$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: mALiJZ5SW2L214Fb9+SbHweEw4ggRspGB6Xte7wMFXc= Subject key identifier: 19:6D:ED:DD:FC:A4:34:A0:0A:9B:44:4E:9D:02:27:64:7D:9C:66:DC Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0284 Signing time: Sat 23 Aug 2025 01:55:15 +0000 Manifest this update: Sat 23 Aug 2025 01:55:15 +0000 Manifest next update: Sat 30 Aug 2025 01:55:15 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: ZbOVzp3mCeG2p596mFILDMz7GyvlAouBEO63ttqASgY=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Aug 23 01:55:15 2025 GMT Not After : Aug 30 01:55:15 2025 GMT Subject: CN=68a91f83-59f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:37:02:b0:64:61:86:f7:2a:44:df:39:89:f2: 0a:11:8b:17:15:d5:5a:a1:6f:09:fd:26:06:00:75: d4:ea:a9:35:95:9d:90:24:27:fc:98:a2:d8:ae:ba: a6:0a:d4:42:43:70:6d:48:de:e5:19:fd:2f:ed:bf: 58:f6:19:ea:c0:bd:e0:1a:5c:e1:e4:2d:dd:fb:38: 6b:55:1f:22:6e:ed:26:9c:35:fd:40:3e:a9:96:e3: 01:55:bf:e9:8c:fa:57:7e:00:74:8d:86:af:79:e4: 5b:f9:60:1e:c8:54:d6:3f:36:b7:47:04:32:97:0f: 0c:36:f9:7d:60:47:76:7f:7d:ca:96:1e:d1:29:e2: 5b:ed:44:a8:a9:07:9a:cc:04:73:03:42:86:16:f2: a9:06:c9:b4:cd:53:02:15:8c:73:b9:e5:69:df:59: 1c:6c:bd:c1:5d:cf:e5:48:cb:31:6e:e7:c0:d6:47: f1:64:b4:b4:86:00:fb:71:2e:48:94:ac:43:a4:3f: d2:a8:21:1d:fc:07:91:02:23:dc:75:30:6d:77:0d: e7:08:c4:e9:eb:95:1b:02:90:45:7d:91:54:50:5f: 7f:6f:2b:64:0e:ba:b9:4b:14:29:76:8f:91:03:be: e7:8d:38:27:1a:7d:d6:8b:ab:e6:14:1a:e6:a5:2f: 5d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6D:ED:DD:FC:A4:34:A0:0A:9B:44:4E:9D:02:27:64:7D:9C:66:DC X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b0:df:23:aa:b9:93:ab:ec:bf:13:e1:8f:3f:3f:92:41:da: 7e:27:b8:36:1c:76:76:a7:01:fd:80:4b:e8:a5:f1:40:80:42: b6:77:36:71:fe:5c:20:f3:dc:66:5c:92:b6:63:43:b9:4f:04: 9f:70:b4:e0:d7:ee:40:b1:24:a9:21:f0:e3:4c:eb:4e:d7:8a: ae:e9:10:cd:85:ad:9d:90:05:c1:d5:9f:c8:99:a6:40:4a:1c: 5f:7a:d0:a7:6d:25:48:67:8d:1a:96:1c:1c:4e:1f:4c:ee:1c: c3:dd:f4:ed:4e:a7:eb:71:1e:2f:9f:33:88:44:6f:68:af:00: 9a:36:15:f5:2c:02:fd:00:01:90:49:a6:29:65:a1:8e:20:64: 82:c8:20:61:72:cf:81:55:78:60:ba:e1:c9:88:43:f7:b0:0b: a1:fe:d4:f7:fc:63:f9:e1:40:09:1d:95:88:d4:70:95:3a:bc: 53:30:13:c2:f2:de:bd:3c:f6:ec:4e:95:8a:77:be:fa:d3:c9: 50:39:40:8d:c9:e2:c4:a8:8c:e9:df:aa:16:87:9e:d9:7c:7f: f4:4d:d0:94:15:7d:65:09:82:8b:82:30:4a:75:77:78:c5:30: 89:19:54:d6:12:f4:6d:30:c8:37:7d:87:42:ae:9b:7f:99:e3: 3c:45:dd:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwODIzMDE1NTE1WhcNMjUwODMwMDE1NTE1WjAYMRYwFAYD VQQDEw02OGE5MWY4My01OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTcCsGRhhvcqRN85ifIKEYsXFdVaoW8J/SYGAHXU6qk1lZ2QJCf8mKLYrrqm CtRCQ3BtSN7lGf0v7b9Y9hnqwL3gGlzh5C3d+zhrVR8ibu0mnDX9QD6pluMBVb/p jPpXfgB0jYaveeRb+WAeyFTWPza3RwQylw8MNvl9YEd2f33Klh7RKeJb7USoqQea zARzA0KGFvKpBsm0zVMCFYxzueVp31kcbL3BXc/lSMsxbufA1kfxZLS0hgD7cS5I lKxDpD/SqCEd/AeRAiPcdTBtdw3nCMTp65UbApBFfZFUUF9/bytkDrq5SxQpdo+R A77njTgnGn3Wi6vmFBrmpS9dSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlt7d38 pDSgCptETp0CJ2R9nGbcMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFsN8jqrmTq+y/E+GPPz+SQdp+J7g2HHZ2pwH9gEvopfFAgEK2dzZx /lwg89xmXJK2Y0O5TwSfcLTg1+5AsSSpIfDjTOtO14qu6RDNha2dkAXB1Z/ImaZA ShxfetCnbSVIZ40alhwcTh9M7hzD3fTtTqfrcR4vnzOIRG9orwCaNhX1LAL9AAGQ SaYpZaGOIGSCyCBhcs+BVXhguuHJiEP3sAuh/tT3/GP54UAJHZWI1HCVOrxTMBPC 8t69PPbsTpWKd77608lQOUCNyeLEqIzp36oWh57ZfH/0TdCUFX1lCYKLgjBKdXd4 xTCJGVTWEvRtMMg3fYdCrpt/meM8Rd1b -----END CERTIFICATE-----Generated at Sat Aug 23 17:12:07 2025 by rpki-client