$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft File: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft (raw, json) Hash identifier: EI7+O3novoTl8CwuGVLdN7Jc6s4xDjcr5/BhjPZPxg0= Subject key identifier: 35:35:A6:44:B0:EA:79:A9:65:2B:AA:F0:2A:0C:A2:E2:93:05:14:76 Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 119D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft Manifest number: 1188 Signing time: Sat 28 Jun 2025 17:04:19 +0000 Manifest this update: Sat 28 Jun 2025 17:04:18 +0000 Manifest next update: Sat 05 Jul 2025 17:04:18 +0000 Files and hashes: 1: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl (hash: noI9GbaBqdnmj0Lsa7iyi/h5Efp+dTxtnXMBqHpPMEU=) 2: B58038B838FF11EAB8D91529C4F9AE02.roa (hash: IU4SG15xY5pa/IoW3wwDCZ3o/ZxiWKB5Df2NzHDteOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4509 (0x119d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: Jun 28 17:04:18 2025 GMT Not After : Jul 5 17:04:18 2025 GMT Subject: CN=68602093-645d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c7:f2:05:84:5a:b4:a3:ed:a8:8e:98:fa:c0: 67:12:99:20:f5:0b:d2:6e:d4:f0:d4:19:b5:f9:cf: 6e:bb:62:e7:46:15:e5:f7:dd:fa:17:31:eb:09:c3: c7:ce:83:f2:a3:34:12:2e:ad:f4:61:4d:11:d2:94: c5:5e:00:07:f4:6a:4e:6d:da:06:bf:48:f1:3b:55: 2d:41:d3:2e:c6:54:0a:6c:29:fd:6c:ae:8d:29:36: 03:a9:39:b4:9f:95:16:d0:3f:f1:b1:ed:bd:b1:26: d5:7e:67:9b:28:5b:ac:f9:6d:a3:64:e4:3b:28:58: 59:50:e1:92:c5:0d:89:d0:9a:30:b4:fa:34:66:06: 67:42:3f:bd:fd:56:b6:ec:85:91:f9:25:09:66:06: 32:29:dd:ae:63:c4:22:0d:ce:35:9f:72:f8:36:1b: 0b:49:f1:f7:05:8c:f1:52:52:65:3a:7f:8f:48:2c: 65:6a:0d:10:ed:56:6e:ef:25:e1:71:1a:bf:62:6b: 4e:8c:83:5f:43:c2:5e:9c:9a:55:a6:3e:26:39:d0: 5b:fa:8e:c4:26:9c:68:a4:f5:76:9c:97:e9:23:57: 2b:2f:42:cd:66:04:b4:06:25:7d:56:eb:65:10:d4: 23:a3:de:15:4b:ca:6b:29:72:ba:d5:32:0e:ab:03: 66:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:35:A6:44:B0:EA:79:A9:65:2B:AA:F0:2A:0C:A2:E2:93:05:14:76 X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:49:fe:b2:5d:4b:88:df:60:aa:83:5d:de:84:46:59:71:2d: d2:f6:61:82:8e:cf:c9:a0:a7:95:f0:02:49:9c:2e:8c:78:14: 7a:d3:5d:28:a8:f9:3c:3a:95:2a:12:a8:b1:d8:a3:1b:fc:bd: 66:d7:d4:3e:b5:fd:8b:1d:6b:79:6a:04:b7:44:f1:f8:93:81: c6:6a:86:e9:79:24:3e:5b:55:9d:d9:26:18:09:7b:24:cc:f4: 73:29:2d:ff:0c:0c:95:d1:a1:db:c4:a3:1a:b8:42:85:9c:a1: 73:3e:b1:d0:cf:b7:66:20:ab:74:06:80:e8:68:55:b8:cc:e5: 71:ec:6d:f4:83:53:5f:05:07:92:cc:f2:3b:d3:dd:8e:40:4d: e5:e4:ef:1f:98:3d:80:6f:0f:df:23:d8:33:ea:17:4a:82:ac: 76:be:c7:38:d1:65:d0:c9:b2:a2:57:5f:d5:e2:56:19:0a:88: ea:33:ef:98:7a:7e:40:e7:64:a6:0b:fa:41:19:5e:4d:09:1d: e0:0e:ba:48:76:be:9a:6a:79:a7:a3:b6:a9:53:a4:9c:d8:a7: 6a:ec:58:b8:09:d2:95:3d:ca:0b:87:b9:7d:0b:5d:1c:34:4e: fe:5f:9e:dc:a4:ee:1b:66:0c:b8:e6:03:79:87:15:79:94:00: 4e:7a:f5:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjUwNjI4MTcwNDE4WhcNMjUwNzA1MTcwNDE4WjAYMRYwFAYD VQQDEw02ODYwMjA5My02NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MfyBYRatKPtqI6Y+sBnEpkg9QvSbtTw1Bm1+c9uu2LnRhXl9936FzHrCcPH zoPyozQSLq30YU0R0pTFXgAH9GpObdoGv0jxO1UtQdMuxlQKbCn9bK6NKTYDqTm0 n5UW0D/xse29sSbVfmebKFus+W2jZOQ7KFhZUOGSxQ2J0JowtPo0ZgZnQj+9/Va2 7IWR+SUJZgYyKd2uY8QiDc41n3L4NhsLSfH3BYzxUlJlOn+PSCxlag0Q7VZu7yXh cRq/YmtOjINfQ8JenJpVpj4mOdBb+o7EJpxopPV2nJfpI1crL0LNZgS0BiV9Vutl ENQjo94VS8prKXK61TIOqwNmgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDU1pkSw 6nmpZSuq8CoMouKTBRR2MB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI3Qy85RDc3QzZENDAyOEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRN bTdfWGtaSGNMR21Da202S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPSf6yXUuI32Cqg13ehEZZcS3S9mGCjs/JoKeV8AJJnC6MeBR6010o qPk8OpUqEqix2KMb/L1m19Q+tf2LHWt5agS3RPH4k4HGaobpeSQ+W1Wd2SYYCXsk zPRzKS3/DAyV0aHbxKMauEKFnKFzPrHQz7dmIKt0BoDoaFW4zOVx7G30g1NfBQeS zPI7092OQE3l5O8fmD2Abw/fI9gz6hdKgqx2vsc40WXQybKiV1/V4lYZCojqM++Y en5A52SmC/pBGV5NCR3gDrpIdr6aanmno7apU6Sc2Kdq7Fi4CdKVPcoLh7l9C10c NE7+X57cpO4bZgy45gN5hxV5lABOevVK -----END CERTIFICATE-----Generated at Mon Jun 30 18:38:40 2025 by rpki-client