$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: SE1Kh4QnrZRcxr2NkRBRWUXY+x982vXOyBodZIlXO9E= Subject key identifier: D9:BA:6A:5B:B7:B9:DB:CB:05:6C:5B:B2:A3:D7:4E:06:4D:0F:C3:E1 Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02FA Signing time: Sat 23 Aug 2025 01:29:52 +0000 Manifest this update: Sat 23 Aug 2025 01:29:51 +0000 Manifest next update: Sat 30 Aug 2025 01:29:51 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: R0eBf26ZKIxSFGL93Rn5SSAZf+NcBhcjSGoZyZmCGLY=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Aug 23 01:29:51 2025 GMT Not After : Aug 30 01:29:51 2025 GMT Subject: CN=68a9198f-8e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:19:82:88:89:f3:59:2f:a0:76:f4:73:a2:9a: 04:fd:e4:9b:7b:c3:de:9e:a5:2b:64:b2:29:e1:74: 28:7b:2d:5f:ea:a3:a7:33:4e:7e:8f:82:55:6a:e8: 87:61:d0:b9:5b:57:a9:60:11:bb:81:70:88:ed:ed: f3:9e:51:1a:6e:d4:8d:fe:6f:50:dc:88:15:97:02: 73:e8:be:71:78:d9:9b:22:bd:fd:fd:7d:13:f1:1a: ac:ef:93:07:fc:1e:de:11:b6:6a:7d:50:5b:2a:a2: 5f:b4:fb:73:74:62:fb:b5:e2:88:63:e8:92:ca:04: ea:70:17:c3:37:c5:1c:d3:cc:6b:ab:02:44:64:1e: 82:52:a0:f8:88:5b:5c:eb:cd:4e:a0:be:86:e4:c7: e9:2d:bd:62:12:38:cc:93:94:b0:18:7b:3f:f7:36: 44:a9:35:7a:5b:55:68:d2:b4:36:e0:2a:e9:d6:fe: 7b:3e:d4:f0:5e:6a:3e:3a:01:2d:bd:83:6a:8a:35: c9:be:fb:4f:f6:3b:84:1b:32:b7:b8:cd:79:b0:2e: ef:d7:a8:21:68:dd:32:35:29:9f:e6:7a:d7:15:73: e4:b7:00:97:b0:59:16:d5:71:30:82:ac:b0:54:01: 00:13:d1:66:b9:dd:86:bc:b8:aa:e9:46:e2:4b:ee: cd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BA:6A:5B:B7:B9:DB:CB:05:6C:5B:B2:A3:D7:4E:06:4D:0F:C3:E1 X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:71:a3:b1:ef:c5:3b:b1:41:41:14:a3:d5:46:63:ae:24:fd: 5c:57:82:23:51:53:00:b3:43:d1:25:a9:7e:30:9a:6c:e9:e6: e4:43:0b:fc:d5:12:04:5c:aa:d7:2b:c0:b9:2c:e8:e1:d6:35: 94:2c:ea:63:50:d3:15:c2:9c:52:9e:76:38:93:1d:a8:b7:1c: 22:bc:85:5d:32:b4:dd:fc:7b:88:7d:8f:e3:9a:28:70:1b:e2: bb:08:95:df:fc:c1:51:7d:6f:3a:01:c2:da:fd:04:9e:31:79: 62:1f:26:9e:db:2b:19:21:c5:78:ea:11:54:79:b6:9f:b9:d1: d8:8c:52:54:65:2a:f8:ac:2e:bc:2b:bd:6d:f3:97:e6:78:c9: b3:73:11:be:b2:30:17:89:c9:39:ab:18:38:3c:d9:de:2c:2b: 07:8e:d4:a4:08:bb:da:ef:75:85:4f:4a:aa:64:c3:06:db:96: 6f:77:c2:2b:86:4f:60:ad:43:6e:1e:df:2d:55:ef:b1:6d:4b: 69:7f:ba:d7:09:6a:60:db:69:66:14:0c:ac:ed:27:95:c2:ce: 6b:aa:2a:40:86:ef:b1:62:bf:eb:78:79:d0:9d:57:d0:8c:43: 27:77:5d:7c:0f:9f:89:38:77:c4:d4:e1:4f:46:b7:78:7e:31: ea:7f:fe:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwODIzMDEyOTUxWhcNMjUwODMwMDEyOTUxWjAYMRYwFAYD VQQDEw02OGE5MTk4Zi04ZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRmCiInzWS+gdvRzopoE/eSbe8PenqUrZLIp4XQoey1f6qOnM05+j4JVauiH YdC5W1epYBG7gXCI7e3znlEabtSN/m9Q3IgVlwJz6L5xeNmbIr39/X0T8Rqs75MH /B7eEbZqfVBbKqJftPtzdGL7teKIY+iSygTqcBfDN8Uc08xrqwJEZB6CUqD4iFtc 681OoL6G5MfpLb1iEjjMk5SwGHs/9zZEqTV6W1Vo0rQ24Crp1v57PtTwXmo+OgEt vYNqijXJvvtP9juEGzK3uM15sC7v16ghaN0yNSmf5nrXFXPktwCXsFkW1XEwgqyw VAEAE9Fmud2GvLiq6UbiS+7NRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm6alu3 udvLBWxbsqPXTgZND8PhMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCicaOx78U7sUFBFKPVRmOuJP1cV4IjUVMAs0PRJal+MJps6ebkQwv8 1RIEXKrXK8C5LOjh1jWULOpjUNMVwpxSnnY4kx2otxwivIVdMrTd/HuIfY/jmihw G+K7CJXf/MFRfW86AcLa/QSeMXliHyae2ysZIcV46hFUebafudHYjFJUZSr4rC68 K71t85fmeMmzcxG+sjAXick5qxg4PNneLCsHjtSkCLva73WFT0qqZMMG25Zvd8Ir hk9grUNuHt8tVe+xbUtpf7rXCWpg22lmFAys7SeVws5rqipAhu+xYr/reHnQnVfQ jEMnd118D5+JOHfE1OFPRrd4fjHqf/7C -----END CERTIFICATE-----Generated at Sat Aug 23 23:53:56 2025 by rpki-client