$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: ezQ9epTdCFROHqmyAVtmBSFggu8NppRH8Sb/dCX5tgs= Subject key identifier: B3:ED:64:98:08:73:3D:45:DB:2B:77:20:F8:CE:A3:13:E4:D4:F0:1A Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 7E Signing time: Tue 01 Jul 2025 07:26:35 +0000 Manifest this update: Tue 01 Jul 2025 07:26:35 +0000 Manifest next update: Tue 08 Jul 2025 07:26:35 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: d8xRYab0Uu7qGKoS7G132ekzXdcWMaxln74XrCvtOCc=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Jul 1 07:26:35 2025 GMT Not After : Jul 8 07:26:35 2025 GMT Subject: CN=68638dab-df7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:38:cc:82:28:a0:4f:59:20:3c:f0:16:f4:00: a8:11:46:5a:73:dd:76:46:62:84:35:8c:33:d0:93: cd:6c:9f:1d:f7:49:61:11:8d:2e:81:50:08:d8:81: 23:7f:56:90:c0:2b:78:59:c8:d4:64:af:fa:8b:a1: bc:18:1c:52:88:3a:d5:1a:e7:4a:9e:ba:0b:e6:5d: ee:3c:f8:1a:d2:c9:a1:fd:6d:ab:3c:d1:28:47:24: 81:2e:29:4c:3f:03:25:e1:b8:e9:3a:38:b9:64:93: 36:15:80:4c:f0:fd:9c:2c:13:3e:f6:7c:61:8f:74: db:94:a3:bd:eb:24:a8:9b:09:9e:c3:85:e1:3b:95: da:f0:4e:4e:18:70:e3:bf:2f:65:9f:1b:f4:cf:cf: 3b:66:f0:e0:ce:b3:89:2a:69:5b:62:ab:8b:c9:1b: d8:5b:d9:43:5f:2f:e0:85:5e:43:3c:62:ce:c8:01: 37:73:cd:21:21:8f:a0:9f:03:22:43:c8:1a:4a:49: 5f:b0:0a:38:e8:70:49:54:31:ff:3f:75:87:dc:ac: 2f:f1:69:a0:e2:04:9b:c7:72:9b:31:8d:1f:82:c1: a7:08:2e:b1:7e:0f:29:70:51:05:8e:2f:f4:66:7a: 74:c3:5c:08:b1:66:f9:be:94:b6:19:78:88:ec:53: 2a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:ED:64:98:08:73:3D:45:DB:2B:77:20:F8:CE:A3:13:E4:D4:F0:1A X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:15:72:08:30:2b:99:13:ac:c8:b5:ae:a9:37:82:34:a1:91: f1:bb:1d:ab:d2:7d:95:aa:7a:80:55:c5:51:d0:93:83:49:c8: ad:88:e6:21:9d:d1:71:53:8b:73:ac:8c:3e:c9:0f:68:fe:f3: dc:a3:1b:2c:95:68:64:46:fa:23:0d:92:01:6e:87:21:b3:d8: a2:d6:85:51:ee:98:bb:6f:d1:85:06:f3:29:f9:7b:44:72:a0: 0f:66:a2:47:57:52:0f:cc:6e:4f:47:48:d9:70:cc:19:11:22: e7:88:12:bd:cc:c9:a5:f8:68:e2:99:2d:e0:67:07:53:08:bb: 1b:d2:b3:37:f1:8e:2c:e3:8b:c9:7d:24:da:8b:fa:33:3f:24: 91:63:3a:15:9f:67:f4:99:07:30:e0:a7:5c:76:42:27:1a:20: 7b:bc:a5:4e:f9:0d:22:68:2b:da:a4:54:2a:11:a5:60:3d:dc: fc:61:23:d0:b1:31:78:55:04:eb:75:ff:f6:70:e7:fb:28:ba: a1:a0:6c:a4:28:78:89:9f:d9:e2:38:a4:c0:14:4d:0b:5d:e4: b2:ec:f8:11:3c:29:78:3d:c2:01:6c:d9:7c:3a:7e:04:c9:db: fc:09:de:5b:07:b5:64:c0:f3:89:8e:8b:0c:ec:4d:57:9c:0c: a6:9c:91:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA3MDEwNzI2MzVaFw0yNTA3MDgwNzI2MzVaMBgxFjAUBgNV BAMTDTY4NjM4ZGFiLWRmN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7OMyCKKBPWSA88Bb0AKgRRlpz3XZGYoQ1jDPQk81snx33SWERjS6BUAjYgSN/ VpDAK3hZyNRkr/qLobwYHFKIOtUa50qeugvmXe48+BrSyaH9bas80ShHJIEuKUw/ AyXhuOk6OLlkkzYVgEzw/ZwsEz72fGGPdNuUo73rJKibCZ7DheE7ldrwTk4YcOO/ L2WfG/TPzztm8ODOs4kqaVtiq4vJG9hb2UNfL+CFXkM8Ys7IATdzzSEhj6CfAyJD yBpKSV+wCjjocElUMf8/dYfcrC/xaaDiBJvHcpsxjR+CwacILrF+DylwUQWOL/Rm enTDXAixZvm+lLYZeIjsUypLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs+1kmAhz PUXbK3cg+M6jE+TU8BowHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKYVcggwK5kTrMi1rqk3gjShkfG7HavSfZWqeoBVxVHQk4NJyK2I5iGd 0XFTi3OsjD7JD2j+89yjGyyVaGRG+iMNkgFuhyGz2KLWhVHumLtv0YUG8yn5e0Ry oA9mokdXUg/Mbk9HSNlwzBkRIueIEr3MyaX4aOKZLeBnB1MIuxvSszfxjizji8l9 JNqL+jM/JJFjOhWfZ/SZBzDgp1x2QicaIHu8pU75DSJoK9qkVCoRpWA93PxhI9Cx MXhVBOt1//Zw5/souqGgbKQoeImf2eI4pMAUTQtd5LLs+BE8KXg9wgFs2Xw6fgTJ 2/wJ3lsHtWTA84mOiwzsTVecDKackWE= -----END CERTIFICATE-----Generated at Wed Jul 2 16:18:09 2025 by rpki-client