$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft File: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft (raw, json) Hash identifier: f8bEBhF5776UUttcRrzx+TehSnPj1yAWvPOxQ6oXV1A= Subject key identifier: F2:2E:32:F8:F2:C8:0E:77:08:23:75:86:FE:EB:68:C2:9A:C8:E1:05 Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 11B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft Manifest number: 11A4 Signing time: Fri 22 Aug 2025 17:20:49 +0000 Manifest this update: Fri 22 Aug 2025 17:20:49 +0000 Manifest next update: Fri 29 Aug 2025 17:20:49 +0000 Files and hashes: 1: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl (hash: TcahjsaM6Zk2eKaeWUkwNts5OF5Hd8BX1TDpJBPb9WI=) 2: B58038B838FF11EAB8D91529C4F9AE02.roa (hash: IU4SG15xY5pa/IoW3wwDCZ3o/ZxiWKB5Df2NzHDteOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4537 (0x11b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: Aug 22 17:20:49 2025 GMT Not After : Aug 29 17:20:49 2025 GMT Subject: CN=68a8a6f1-d8ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:25:f6:5d:1f:96:75:e6:cd:84:42:74:c9: 5c:5d:f7:2b:63:a2:18:75:b3:53:19:bf:d2:39:d1: b5:fd:a6:7f:95:84:21:75:32:e9:c3:39:57:5d:c3: a5:c0:88:23:47:27:7b:c9:5d:42:d6:da:54:ff:8c: 3c:ce:de:b3:14:24:72:67:d9:ac:1a:9c:bf:6f:5b: 0b:35:cb:6c:30:99:7c:79:80:2f:f7:2c:41:b6:09: b8:c7:28:cb:d5:a9:e8:5b:a8:81:c6:20:c6:d9:6f: b6:60:ab:85:90:0c:93:9b:c1:8a:3a:df:b2:f2:d2: 0b:38:87:9c:c8:55:b1:48:36:0e:43:21:94:29:77: d8:e9:54:9c:c6:ae:98:12:d4:95:7b:35:60:04:b8: 9a:d8:57:92:db:ad:ec:e9:83:fb:8a:6d:d7:ea:6c: 96:94:28:2e:81:11:e3:1b:05:55:96:1e:29:86:46: fb:46:88:39:59:15:0f:7f:0d:3e:56:d8:86:b9:3a: c1:53:b9:52:0d:d9:ad:4a:c1:ce:bf:52:fb:a3:34: 87:3d:aa:df:09:d0:49:06:dd:4b:2d:07:2c:4c:4f: 22:47:2b:03:0b:12:9f:5f:50:2c:bf:7d:1e:9f:05: 39:4b:33:c2:71:a6:6b:12:d4:24:5b:0a:12:a4:f9: 5e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2E:32:F8:F2:C8:0E:77:08:23:75:86:FE:EB:68:C2:9A:C8:E1:05 X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:7f:70:18:ea:35:2d:e0:14:1b:8c:d7:82:89:7b:4e:7a:34: 67:97:b1:43:f7:05:bc:80:69:fe:c4:28:3a:7b:b1:77:d0:08: 9d:9b:e4:ee:da:d4:6f:f8:61:6a:90:60:23:9d:cc:63:21:f6: f8:c0:16:ff:81:87:bb:8c:34:61:56:0c:19:d2:21:18:c7:ae: c0:88:26:7c:40:e1:dc:5b:71:67:c5:a8:43:43:f8:f5:b5:92: ad:8a:c1:f1:c9:a5:b3:d8:12:34:a3:2e:18:65:17:bd:b8:33: b7:23:67:1c:62:81:4d:8a:27:96:6b:08:ba:87:4c:6f:9f:92: f4:ec:15:0a:29:d2:30:3c:8c:81:04:61:ca:fb:49:32:07:b4: af:f2:32:bc:ee:ef:30:41:fa:c8:4a:54:1c:49:6d:38:33:ca: 9c:f2:73:85:cb:04:ac:b5:cc:f7:99:53:df:b7:88:78:d0:12: 4e:15:ea:75:e9:e8:7f:74:4b:d7:57:da:32:12:2c:74:5f:31: ac:7f:b9:b5:f2:7a:f7:94:6d:2f:ae:e2:83:5a:c0:f4:37:f4: 80:09:43:af:04:bc:00:dc:a2:39:18:2e:1a:f1:01:ad:9e:65: 5e:24:61:b4:40:46:7b:31:d1:70:e1:68:16:9e:77:f5:06:76: f5:f9:1a:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjUwODIyMTcyMDQ5WhcNMjUwODI5MTcyMDQ5WjAYMRYwFAYD VQQDEw02OGE4YTZmMS1kOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdsl9l0flnXmzYRCdMlcXfcrY6IYdbNTGb/SOdG1/aZ/lYQhdTLpwzlXXcOl wIgjRyd7yV1C1tpU/4w8zt6zFCRyZ9msGpy/b1sLNctsMJl8eYAv9yxBtgm4xyjL 1anoW6iBxiDG2W+2YKuFkAyTm8GKOt+y8tILOIecyFWxSDYOQyGUKXfY6VScxq6Y EtSVezVgBLia2FeS263s6YP7im3X6myWlCgugRHjGwVVlh4phkb7Rog5WRUPfw0+ VtiGuTrBU7lSDdmtSsHOv1L7ozSHParfCdBJBt1LLQcsTE8iRysDCxKfX1Asv30e nwU5SzPCcaZrEtQkWwoSpPleZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIuMvjy yA53CCN1hv7raMKayOEFMB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI3Qy85RDc3QzZENDAyOEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRN bTdfWGtaSGNMR21Da202S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVf3AY6jUt4BQbjNeCiXtOejRnl7FD9wW8gGn+xCg6e7F30Aidm+Tu 2tRv+GFqkGAjncxjIfb4wBb/gYe7jDRhVgwZ0iEYx67AiCZ8QOHcW3FnxahDQ/j1 tZKtisHxyaWz2BI0oy4YZRe9uDO3I2ccYoFNiieWawi6h0xvn5L07BUKKdIwPIyB BGHK+0kyB7Sv8jK87u8wQfrISlQcSW04M8qc8nOFywSstcz3mVPft4h40BJOFep1 6eh/dEvXV9oyEix0XzGsf7m18nr3lG0vruKDWsD0N/SACUOvBLwA3KI5GC4a8QGt nmVeJGG0QEZ7MdFw4WgWnnf1Bnb1+Rqg -----END CERTIFICATE-----Generated at Sat Aug 23 23:29:33 2025 by rpki-client