$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: UzAB9nbVnxJhSJuUUMh+4n+zX3pzHRrCyHrt8sX9qX0= Subject key identifier: E6:13:8B:C0:E0:F8:42:B7:E8:29:5C:D1:F5:78:C0:55:72:B3:1C:30 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 34AE Signing time: Fri 22 Aug 2025 14:57:38 +0000 Manifest this update: Fri 22 Aug 2025 14:57:37 +0000 Manifest next update: Fri 29 Aug 2025 14:57:37 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: JU3KCAbSF7O1fcnis24MG+fnNxX9g2XqA42YTsB8w7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Aug 22 14:57:37 2025 GMT Not After : Aug 29 14:57:37 2025 GMT Subject: CN=68a88561-d5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:ee:fb:22:28:13:e5:b6:66:61:20:27:04: 59:bd:ea:7b:44:5d:f4:69:a9:7c:72:4d:dd:fe:98: d2:9d:e8:ac:49:54:be:04:e4:64:ba:b4:4c:ac:df: 58:95:db:f1:ee:51:df:13:72:84:5a:83:b6:2e:3a: b5:6b:8e:8c:a3:d1:a8:1b:34:75:df:4b:85:0c:35: 25:1c:14:36:15:b1:b0:2a:f7:79:15:e2:0d:44:c2: 1c:f0:05:f2:57:e4:d5:76:5a:31:51:0d:a4:df:0b: 8e:68:0f:1b:2b:1c:28:30:4d:8a:72:bb:a0:d3:b9: 0b:aa:ac:1c:7a:e7:1e:e3:b0:67:70:be:39:b8:77: 05:cb:77:2a:bb:7f:9d:c7:c9:b9:72:a1:b6:b1:9d: ee:35:66:a6:1a:c9:b8:18:fe:cb:51:da:16:5b:49: a0:f9:2f:65:6d:e5:5f:ac:b5:98:36:97:bd:f1:9e: 41:c1:e0:00:dd:1f:6a:63:5a:26:86:50:55:34:ab: 69:42:4f:90:34:3f:25:69:07:5a:9a:74:10:17:6c: fc:90:6d:9b:21:13:b1:d2:2a:ef:b3:4f:bb:c7:a9: d7:10:d3:7e:e2:cc:f2:10:a5:01:f3:f0:cc:ae:1c: 3b:c2:1b:5c:d5:de:b5:04:e3:e9:fc:77:16:54:4f: 71:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:13:8B:C0:E0:F8:42:B7:E8:29:5C:D1:F5:78:C0:55:72:B3:1C:30 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:ca:74:82:29:a3:fa:2a:c2:75:f7:26:c8:33:58:3d:76:ad: 3e:41:9b:a8:5d:99:87:4f:8b:a9:d1:54:88:3d:7f:b8:ad:8a: 70:15:31:9a:16:66:0b:59:e3:2c:69:63:85:9d:02:e7:49:65: dc:45:30:d8:df:00:0e:82:d1:4f:e8:f6:ca:11:ab:67:8e:73: 81:bc:a9:f5:00:21:09:21:47:a0:b6:e4:9f:07:11:72:50:3f: 30:88:64:3f:62:4b:d4:b7:1a:0a:c2:75:a0:d5:7b:c0:e8:10: 51:2d:ee:8e:71:d0:92:7e:55:41:8f:39:86:02:bf:de:dd:39: b9:a2:76:f4:69:93:1b:80:fb:a4:2f:30:94:b4:a4:f9:25:d5: 8e:8d:32:55:fb:72:6c:9d:e8:15:6e:46:a5:5c:af:92:ad:c5: 16:85:61:f1:19:e1:3d:e5:56:de:70:20:a4:98:9f:fd:5f:e3: 5e:a1:de:56:64:b2:3e:ed:4f:05:71:61:ce:9c:53:68:b8:83: 40:c9:be:ac:f5:7a:99:7d:dd:f6:8a:76:52:aa:b0:2f:83:0f: f7:8a:a0:ac:9b:17:f2:e8:98:82:5c:03:4b:85:20:34:f9:be: bf:70:80:37:83:84:ea:4c:80:dd:15:d0:79:6c:d9:b1:62:17: 14:3f:2d:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjUwODIyMTQ1NzM3WhcNMjUwODI5MTQ1NzM3WjAYMRYwFAYD VQQDEw02OGE4ODU2MS1kNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1ru+yIoE+W2ZmEgJwRZvep7RF30aal8ck3d/pjSneisSVS+BORkurRMrN9Y ldvx7lHfE3KEWoO2Ljq1a46Mo9GoGzR130uFDDUlHBQ2FbGwKvd5FeINRMIc8AXy V+TVdloxUQ2k3wuOaA8bKxwoME2Kcrug07kLqqwceuce47BncL45uHcFy3cqu3+d x8m5cqG2sZ3uNWamGsm4GP7LUdoWW0mg+S9lbeVfrLWYNpe98Z5BweAA3R9qY1om hlBVNKtpQk+QND8laQdamnQQF2z8kG2bIROx0irvs0+7x6nXENN+4szyEKUB8/DM rhw7whtc1d61BOPp/HcWVE9xBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYTi8Dg +EK36Clc0fV4wFVysxwwMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNynSCKaP6KsJ19ybIM1g9dq0+QZuoXZmHT4up0VSIPX+4rYpwFTGa FmYLWeMsaWOFnQLnSWXcRTDY3wAOgtFP6PbKEatnjnOBvKn1ACEJIUegtuSfBxFy UD8wiGQ/YkvUtxoKwnWg1XvA6BBRLe6OcdCSflVBjzmGAr/e3Tm5onb0aZMbgPuk LzCUtKT5JdWOjTJV+3JsnegVbkalXK+SrcUWhWHxGeE95VbecCCkmJ/9X+Neod5W ZLI+7U8FcWHOnFNouINAyb6s9XqZfd32inZSqrAvgw/3iqCsmxfy6JiCXANLhSA0 +b6/cIA3g4TqTIDdFdB5bNmxYhcUPy1H -----END CERTIFICATE-----Generated at Sat Aug 23 13:37:15 2025 by rpki-client