$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: YQmrty7Bu9H3+JaoFgwIfN6i/WrV6alhpCuHy3oyrSw= Subject key identifier: DA:9C:35:BF:30:13:40:30:C7:12:C9:C3:9C:3F:D9:4C:38:DD:1B:5B Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02E1 Signing time: Sat 05 Jul 2025 01:52:47 +0000 Manifest this update: Sat 05 Jul 2025 01:52:46 +0000 Manifest next update: Sat 12 Jul 2025 01:52:46 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: 6618ohmLa0+ZUII85ygaEanz8/UpzWc2bOoJcpY4lSY=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Jul 5 01:52:46 2025 GMT Not After : Jul 12 01:52:46 2025 GMT Subject: CN=6868856e-c22f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:df:eb:58:d6:f0:be:d5:9c:8b:ed:f9:fe:9b: 5d:e3:6f:8b:62:b5:e7:3e:0e:19:14:65:17:b0:a5: 9f:00:b7:4b:99:ad:1b:c7:59:69:99:9e:7f:b0:33: 14:34:e1:15:8b:80:01:5c:0f:5f:84:0f:02:b6:55: 54:78:e0:ff:ec:70:d2:65:55:e6:24:e9:cb:ee:b8: e6:74:52:65:6a:4d:36:8e:bb:51:f9:aa:cd:6e:b9: 2c:73:db:98:25:04:0b:87:09:aa:13:86:dc:fb:df: ff:a2:ed:61:c8:a4:ab:34:df:82:b3:47:9d:6f:a0: 2f:1a:3b:e4:67:81:c8:93:2c:e2:68:fc:4b:c3:7a: 2e:5d:4b:a0:ad:a9:3d:d4:c3:58:ac:fa:2b:6a:e4: 5c:31:12:fe:ca:ae:dd:61:26:97:2c:06:c0:ea:66: c0:fb:91:ea:ca:88:9a:6e:4f:5a:a7:17:a6:bb:dd: 40:3e:6b:24:82:67:56:7f:49:6b:48:bb:0a:34:c5: 09:b2:9e:53:8f:45:72:46:05:57:49:13:3a:13:51: b3:e5:a7:52:35:db:07:54:e7:5a:7d:bd:70:02:3b: eb:f6:c9:2a:54:1b:c5:52:fb:a5:0b:6c:72:f1:e0: f8:34:98:af:1e:93:1d:c3:a5:b9:9d:fd:bf:6d:55: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:9C:35:BF:30:13:40:30:C7:12:C9:C3:9C:3F:D9:4C:38:DD:1B:5B X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:3b:8a:d9:b4:61:bc:79:f8:02:e4:4b:93:36:dd:7c:ed:f3: b5:cb:da:02:ad:41:02:98:b8:50:7d:c5:b2:45:a0:2d:70:9d: 96:84:82:14:ad:1f:07:13:6c:fa:72:c6:98:3b:34:d0:27:31: 41:6e:ae:27:07:74:81:23:3a:3b:6a:2d:b9:20:1d:98:03:2a: eb:9a:77:3d:3a:64:96:2f:51:30:68:ba:48:01:3a:2f:f3:d5: b1:07:2b:c3:ab:37:ca:7b:f8:0b:af:da:0e:82:a9:09:a3:51: d0:b6:6d:aa:a0:be:3f:36:98:7c:8f:61:cf:e8:f8:03:69:5c: e2:45:66:eb:22:f0:e9:d2:08:79:c7:bf:9e:b6:4b:ae:08:fc: c1:f8:85:c0:5d:21:21:27:6b:d8:12:0c:82:cf:e3:03:97:8f: 3b:0f:0b:df:0a:96:1d:a1:fe:70:eb:86:99:59:06:a1:1a:a3: ca:1b:b6:72:fd:3c:6f:5f:6a:48:0d:2b:10:c2:4d:52:f2:e4: 7c:22:62:c8:dc:fe:4b:d0:08:b1:94:0b:3c:b0:91:d9:ea:e6: 8f:59:c8:2d:e2:c6:cb:f4:c2:a5:84:13:ba:28:0e:91:19:c1: 9f:77:89:7c:a5:54:bd:06:08:9c:78:32:a7:58:85:65:19:2b: 24:47:a1:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwNzA1MDE1MjQ2WhcNMjUwNzEyMDE1MjQ2WjAYMRYwFAYD VQQDEw02ODY4ODU2ZS1jMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9/rWNbwvtWci+35/ptd42+LYrXnPg4ZFGUXsKWfALdLma0bx1lpmZ5/sDMU NOEVi4ABXA9fhA8CtlVUeOD/7HDSZVXmJOnL7rjmdFJlak02jrtR+arNbrksc9uY JQQLhwmqE4bc+9//ou1hyKSrNN+Cs0edb6AvGjvkZ4HIkyziaPxLw3ouXUugrak9 1MNYrPorauRcMRL+yq7dYSaXLAbA6mbA+5Hqyoiabk9apxemu91APmskgmdWf0lr SLsKNMUJsp5Tj0VyRgVXSRM6E1Gz5adSNdsHVOdafb1wAjvr9skqVBvFUvulC2xy 8eD4NJivHpMdw6W5nf2/bVVH3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqcNb8w E0AwxxLJw5w/2Uw43RtbMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASO4rZtGG8efgC5EuTNt187fO1y9oCrUECmLhQfcWyRaAtcJ2WhIIU rR8HE2z6csaYOzTQJzFBbq4nB3SBIzo7ai25IB2YAyrrmnc9OmSWL1EwaLpIATov 89WxByvDqzfKe/gLr9oOgqkJo1HQtm2qoL4/Nph8j2HP6PgDaVziRWbrIvDp0gh5 x7+etkuuCPzB+IXAXSEhJ2vYEgyCz+MDl487DwvfCpYdof5w64aZWQahGqPKG7Zy /TxvX2pIDSsQwk1S8uR8ImLI3P5L0AixlAs8sJHZ6uaPWcgt4sbL9MKlhBO6KA6R GcGfd4l8pVS9BgiceDKnWIVlGSskR6F/ -----END CERTIFICATE-----Generated at Sat Jul 5 11:02:10 2025 by rpki-client