$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: 4zInHrI90Q0rA7TKDzhwESlnWAfyr1G201uw+ufvZk4= Subject key identifier: 61:59:57:7F:4F:3D:5F:9C:5E:65:8A:13:B5:21:61:D0:9E:66:F0:E5 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 141C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 1413 Signing time: Wed 02 Jul 2025 17:06:49 +0000 Manifest this update: Wed 02 Jul 2025 17:06:49 +0000 Manifest next update: Wed 09 Jul 2025 17:06:49 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: impcJfo0drjXc0dL5/3JK1Yy8J9oH15WhygCikJoJ2c=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5148 (0x141c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Jul 2 17:06:49 2025 GMT Not After : Jul 9 17:06:49 2025 GMT Subject: CN=68656729-5452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:02:40:28:c5:33:1a:7f:70:fe:81:6d:eb:65: 6f:89:02:ac:72:59:4b:6d:e8:83:42:63:77:e4:0d: 97:42:4a:a7:94:5b:a7:20:0e:7b:b0:f4:99:65:29: 59:70:6f:3f:9d:1d:6a:cf:5b:3a:7c:92:b7:ee:2f: d5:e8:77:97:7a:e6:1f:82:18:0e:11:26:1c:71:0f: c1:1f:ff:8f:c3:a7:e8:4e:35:45:ff:4b:49:f5:64: 78:58:b2:e8:4f:c3:0c:e7:29:a8:98:a3:fa:02:62: 51:ec:0e:b0:c7:b8:6b:c0:f1:a8:70:7d:0d:60:17: 2d:8c:a4:d2:71:ba:b1:60:42:15:fa:a5:4b:51:2f: 3a:aa:04:8a:30:83:e0:bd:5c:94:b8:8f:e1:43:30: 7c:81:36:f9:fd:dd:a5:02:f7:de:ae:1c:26:dc:42: 5f:9f:e0:eb:2e:03:0a:1d:61:4e:d9:3d:1b:fd:85: c9:6e:bc:6b:eb:42:2f:13:86:38:89:24:c4:cb:30: fb:df:82:e1:d9:9b:28:f3:6a:7d:86:0f:22:e6:47: f3:d3:6e:d0:a8:1c:8c:63:fa:49:9e:5b:86:ec:d3: b5:e4:09:f2:1b:b4:8b:b2:5c:67:11:de:6f:37:70: 7f:ed:d9:7a:f7:85:87:39:68:e9:cf:e0:56:88:25: 0d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:59:57:7F:4F:3D:5F:9C:5E:65:8A:13:B5:21:61:D0:9E:66:F0:E5 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:09:5e:de:a6:9c:54:7a:2c:12:9d:42:8f:80:85:b7:d8:eb: e1:cb:d9:ed:16:8b:91:80:1b:aa:19:27:28:9a:f9:7a:f8:ed: 04:33:92:27:93:20:4a:32:3f:66:b4:10:21:e7:fc:e8:1f:71: af:cf:87:36:59:fa:82:89:03:4f:72:1f:9d:37:5a:20:58:83: 3e:7f:14:20:62:43:12:6b:b2:bf:1c:12:35:ce:24:20:9a:14: c3:e9:e1:c3:be:e8:53:48:77:cd:87:08:6b:c3:d5:8b:bb:8c: 24:13:44:ce:b9:cb:8e:80:13:77:56:fe:08:8e:5e:cd:52:a2: 72:74:ae:17:2d:a1:c6:d0:ef:60:1a:bf:27:61:dd:07:4a:10: ab:f1:10:77:a1:36:d3:fb:46:7e:54:c4:2e:7d:dc:97:bc:c2: 86:fb:b3:81:c2:01:b0:56:55:65:64:bd:0a:6d:ee:5f:93:47: ab:92:b2:54:84:a2:e2:4f:65:7e:b0:13:86:00:57:e0:fa:c7: d0:76:64:4c:fa:57:86:98:d6:7c:85:03:9c:bd:26:a1:5a:ee: d5:f6:69:b0:b8:24:93:1c:17:8a:01:17:2f:04:7d:5b:46:ff: 28:0a:f4:10:6b:c8:ba:69:21:a0:74:6f:01:95:48:52:3f:95: 5d:6d:7b:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwNzAyMTcwNjQ5WhcNMjUwNzA5MTcwNjQ5WjAYMRYwFAYD VQQDEw02ODY1NjcyOS01NDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gJAKMUzGn9w/oFt62VviQKscllLbeiDQmN35A2XQkqnlFunIA57sPSZZSlZ cG8/nR1qz1s6fJK37i/V6HeXeuYfghgOESYccQ/BH/+Pw6foTjVF/0tJ9WR4WLLo T8MM5ymomKP6AmJR7A6wx7hrwPGocH0NYBctjKTScbqxYEIV+qVLUS86qgSKMIPg vVyUuI/hQzB8gTb5/d2lAvferhwm3EJfn+DrLgMKHWFO2T0b/YXJbrxr60IvE4Y4 iSTEyzD734Lh2Zso82p9hg8i5kfz027QqByMY/pJnluG7NO15AnyG7SLslxnEd5v N3B/7dl694WHOWjpz+BWiCUNOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFZV39P PV+cXmWKE7UhYdCeZvDlMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0CV7eppxUeiwSnUKPgIW32Ovhy9ntFouRgBuqGScomvl6+O0EM5In kyBKMj9mtBAh5/zoH3Gvz4c2WfqCiQNPch+dN1ogWIM+fxQgYkMSa7K/HBI1ziQg mhTD6eHDvuhTSHfNhwhrw9WLu4wkE0TOucuOgBN3Vv4Ijl7NUqJydK4XLaHG0O9g Gr8nYd0HShCr8RB3oTbT+0Z+VMQufdyXvMKG+7OBwgGwVlVlZL0Kbe5fk0erkrJU hKLiT2V+sBOGAFfg+sfQdmRM+leGmNZ8hQOcvSahWu7V9mmwuCSTHBeKARcvBH1b Rv8oCvQQa8i6aSGgdG8BlUhSP5VdbXvc -----END CERTIFICATE-----Generated at Thu Jul 3 09:11:17 2025 by rpki-client