$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: m1vNTyoM4NMrNHm7sbM1AVgYzlXMr6Rjq6GOtIHlUAo= Subject key identifier: 75:A9:CD:8F:FE:89:88:FB:F5:AD:92:86:46:8D:42:C5:4D:E1:8B:A0 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 142D Signing time: Fri 22 Aug 2025 17:02:42 +0000 Manifest this update: Fri 22 Aug 2025 17:02:41 +0000 Manifest next update: Fri 29 Aug 2025 17:02:41 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: 0IQs8G3F45fBje5ipApuDzYdYE+1WRpuVpvBcfpWx3s=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5174 (0x1436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Aug 22 17:02:41 2025 GMT Not After : Aug 29 17:02:41 2025 GMT Subject: CN=68a8a2b1-dfa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b2:d6:b9:28:fe:45:e8:8b:9a:4b:23:58:05: 30:39:93:a1:97:98:78:df:a6:10:3e:98:a3:bb:3e: e2:0b:5f:a6:a4:23:69:42:df:ab:15:75:c5:d3:b4: b1:2f:fb:2f:1b:d0:e5:2b:70:81:94:3d:f7:47:85: 2e:f0:a0:24:18:09:0e:96:56:af:fd:47:fd:fa:fd: a2:c7:75:ae:8f:19:ab:52:8e:77:2c:d3:a9:4a:0c: 65:2b:c9:4d:f1:1e:3b:22:45:d7:df:ad:b9:99:14: ac:74:6e:3c:14:44:45:18:2d:fb:6d:24:46:52:68: 95:6b:bb:db:ca:d6:e6:de:ee:28:f5:b5:b0:c6:90: 8f:42:8b:6c:d7:2b:6f:04:8f:e5:52:be:16:a4:54: fd:d5:da:0b:9c:72:52:18:78:08:ff:37:9f:1d:ad: 64:83:73:a7:ae:ce:ed:f7:8f:ce:36:2e:9b:e1:10: 36:95:e3:8a:cb:d9:56:d2:e4:2e:42:1a:a1:85:98: 47:c3:b5:29:ce:d3:5f:e2:d0:e9:d2:06:28:d2:a5: be:75:39:d6:bc:97:00:7d:cf:f0:58:17:30:6a:42: 6d:dc:e2:c4:41:47:bf:43:65:11:59:81:f4:8b:36: 59:e6:95:d4:4b:71:0a:b6:7f:1b:26:05:9f:d7:a9: 62:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A9:CD:8F:FE:89:88:FB:F5:AD:92:86:46:8D:42:C5:4D:E1:8B:A0 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:9d:8b:5c:ee:7f:b5:2c:85:82:a3:78:76:61:ed:6a:6d:51: 25:53:3c:b6:a5:a8:e2:a0:6e:79:9d:77:b1:f7:32:f0:8d:75: 91:1c:0c:92:39:39:d5:fd:ed:0a:77:5e:8d:b5:4c:b7:f1:08: 24:dd:89:73:66:c6:65:ee:e2:0b:bb:0a:32:77:b2:32:fe:11: dc:fa:71:da:5c:74:69:8b:6c:cd:ba:75:a7:4c:57:42:9f:56: a0:79:fa:5f:00:8a:fa:ca:ee:e5:3c:d7:34:41:d6:b0:d6:e9: 04:1c:1b:98:38:ef:d0:25:1e:09:c1:b3:dd:53:be:8f:75:27: 84:7b:a6:75:79:7c:92:7d:80:88:62:20:86:6b:ba:66:1a:f0: a5:3b:f9:3e:56:5c:fb:25:e7:34:f6:de:d2:f9:98:e9:27:47: 48:10:97:f1:d5:ec:3d:53:72:51:ec:b8:ef:d0:f2:9f:1f:04: 25:1e:43:76:38:52:ad:bf:8b:34:3a:a2:38:91:b0:6c:70:fd: 58:9d:ab:6a:05:6a:07:ec:3a:05:69:72:21:ad:c8:b3:6f:c7: ca:ce:00:1c:f8:c2:b2:52:35:b9:4e:e5:7e:3f:75:e3:d0:a4: dc:2e:58:15:da:1f:ac:07:b5:c2:fc:7f:7a:64:0a:f7:02:00: 06:61:d5:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwODIyMTcwMjQxWhcNMjUwODI5MTcwMjQxWjAYMRYwFAYD VQQDEw02OGE4YTJiMS1kZmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bLWuSj+ReiLmksjWAUwOZOhl5h436YQPpijuz7iC1+mpCNpQt+rFXXF07Sx L/svG9DlK3CBlD33R4Uu8KAkGAkOllav/Uf9+v2ix3WujxmrUo53LNOpSgxlK8lN 8R47IkXX3625mRSsdG48FERFGC37bSRGUmiVa7vbytbm3u4o9bWwxpCPQots1ytv BI/lUr4WpFT91doLnHJSGHgI/zefHa1kg3Onrs7t94/ONi6b4RA2leOKy9lW0uQu QhqhhZhHw7UpztNf4tDp0gYo0qW+dTnWvJcAfc/wWBcwakJt3OLEQUe/Q2URWYH0 izZZ5pXUS3EKtn8bJgWf16liOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWpzY/+ iYj79a2ShkaNQsVN4YugMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgnYtc7n+1LIWCo3h2Ye1qbVElUzy2pajioG55nXex9zLwjXWRHAyS OTnV/e0Kd16NtUy38Qgk3YlzZsZl7uILuwoyd7Iy/hHc+nHaXHRpi2zNunWnTFdC n1agefpfAIr6yu7lPNc0Qdaw1ukEHBuYOO/QJR4JwbPdU76PdSeEe6Z1eXySfYCI YiCGa7pmGvClO/k+Vlz7Jec09t7S+ZjpJ0dIEJfx1ew9U3JR7Ljv0PKfHwQlHkN2 OFKtv4s0OqI4kbBscP1YnatqBWoH7DoFaXIhrcizb8fKzgAc+MKyUjW5TuV+P3Xj 0KTcLlgV2h+sB7XC/H96ZAr3AgAGYdVn -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:32 2025 by rpki-client