ef:71: 81:cf:0e:e1:65:76:77:ea:f0:53:fb:b1:42:b1:b6: 1f:28:46:b1:62:fe:f3:5d:32:a0:39:86:9b:e1:e3: 7e:4e:02:6e:04:1e:9d:fb:6d:79:57:cb:0b:f0:ea: 8c:51:dd:15:25:d3:c8:82:0b:53:f3:97:8f:ba:b7: 24:7c:c3:eb:cb:70:a7:5a:7c:01:19:5a:da:d0:c7: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:10:56:8C:7D:E2:32:38:C5:0E:BE:23:27:B3:D7:9E:B6:13:EC:66 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:b2:e5:25:fa:39:b1:90:b9:8e:bf:2a:e3:14:87:33:62:2e: ec:99:29:95:b2:27:a8:17:76:ef:53:48:85:51:4d:9a:af:9c: 35:98:71:f0:c1:a6:e4:a1:92:a8:9b:43:19:23:23:9b:0e:7f: 6a:9e:3c:0c:93:49:04:03:f5:64:36:00:cf:f1:86:aa:23:6e: 19:33:0a:55:34:35:7c:3d:05:f4:64:7c:ea:36:75:37:44:cb: 59:f5:be:ae:5c:01:29:08:fa:61:ff:6f:64:3c:7f:36:53:ca: 67:ff:75:34:57:76:42:cb:1f:21:0f:24:24:64:e5:e0:35:4b: f3:99:63:f4:8f:fb:74:79:0e:39:38:a6:6b:a6:88:c5:00:13: 45:4b:f3:4d:b8:d2:f0:63:de:7c:b8:14:2c:d9:99:12:d1:d9: 07:e4:35:b7:a4:56:2b:d2:c2:3a:c8:eb:dd:52:66:49:da:ed: 4e:fc:44:92:b8:f3:a3:da:bd:b7:42:bc:b7:17:6b:38:00:c4: 4c:7c:53:16:7f:17:88:b3:14:b8:21:e1:c5:6f:ce:ba:33:96: ee:dd:f7:ce:5a:a0:80:9c:b7:41:01:8d:12:91:74:33:21:16: 70:25:37:e8:9b:0b:1d:a9:c9:a0:17:88:a2:ad:98:78:7b:b3: 0c:a0:c5:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwNzAyMjA0MDMzWhcNMjUwNzA5MjA0MDMzWjAYMRYwFAYD VQQDEw02ODY1OTk0Mi05ODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXHmNWdb6+LP2iLLoQm5glgly25v4FYIkzfEjxOrtIR5xAbh7/SgbY4fl3Ga 3vAAlEhMWpRo0uch+sAdQuhQenLWbtP/vVM1ZKftJKYO8nOqspZS+4iHlRCCb/mG hi6Erb0FI+SSylYuWjkI860eDwWjY4qJEPDRsKSryT/wdNFKeTiyWHdf9JBpvVhZ RziyPIeqnAf+FW570HoBQARixBTRPj7j/X+FvgxNjkf1i4rv73GBzw7hZXZ36vBT +7FCsbYfKEaxYv7zXTKgOYab4eN+TgJuBB6d+215V8sL8OqMUd0VJdPIggtT85eP urckfMPry3CnWnwBGVra0MekOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwQVox9 4jI4xQ6+Iyez1562E+xmMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPsuUl+jmxkLmOvyrjFIczYi7smSmVsieoF3bvU0iFUU2ar5w1mHHw wabkoZKom0MZIyObDn9qnjwMk0kEA/VkNgDP8YaqI24ZMwpVNDV8PQX0ZHzqNnU3 RMtZ9b6uXAEpCPph/29kPH82U8pn/3U0V3ZCyx8hDyQkZOXgNUvzmWP0j/t0eQ45 OKZrpojFABNFS/NNuNLwY958uBQs2ZkS0dkH5DW3pFYr0sI6yOvdUmZJ2u1O/ESS uPOj2r23Qry3F2s4AMRMfFMWfxeIsxS4IeHFb866M5bu3ffOWqCAnLdBAY0SkXQz IRZwJTfomwsdqcmgF4iirZh4e7MMoMVp -----END CERTIFICATE-----Generated at Thu Jul 3 17:27:20 2025 by rpki-client