$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: cdvVu+rmJJMJQEFY73Jb95Q3zMri9vKjjNZ9iQTTkLU= Subject key identifier: 29:56:E6:77:BC:5B:4B:B3:04:31:E2:E8:A2:BB:13:4D:FB:17:3C:A8 Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 74 Signing time: Sat 23 Aug 2025 07:03:17 +0000 Manifest this update: Sat 23 Aug 2025 07:03:16 +0000 Manifest next update: Sat 30 Aug 2025 07:03:16 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: gcKEIQv0rvvdHecRyEUL1mxYyicuw0IIm7+WWCUD22k=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Aug 23 07:03:16 2025 GMT Not After : Aug 30 07:03:16 2025 GMT Subject: CN=68a967b4-efa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:d9:ad:2a:15:5b:a3:3e:9a:de:0c:0e:33: 79:8b:78:a3:36:6d:23:3a:a4:ed:f0:73:1b:b5:d8: cc:47:aa:15:3a:09:7c:61:a5:46:5d:cb:e6:77:63: d2:ca:75:7c:65:88:7a:38:42:b1:ef:25:b0:82:85: 6f:9e:da:e0:48:92:e6:18:96:4d:71:e6:25:72:42: b3:53:d8:40:10:f9:d6:cf:9e:b7:3d:ad:d4:b0:84: c2:59:2c:06:6d:9a:cd:69:77:7d:bb:b0:35:42:a3: 28:b1:07:7e:8d:27:10:7f:5c:a3:a0:78:56:73:31: 0f:f0:89:d0:14:03:05:34:18:b9:aa:97:48:e6:2c: 77:0e:63:41:2a:12:6a:94:d7:67:0a:bb:a4:84:33: 91:b5:1e:bf:73:3d:4e:08:5f:67:e8:6a:19:1c:71: 40:1a:5e:ca:bc:95:bb:54:37:b2:81:38:ce:06:08: a1:49:07:6a:20:88:23:cd:d8:0f:c4:38:60:f4:42: 80:86:09:9c:03:7f:2c:be:53:bd:78:ca:5d:e5:4e: ea:c9:6c:fb:8f:45:e2:ee:f5:3d:72:d8:44:79:01: 92:bc:71:80:de:2e:ea:13:59:03:b6:47:d7:7c:93: 57:e1:79:15:65:58:93:5b:c4:e2:78:d3:42:40:da: 4c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:56:E6:77:BC:5B:4B:B3:04:31:E2:E8:A2:BB:13:4D:FB:17:3C:A8 X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:53:11:a1:5f:e1:a5:4b:58:45:66:c5:18:31:fc:20:39:b4: f3:ac:5a:44:58:42:9f:6c:f1:01:27:31:6f:6a:56:5f:b6:f0: 36:06:50:06:88:2b:d7:8c:7e:cb:b4:91:80:95:5b:e3:41:29: 66:81:48:fe:35:3b:9e:48:e4:62:95:17:02:ee:b5:0d:1f:96: 32:0e:50:c2:8e:10:77:dc:83:45:77:5d:ab:fa:0c:7f:a7:f4: 6c:02:5a:10:ba:d5:71:62:9f:e3:02:14:d6:b1:f0:ce:d9:73: 37:8e:73:6c:27:fc:bf:0d:c5:92:0d:8b:ff:d5:e6:48:91:0a: ae:35:15:22:6d:87:d2:ad:41:c3:b6:95:68:03:e2:af:b4:5e: c4:f0:ba:0c:a6:01:b5:46:b4:97:d3:2c:42:1e:4f:4f:f3:b1: d2:c1:b9:27:0e:6b:ad:04:71:52:11:36:ec:7a:50:0f:3e:e5: 67:fb:5f:13:6f:1a:c6:cb:63:20:8b:6c:55:a2:35:82:a1:26: 58:09:63:de:39:6b:bd:b0:68:56:8a:6b:69:90:7b:2e:bf:b1: 39:93:dc:24:a5:0d:4d:89:cd:e2:f5:4b:ca:4f:e7:b7:b3:c7: b6:18:03:81:01:32:81:b7:20:56:c1:73:fc:3f:62:82:f6:5c: 16:b1:e4:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA4MjMwNzAzMTZaFw0yNTA4MzAwNzAzMTZaMBgxFjAUBgNV BAMTDTY4YTk2N2I0LWVmYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7ldmtKhVboz6a3gwOM3mLeKM2bSM6pO3wcxu12MxHqhU6CXxhpUZdy+Z3Y9LK dXxliHo4QrHvJbCChW+e2uBIkuYYlk1x5iVyQrNT2EAQ+dbPnrc9rdSwhMJZLAZt ms1pd327sDVCoyixB36NJxB/XKOgeFZzMQ/widAUAwU0GLmql0jmLHcOY0EqEmqU 12cKu6SEM5G1Hr9zPU4IX2foahkccUAaXsq8lbtUN7KBOM4GCKFJB2ogiCPN2A/E OGD0QoCGCZwDfyy+U714yl3lTurJbPuPReLu9T1y2ER5AZK8cYDeLuoTWQO2R9d8 k1fheRVlWJNbxOJ400JA2kwhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKVbmd7xb S7MEMeLoorsTTfsXPKgwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZTEaFf4aVLWEVmxRgx/CA5tPOsWkRYQp9s8QEnMW9qVl+28DYGUAaI K9eMfsu0kYCVW+NBKWaBSP41O55I5GKVFwLutQ0fljIOUMKOEHfcg0V3Xav6DH+n 9GwCWhC61XFin+MCFNax8M7ZczeOc2wn/L8NxZINi//V5kiRCq41FSJth9KtQcO2 lWgD4q+0XsTwugymAbVGtJfTLEIeT0/zsdLBuScOa60EcVIRNux6UA8+5Wf7XxNv GsbLYyCLbFWiNYKhJlgJY945a72waFaKa2mQey6/sTmT3CSlDU2JzeL1S8pP57ez x7YYA4EBMoG3IFbBc/w/YoL2XBax5FQ= -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:17 2025 by rpki-client