$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: IGwbUpw0+gHmOBHhC5BGTKkLa4Bz59aMAqxtUSg9n58= Subject key identifier: 7F:7E:FA:EB:12:BF:84:D5:E3:19:0B:83:1A:FB:3F:31:BC:15:B8:D3 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 08FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 08F6 Signing time: Fri 22 Aug 2025 20:29:29 +0000 Manifest this update: Fri 22 Aug 2025 20:29:29 +0000 Manifest next update: Fri 29 Aug 2025 20:29:29 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: FzxAmvIYku5je+ikT4zryTZE918LNMhQ9TQmuAGb66A=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2300 (0x8fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Aug 22 20:29:29 2025 GMT Not After : Aug 29 20:29:29 2025 GMT Subject: CN=68a8d329-d393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:c1:d1:85:9c:c8:fe:21:ee:93:9d:31:dc: e2:e0:7a:b7:4c:98:56:05:ff:8a:69:0c:4c:09:98: b5:65:c2:10:75:59:23:89:7d:4e:b1:b3:d9:9f:20: 7f:33:8f:17:58:1c:05:6c:5b:da:75:6c:bf:3b:44: 94:00:3f:0e:25:e4:06:ac:84:d2:4c:98:0a:dd:c7: c8:7a:f1:a5:ff:ac:4a:15:1b:aa:62:fe:e8:7d:76: c5:a9:4d:78:68:d8:93:29:04:3e:d1:23:df:c8:83: 83:23:b1:f3:c7:c2:11:3b:0a:32:52:95:e3:df:9a: d8:66:5b:54:24:91:08:0d:6d:c6:ed:21:67:ef:e0: 58:29:94:04:83:c0:95:b5:4b:ae:3c:07:d5:6b:b1: f7:84:60:2f:e1:02:a5:76:e8:8d:39:0e:fe:a3:b4: 49:8d:a4:87:fd:4f:03:a9:5f:16:d5:65:f4:cc:5d: 08:69:c5:70:bf:93:d0:5e:c5:72:2c:6e:37:f9:4d: d9:9e:39:77:7b:75:15:46:cb:18:68:da:a0:95:cf: 95:05:c0:68:3c:bb:1f:95:d8:f6:2e:2e:21:d9:1d: 19:5c:a4:da:25:19:1c:0c:a3:20:e4:b7:96:4e:3e: f8:55:bb:79:d8:c9:a3:a9:7e:55:d0:19:a3:82:ba: 42:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:FA:EB:12:BF:84:D5:E3:19:0B:83:1A:FB:3F:31:BC:15:B8:D3 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:10:5f:de:cd:71:8f:38:eb:0e:4d:96:06:5d:32:8b:48:09: e2:ae:12:d4:83:de:b8:31:97:d8:07:ba:1d:74:18:6a:67:4b: 8e:f6:b5:54:4b:b1:c3:ea:a7:f3:96:4c:33:3d:3b:a1:41:a6: bc:72:27:bb:52:a5:c6:90:e3:6c:db:b0:9c:ba:b4:e4:32:84: 50:97:d5:20:a4:fe:4e:19:f6:1e:11:ca:45:01:15:23:e6:6a: fe:3a:97:72:b3:04:aa:72:21:8a:ff:ac:af:1d:30:57:ce:55: 89:0f:8d:cf:5b:0b:6a:ec:70:06:0a:38:ed:82:6a:bc:41:c3: ff:8c:d6:ba:ee:0e:5a:d1:ea:1e:7b:75:d5:fb:7e:0e:5f:af: b0:d3:f1:cd:52:16:c0:f0:37:a2:bd:48:44:27:d0:b2:02:6e: 45:3a:a9:f3:39:f8:3b:b5:c5:3f:9e:1d:52:e4:38:63:ee:35: f2:73:cd:13:40:80:34:d4:c8:aa:af:3a:61:31:3e:32:5b:48: f2:d4:d9:b8:a2:2f:d0:51:f4:f0:1b:26:8f:41:85:9b:fc:39: da:7d:0f:ab:60:9f:cd:81:53:9b:64:f4:92:dd:3f:e8:bc:98: 00:6d:8d:28:d2:69:4d:e1:b8:a8:2f:b7:c9:95:0c:14:1a:8f: e2:24:0c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwODIyMjAyOTI5WhcNMjUwODI5MjAyOTI5WjAYMRYwFAYD VQQDEw02OGE4ZDMyOS1kMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy73B0YWcyP4h7pOdMdzi4Hq3TJhWBf+KaQxMCZi1ZcIQdVkjiX1OsbPZnyB/ M48XWBwFbFvadWy/O0SUAD8OJeQGrITSTJgK3cfIevGl/6xKFRuqYv7ofXbFqU14 aNiTKQQ+0SPfyIODI7Hzx8IROwoyUpXj35rYZltUJJEIDW3G7SFn7+BYKZQEg8CV tUuuPAfVa7H3hGAv4QKlduiNOQ7+o7RJjaSH/U8DqV8W1WX0zF0IacVwv5PQXsVy LG43+U3Znjl3e3UVRssYaNqglc+VBcBoPLsfldj2Li4h2R0ZXKTaJRkcDKMg5LeW Tj74Vbt52MmjqX5V0BmjgrpCGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9++usS v4TV4xkLgxr7PzG8FbjTMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByEF/ezXGPOOsOTZYGXTKLSAnirhLUg964MZfYB7oddBhqZ0uO9rVU S7HD6qfzlkwzPTuhQaa8cie7UqXGkONs27CcurTkMoRQl9UgpP5OGfYeEcpFARUj 5mr+OpdyswSqciGK/6yvHTBXzlWJD43PWwtq7HAGCjjtgmq8QcP/jNa67g5a0eoe e3XV+34OX6+w0/HNUhbA8DeivUhEJ9CyAm5FOqnzOfg7tcU/nh1S5Dhj7jXyc80T QIA01MiqrzphMT4yW0jy1Nm4oi/QUfTwGyaPQYWb/DnafQ+rYJ/NgVObZPSS3T/o vJgAbY0o0mlN4bioL7fJlQwUGo/iJAze -----END CERTIFICATE-----Generated at Sun Aug 24 04:45:45 2025 by rpki-client