$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: I3BIVOA6NV5zmVb1N/ca3Yzk7T+kybPHzi2iGlVhakA= Subject key identifier: 5C:57:2E:8C:D1:2B:8E:13:2C:EC:BC:F1:28:8C:A7:C5:12:86:EA:BC Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 023B Signing time: Sat 23 Aug 2025 02:17:34 +0000 Manifest this update: Sat 23 Aug 2025 02:17:33 +0000 Manifest next update: Sat 30 Aug 2025 02:17:33 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: 1TPeGj6Grzx1oKzdQhxoJsLi5l9AoQQcHr3ggvX6a1U=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: bOpqrbhh4Bh4AWp/OZ52rop88bWyVMsrGceDfsrfghM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Aug 23 02:17:33 2025 GMT Not After : Aug 30 02:17:33 2025 GMT Subject: CN=68a924be-d0e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c4:ff:29:37:a6:e9:42:83:91:48:4a:a3:8f: 8b:00:17:74:e0:fc:11:83:e2:25:85:a9:b9:a3:e6: ee:d0:31:34:ac:af:5a:33:01:d1:26:8b:7d:56:25: ef:50:85:fa:d8:fb:cb:7a:60:9d:93:fd:8e:2e:4b: e8:d7:27:8c:8a:16:a6:c8:1c:b3:40:7f:e1:ba:9f: ad:37:69:a9:84:50:57:5a:cf:53:39:a1:5c:47:df: 4a:41:56:61:71:e8:c6:f2:5a:32:fb:83:28:b3:16: 1b:64:4d:73:29:22:74:60:d2:58:c4:78:dc:93:43: 02:25:b6:70:0b:25:dc:5d:69:bb:80:2f:de:e0:e6: 01:0f:fd:58:29:b9:6f:72:d9:1d:01:09:3e:86:40: 59:56:d6:cd:10:23:d4:0f:62:2d:6e:8c:74:f7:06: 8f:ef:e2:12:cf:71:68:d3:6b:44:95:8e:6f:15:eb: 2b:42:58:89:4d:a4:e4:31:bc:60:62:7f:0b:41:d6: d3:25:e2:12:ab:e1:a3:a3:82:ba:f7:8d:31:dc:e2: e9:1c:6d:1e:8e:9a:ef:20:90:81:87:8f:9c:1e:c2: 6f:88:51:37:c4:88:fb:7f:06:af:c7:cc:fd:ed:b9: b3:37:ab:c9:a5:f0:b3:8e:51:e4:fa:b0:ae:04:da: 38:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:57:2E:8C:D1:2B:8E:13:2C:EC:BC:F1:28:8C:A7:C5:12:86:EA:BC X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:5f:0b:4f:97:f9:9d:49:df:f3:0f:25:77:39:78:3b:7a:08: 48:7c:b3:b6:43:36:54:08:38:12:6a:84:80:9d:7b:0e:ab:19: f0:2d:d6:d9:31:17:27:67:96:dc:a9:ae:fe:0c:8e:6b:91:38: 95:cd:27:97:79:d0:89:73:d6:54:f2:63:0c:5c:12:5f:db:81: ef:da:14:ab:6f:1f:65:22:92:6b:b1:38:ec:55:dd:28:61:37: 7c:11:d0:57:f5:6a:6f:de:b0:8b:b3:28:8e:52:58:9b:0c:0e: aa:9b:fd:b7:9a:8c:9d:a7:96:d1:6e:d9:26:08:b9:92:d4:14: b5:ea:57:32:05:c1:15:db:1c:52:3a:ae:97:33:74:7f:c3:5f: 00:0c:ed:6c:ea:c6:12:6a:14:f7:94:db:7b:83:a6:50:72:80: c5:54:b5:6c:ab:2f:95:d4:af:0f:5b:a8:a4:8a:66:8e:72:08: 7d:59:63:fe:c5:2d:fe:ac:31:1b:c5:71:85:07:95:4b:b5:17: d2:2f:48:80:58:54:75:fe:f5:23:00:9d:69:0e:17:28:5b:fe: 64:41:f6:eb:1b:6a:de:71:b1:b0:91:47:84:c4:3b:b8:fe:f5: e9:24:77:df:c9:1e:b5:c7:96:54:b2:7c:b3:01:3b:cc:30:77: 34:21:5c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUwODIzMDIxNzMzWhcNMjUwODMwMDIxNzMzWjAYMRYwFAYD VQQDEw02OGE5MjRiZS1kMGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sT/KTem6UKDkUhKo4+LABd04PwRg+Ilham5o+bu0DE0rK9aMwHRJot9ViXv UIX62PvLemCdk/2OLkvo1yeMihamyByzQH/hup+tN2mphFBXWs9TOaFcR99KQVZh cejG8loy+4MosxYbZE1zKSJ0YNJYxHjck0MCJbZwCyXcXWm7gC/e4OYBD/1YKblv ctkdAQk+hkBZVtbNECPUD2Itbox09waP7+ISz3Fo02tElY5vFesrQliJTaTkMbxg Yn8LQdbTJeISq+Gjo4K6940x3OLpHG0ejprvIJCBh4+cHsJviFE3xIj7fwavx8z9 7bmzN6vJpfCzjlHk+rCuBNo4qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxXLozR K44TLOy88SiMp8UShuq8MB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhXwtPl/mdSd/zDyV3OXg7eghIfLO2QzZUCDgSaoSAnXsOqxnwLdbZ MRcnZ5bcqa7+DI5rkTiVzSeXedCJc9ZU8mMMXBJf24Hv2hSrbx9lIpJrsTjsVd0o YTd8EdBX9Wpv3rCLsyiOUlibDA6qm/23moydp5bRbtkmCLmS1BS16lcyBcEV2xxS Oq6XM3R/w18ADO1s6sYSahT3lNt7g6ZQcoDFVLVsqy+V1K8PW6ikimaOcgh9WWP+ xS3+rDEbxXGFB5VLtRfSL0iAWFR1/vUjAJ1pDhcoW/5kQfbrG2recbGwkUeExDu4 /vXpJHffyR61x5ZUsnyzATvMMHc0IVzq -----END CERTIFICATE-----Generated at Sun Aug 24 06:34:58 2025 by rpki-client