$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft File: HTaU7xQhyRhUqIesqWELxWCucIQ.mft (raw, json) Hash identifier: tfcVbmZVkKhf73Wip1GTFsEurzxPuFMsOvruggWZYHU= Subject key identifier: C9:28:60:AA:6E:56:64:01:BD:41:F8:79:9E:C9:48:9E:41:B2:03:FE Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0EDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft Manifest number: 0EB9 Signing time: Fri 22 Aug 2025 17:47:38 +0000 Manifest this update: Fri 22 Aug 2025 17:47:37 +0000 Manifest next update: Fri 29 Aug 2025 17:47:37 +0000 Files and hashes: 1: HTaU7xQhyRhUqIesqWELxWCucIQ.crl (hash: KyRMwsR+VfFNUWqM6ohai01UJeI4bs1oCVOcbNRt+hU=) 2: 89A93D5E971811E9AE51CA15C4F9AE02.roa (hash: 5Mh91OkrfeMvxN8zUlmhEA/cU28vfWanQEE4gEKGkZE=) 3: F73EFF46839211EEA1EC8A0EC4F9AE02.roa (hash: 2l3pLCgtvIHc/+HLPDdULsr+5gl+RLvHUNSD8p67gig=) 4: 7A40B730E2D811EBAB97665DC4F9AE02.roa (hash: nERwHYLrCQbTGbVdhkuVu4DLbRWJapvf+ehHeDcqXoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3803 (0xedb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Aug 22 17:47:37 2025 GMT Not After : Aug 29 17:47:37 2025 GMT Subject: CN=68a8ad39-9ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:93:64:1e:a8:d3:09:1b:66:5e:26:24:31: df:c8:d4:bd:b5:7b:1d:49:dd:20:49:10:c1:0d:eb: b5:b7:4c:38:8f:9d:fe:7d:75:ca:3c:65:93:2e:a9: 27:f9:f5:63:d9:3b:94:66:7f:aa:ea:cb:6c:fe:86: fd:a4:ef:00:57:01:79:47:58:d0:1e:eb:6a:f5:c1: e4:80:c5:37:ca:83:1a:f1:66:36:63:b2:65:c6:5f: 8c:c3:88:49:ee:4c:7c:8d:8f:c3:39:4e:a4:1c:2e: cb:2e:56:5b:52:c4:60:d3:4e:e4:0f:a0:a3:bc:43: 56:f4:c1:ed:4e:c0:69:c2:28:0a:3a:2e:88:eb:58: 87:ff:02:f0:32:d3:95:de:59:ac:e4:33:77:b2:22: fc:8a:ec:04:e5:74:e3:75:96:ba:a3:d7:fd:b0:07: a7:df:67:12:62:a8:df:1a:e1:d6:f4:41:27:eb:70: 30:9d:43:de:e9:af:25:33:7c:58:82:27:e6:14:6a: 3a:23:70:bd:c9:1e:0a:19:c9:58:2e:50:51:97:6e: a6:c9:3b:48:d3:2f:23:e0:f1:ca:3d:a8:c3:fb:91: d0:04:25:0f:e5:54:43:32:33:55:81:f5:a2:95:a7: d6:a1:c4:d8:e5:14:15:95:4c:a8:c8:06:e8:37:ce: f7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:28:60:AA:6E:56:64:01:BD:41:F8:79:9E:C9:48:9E:41:B2:03:FE X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:4c:ca:6b:3f:fa:a3:48:46:78:2d:e6:f8:f2:a0:1c:7f:de: e0:66:f7:71:5b:e7:97:29:5f:5d:ec:24:19:0a:b5:44:72:66: 96:40:46:8d:e4:3f:df:da:02:b8:d5:44:d8:d1:f5:c8:3f:70: ad:ab:57:bf:c3:c7:f8:fb:17:00:cf:a9:06:c4:0b:2f:22:08: 06:72:09:73:d8:64:23:5a:5b:40:ba:b5:05:02:9a:cd:e1:9f: 58:d8:db:26:bd:b3:58:ff:76:45:15:a1:07:b0:8e:ea:fc:1f: 20:6d:5f:fb:d6:87:4b:58:e0:b8:8a:8d:1a:d5:2d:8f:6b:77: da:e3:ba:af:f9:d3:e8:3a:57:3d:69:d3:ee:db:2a:36:e4:a0: c6:88:2e:75:e5:1e:fa:4f:a9:c5:0b:2b:1d:99:49:5f:5b:e5: 3d:e8:c1:b2:90:1a:9f:3a:94:ad:fe:a9:50:cc:9c:8f:7d:a3: d7:f1:66:39:72:3e:41:8e:88:ff:06:64:df:c4:7d:aa:c4:b7: 5b:f9:57:28:31:be:95:f9:4a:14:f2:66:ce:c0:7d:ec:d8:b0: 8c:76:78:e5:ca:e2:29:0d:fc:02:f4:c0:f7:c0:49:57:de:9e: 98:90:2e:4f:70:68:42:ae:56:e6:16:3e:96:85:50:2e:3e:3a: d2:c0:db:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUwODIyMTc0NzM3WhcNMjUwODI5MTc0NzM3WjAYMRYwFAYD VQQDEw02OGE4YWQzOS05ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xWTZB6o0wkbZl4mJDHfyNS9tXsdSd0gSRDBDeu1t0w4j53+fXXKPGWTLqkn +fVj2TuUZn+q6sts/ob9pO8AVwF5R1jQHutq9cHkgMU3yoMa8WY2Y7Jlxl+Mw4hJ 7kx8jY/DOU6kHC7LLlZbUsRg007kD6CjvENW9MHtTsBpwigKOi6I61iH/wLwMtOV 3lms5DN3siL8iuwE5XTjdZa6o9f9sAen32cSYqjfGuHW9EEn63AwnUPe6a8lM3xY gifmFGo6I3C9yR4KGclYLlBRl26myTtI0y8j4PHKPajD+5HQBCUP5VRDMjNVgfWi lafWocTY5RQVlUyoyAboN873qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkoYKpu VmQBvUH4eZ7JSJ5BsgP+MB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUI0RS9BMjg0M0MwODk3MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlS aFVxSWVzcVdFTHhXQ3VjSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADTMprP/qjSEZ4Leb48qAcf97gZvdxW+eXKV9d7CQZCrVEcmaWQEaN 5D/f2gK41UTY0fXIP3Ctq1e/w8f4+xcAz6kGxAsvIggGcglz2GQjWltAurUFAprN 4Z9Y2NsmvbNY/3ZFFaEHsI7q/B8gbV/71odLWOC4io0a1S2Pa3fa47qv+dPoOlc9 adPu2yo25KDGiC515R76T6nFCysdmUlfW+U96MGykBqfOpSt/qlQzJyPfaPX8WY5 cj5Bjoj/BmTfxH2qxLdb+VcoMb6V+UoU8mbOwH3s2LCMdnjlyuIpDfwC9MD3wElX 3p6YkC5PcGhCrlbmFj6WhVAuPjrSwNud -----END CERTIFICATE-----Generated at Sat Aug 23 20:17:17 2025 by rpki-client