$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: daHIC3GvkOhiPI0p4xA1IOjhQb/jw3Bwr8mCwWvyt48= Subject key identifier: B5:B7:83:73:EF:7D:A3:BB:CC:FA:35:BE:92:DC:07:B9:4D:18:3B:F9 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0919 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0913 Signing time: Sat 18 Oct 2025 21:23:20 +0000 Manifest this update: Sat 18 Oct 2025 21:23:19 +0000 Manifest next update: Sat 25 Oct 2025 21:23:19 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: GdoMJeImGBK6GfmrALejkazFjTMc387SQ8FBQc3wjTU=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2329 (0x919) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Oct 18 21:23:19 2025 GMT Not After : Oct 25 21:23:19 2025 GMT Subject: CN=68f40548-ca56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:26:66:93:8e:4d:4f:cd:59:84:12:2b:0a: 9b:22:38:dc:59:db:f7:87:ff:0d:fc:6f:c7:c1:40: b9:08:1a:b2:13:9b:9b:7a:9c:5b:d7:df:2d:72:00: f6:e7:1e:9b:44:84:d0:98:04:89:9f:d4:f5:50:27: 07:17:44:ff:b8:a4:e4:04:c1:8b:de:7d:bf:c6:ac: a1:bc:c7:0f:33:1b:ad:8e:b6:f7:0b:3e:f5:47:8c: 22:0d:33:2b:3f:6d:b4:62:83:d5:69:75:23:57:35: 34:8f:f7:dd:4f:23:92:66:55:a6:6d:66:c2:ad:b7: a3:fc:9c:f9:80:ee:b7:eb:0f:a6:13:b6:b1:e6:a5: 19:0d:6e:11:b7:0b:6d:f2:83:df:27:43:19:1e:75: 6f:f3:36:32:70:f6:7c:c9:70:53:73:0d:3a:c8:33: 39:f3:74:9c:80:13:43:ab:a1:71:4b:bf:74:1c:43: b2:6f:da:6b:a6:b4:5f:a4:9d:f1:aa:19:ba:b3:c1: 80:44:a6:8e:63:ad:58:20:f1:36:d5:c0:d8:e4:96: ad:0b:17:29:5d:47:58:d5:69:55:bd:5d:12:81:8c: 76:90:3a:a7:64:77:bd:c9:62:b9:19:f8:7c:88:b9: 8e:4c:1e:84:3b:26:5e:71:60:06:e1:f3:31:62:b8: 66:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B7:83:73:EF:7D:A3:BB:CC:FA:35:BE:92:DC:07:B9:4D:18:3B:F9 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:61:14:f7:db:1f:db:c8:af:f4:02:e9:98:1e:51:85:76:85: ea:67:ef:f0:4b:6f:d7:97:b8:e5:67:79:dc:22:77:5e:33:6d: 10:0b:2b:2d:46:ae:c7:be:6c:02:27:ef:a3:54:66:83:49:03: f6:2d:75:53:2a:05:59:4c:fd:dd:d5:f6:c3:a9:b5:f2:a3:ff: b1:df:26:0d:18:1e:ea:c4:43:5d:0c:47:a5:c5:8f:7a:ba:96: 38:e3:45:98:0e:13:ea:eb:4a:54:5e:27:76:9e:d0:c8:9b:1f: 00:5c:b0:36:16:52:4f:59:d3:3c:44:ea:b6:cb:79:57:e9:a5: 5e:e6:03:7c:32:06:96:58:5f:be:27:49:04:2d:01:93:e6:07: 51:a7:49:61:c2:5d:37:c5:91:3e:6b:ed:05:7b:c7:7b:f4:bd: 09:11:1f:25:71:d1:a4:fb:14:ad:00:5a:7d:26:50:fe:45:3f: fb:48:fc:10:87:20:6d:97:37:f7:b5:33:f5:3e:52:ef:da:65: 43:ec:0e:66:13:16:49:58:fa:2f:29:25:3d:58:1a:bb:e6:93: 96:dc:1a:cb:0f:6a:2c:e3:66:d4:bf:bf:d7:2b:50:69:c6:85: 04:d6:10:89:5d:6a:7a:24:b6:f4:5e:a1:b1:32:cf:7c:91:4f: 2d:41:f6:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUxMDE4MjEyMzE5WhcNMjUxMDI1MjEyMzE5WjAYMRYwFAYD VQQDEw02OGY0MDU0OC1jYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfYmZpOOTU/NWYQSKwqbIjjcWdv3h/8N/G/HwUC5CBqyE5ubepxb198tcgD2 5x6bRITQmASJn9T1UCcHF0T/uKTkBMGL3n2/xqyhvMcPMxutjrb3Cz71R4wiDTMr P220YoPVaXUjVzU0j/fdTyOSZlWmbWbCrbej/Jz5gO636w+mE7ax5qUZDW4Rtwtt 8oPfJ0MZHnVv8zYycPZ8yXBTcw06yDM583ScgBNDq6FxS790HEOyb9prprRfpJ3x qhm6s8GARKaOY61YIPE21cDY5JatCxcpXUdY1WlVvV0SgYx2kDqnZHe9yWK5Gfh8 iLmOTB6EOyZecWAG4fMxYrhmtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLW3g3Pv faO7zPo1vpLcB7lNGDv5MB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMYRT32x/byK/0AumYHlGFdoXqZ+/wS2/Xl7jlZ3ncIndeM20QCyst Rq7HvmwCJ++jVGaDSQP2LXVTKgVZTP3d1fbDqbXyo/+x3yYNGB7qxENdDEelxY96 upY440WYDhPq60pUXid2ntDImx8AXLA2FlJPWdM8ROq2y3lX6aVe5gN8MgaWWF++ J0kELQGT5gdRp0lhwl03xZE+a+0Fe8d79L0JER8lcdGk+xStAFp9JlD+RT/7SPwQ hyBtlzf3tTP1PlLv2mVD7A5mExZJWPovKSU9WBq75pOW3BrLD2os42bUv7/XK1Bp xoUE1hCJXWp6JLb0XqGxMs98kU8tQfYm -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:46 2025 by rpki-client