$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: KL0lZxtnHRMWCUzciCVUR52VYVZBHtiDhcXhk1Thh+Q= Subject key identifier: 6C:C7:2F:A5:A3:5F:3A:F3:E2:1E:F8:6D:61:98:8D:C3:A4:54:BD:50 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0269 Signing time: Tue 01 Jul 2025 02:27:58 +0000 Manifest this update: Tue 01 Jul 2025 02:27:57 +0000 Manifest next update: Tue 08 Jul 2025 02:27:57 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: lCRW0emRomWd/hU/NOJCbxCxBDJDBfT9y+LDrIGbsfc=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Jul 1 02:27:57 2025 GMT Not After : Jul 8 02:27:57 2025 GMT Subject: CN=686347ae-ea08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:28:02:cd:0e:cd:51:11:94:5e:9c:c3:06:68: 36:0f:e2:41:29:51:29:08:66:25:3d:53:d1:3d:c2: 08:91:4b:d0:04:9c:b9:45:16:81:ba:83:52:71:68: 88:2e:b0:72:12:22:48:4b:10:5e:ef:f1:69:29:dd: 16:6a:bf:0c:92:b1:37:f9:95:d5:f3:44:31:37:ca: d0:70:eb:fc:58:6d:3a:8d:8f:d4:90:10:73:83:aa: 66:36:35:1d:69:eb:dc:ec:50:61:65:e3:a5:cb:4f: 3e:d4:b9:19:73:30:64:db:09:2a:38:4c:3b:8e:4e: 2f:0d:ca:72:22:80:2f:be:ba:06:fc:e9:67:72:d5: ba:a5:7f:67:8e:85:2f:55:62:96:f1:a2:ae:31:c6: b4:a6:72:22:69:76:b5:a7:d4:f1:c0:80:30:18:c5: da:69:2c:fe:67:3e:86:2f:3b:79:9c:5f:88:5c:99: 70:ef:18:63:44:be:1f:ee:86:4a:1f:66:01:af:1d: 63:01:66:89:b5:8e:83:62:19:98:ab:fb:38:97:94: 73:c3:1a:e5:60:86:e0:cf:04:0f:84:42:29:1d:a3: 89:f2:fa:97:78:bf:22:33:6c:e1:28:18:a8:ef:22: 20:5e:11:70:0c:55:72:5e:d7:e7:af:30:ff:1e:cc: 5a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C7:2F:A5:A3:5F:3A:F3:E2:1E:F8:6D:61:98:8D:C3:A4:54:BD:50 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:65:7b:e0:3b:46:14:46:b7:35:a7:21:9c:90:26:68:34:f0: 16:1f:5e:cd:f4:1e:0b:79:ac:f8:29:a2:a9:95:74:d6:b9:61: ca:aa:79:e1:d0:d4:2a:fc:a7:b4:7f:81:43:c1:2c:a3:f7:42: d6:48:5f:8d:b2:eb:1e:71:2a:dd:51:cc:97:b4:d7:7d:05:b7: 4f:b8:1d:92:76:46:27:e9:61:65:ae:d8:c6:22:e1:4e:08:c3: 9b:dc:0e:4e:c9:2e:3f:fe:8b:0d:0f:cf:61:8a:58:62:70:99: 91:51:24:85:a6:40:0f:05:2e:67:59:63:c8:b3:19:14:b4:b8: 89:22:1c:f0:18:9d:e0:27:c6:58:ba:76:24:ea:99:6d:5c:ce: e8:f0:ec:39:f2:01:55:53:3b:c5:3a:9d:e4:c5:53:dc:2e:b7: da:ac:3e:2b:ff:c5:98:bb:4b:e1:8e:11:15:6b:75:a0:86:94: ff:cd:62:b7:68:84:11:4c:1d:53:8c:c0:e0:07:20:b5:02:0e: 9d:f8:82:10:15:7f:92:2e:0b:6d:56:42:63:19:75:3d:1b:a5: c1:e1:a8:43:9b:d0:cc:24:f8:54:78:e8:97:ac:41:ea:14:1d: 83:b3:6e:c1:c5:61:92:dd:38:57:68:a1:07:49:4b:2e:a8:cb: 97:94:e8:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwNzAxMDIyNzU3WhcNMjUwNzA4MDIyNzU3WjAYMRYwFAYD VQQDEw02ODYzNDdhZS1lYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CgCzQ7NURGUXpzDBmg2D+JBKVEpCGYlPVPRPcIIkUvQBJy5RRaBuoNScWiI LrByEiJISxBe7/FpKd0War8MkrE3+ZXV80QxN8rQcOv8WG06jY/UkBBzg6pmNjUd aevc7FBhZeOly08+1LkZczBk2wkqOEw7jk4vDcpyIoAvvroG/OlnctW6pX9njoUv VWKW8aKuMca0pnIiaXa1p9TxwIAwGMXaaSz+Zz6GLzt5nF+IXJlw7xhjRL4f7oZK H2YBrx1jAWaJtY6DYhmYq/s4l5RzwxrlYIbgzwQPhEIpHaOJ8vqXeL8iM2zhKBio 7yIgXhFwDFVyXtfnrzD/HsxaDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzHL6Wj Xzrz4h74bWGYjcOkVL1QMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVZXvgO0YURrc1pyGckCZoNPAWH17N9B4Leaz4KaKplXTWuWHKqnnh 0NQq/Ke0f4FDwSyj90LWSF+NsusecSrdUcyXtNd9BbdPuB2SdkYn6WFlrtjGIuFO CMOb3A5OyS4//osND89hilhicJmRUSSFpkAPBS5nWWPIsxkUtLiJIhzwGJ3gJ8ZY unYk6pltXM7o8Ow58gFVUzvFOp3kxVPcLrfarD4r/8WYu0vhjhEVa3WghpT/zWK3 aIQRTB1TjMDgByC1Ag6d+IIQFX+SLgttVkJjGXU9G6XB4ahDm9DMJPhUeOiXrEHq FB2Ds27BxWGS3ThXaKEHSUsuqMuXlOhL -----END CERTIFICATE-----Generated at Wed Jul 2 16:29:55 2025 by rpki-client