$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: XFol/lfmO/cqPgMTADM95zT7RViiDXzlKX7GWj/688c= Subject key identifier: D6:49:77:4D:C1:CD:F4:C5:89:B6:1A:A5:18:C9:E9:2E:6C:6D:77:BE Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 3548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3504 Signing time: Fri 22 Aug 2025 14:16:06 +0000 Manifest this update: Fri 22 Aug 2025 14:16:06 +0000 Manifest next update: Fri 29 Aug 2025 14:16:06 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: QenE33fdUdwdvwBRtz2aa3ABtOoZvglQjv0z2S4oltk=) 2: 3D6EDF86EDA711ED91155885C4F9AE02.roa (hash: mXb8AscVsTwHQGsL7M6XAxSIWwOh5epna0XlBQIQUOY=) 3: D3DAACB2507E11EF91EDBA52C4F9AE02.roa (hash: Whq1SIyvQYa1mALpVqGVZuuCi11KV+H9HrjJKdS2dN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13640 (0x3548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Aug 22 14:16:06 2025 GMT Not After : Aug 29 14:16:06 2025 GMT Subject: CN=68a87ba6-6254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a5:5c:0e:4c:5e:89:f4:b4:77:3d:4f:cd:fb: 13:f3:a7:2a:0a:56:6f:b1:a3:af:4d:f8:07:96:d3: 8a:b0:d4:95:0f:ca:99:b2:65:e9:1e:6d:ce:fe:b3: 54:d8:4b:1f:f4:30:d8:2c:e8:96:96:26:76:e8:8e: 4d:f8:f1:d8:e2:32:c2:b7:f1:e9:7f:d6:1e:e2:d6: f3:8f:38:df:a6:ff:41:36:6e:a4:fd:2a:20:cf:b7: c7:cc:c8:6f:9e:5f:19:8e:9a:f7:28:64:e6:e9:18: 02:c5:f9:8f:a8:b8:1c:81:80:58:7d:7c:e6:1f:9c: dc:46:27:d7:88:08:84:eb:f0:0a:aa:c9:ac:1e:a4: 08:93:69:7a:90:93:1f:8d:bc:eb:b9:71:c3:0e:02: 64:01:38:ea:19:e3:50:4f:94:83:6b:9b:e1:dd:7c: 15:be:7f:f0:22:d1:77:a7:c9:03:24:db:28:5b:a2: da:ac:2f:fb:8f:f9:bb:38:9c:ca:6a:e7:63:74:38: 63:46:31:b1:c6:38:56:a7:1c:5c:f2:1f:86:0f:2d: e3:45:27:20:66:7a:17:be:b7:42:36:7d:05:05:73: 26:01:c7:74:7d:37:c9:0e:56:3b:5b:c2:04:42:4f: 52:43:7b:ef:1c:d0:01:6c:d1:5a:7a:79:d3:c6:4a: 2b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:49:77:4D:C1:CD:F4:C5:89:B6:1A:A5:18:C9:E9:2E:6C:6D:77:BE X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:40:9d:b7:b6:0d:5a:2d:05:69:9c:7a:dd:95:0d:be:6e:1a: 2d:88:fa:fb:09:e7:59:3f:e5:37:ea:03:5e:12:74:4f:85:0a: 4b:9b:52:f9:82:d8:5e:eb:08:57:f4:3d:a5:2a:7a:27:31:cd: 9a:4e:34:0b:38:43:0e:e7:e3:e6:06:eb:ec:6f:2f:cc:b1:33: 86:26:b6:4f:44:d5:1b:77:fb:af:a5:a8:a2:7d:9e:80:fc:af: 1e:0e:6a:e9:7a:3a:37:6e:48:e7:f3:b0:8f:37:9b:13:71:0e: 27:fc:12:2a:2a:cf:b4:5a:a0:61:8a:dd:53:ca:f7:12:43:74: b4:7f:5e:48:1e:0e:ca:17:f8:4e:d9:92:d5:ad:52:48:72:52: 13:20:47:df:16:9d:e0:64:7d:62:5a:b2:a6:12:08:5c:08:f6: 56:e5:74:a5:67:48:ce:d2:89:d4:db:95:35:f4:bf:16:36:cb: 95:40:06:14:92:ef:bd:58:30:8b:77:8a:50:9f:72:16:19:ea: a6:f7:8b:30:4f:48:f6:c8:b5:fa:9a:ad:d8:2f:eb:b8:8d:62: 53:82:a5:75:e8:b7:f3:a8:f9:79:15:cd:8a:0e:b8:d3:f7:be: 3f:d2:98:ea:3b:38:58:62:3f:8f:44:9c:53:36:23:2c:c4:2c: 44:8a:dc:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUwODIyMTQxNjA2WhcNMjUwODI5MTQxNjA2WjAYMRYwFAYD VQQDEw02OGE4N2JhNi02MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aVcDkxeifS0dz1PzfsT86cqClZvsaOvTfgHltOKsNSVD8qZsmXpHm3O/rNU 2Esf9DDYLOiWliZ26I5N+PHY4jLCt/Hpf9Ye4tbzjzjfpv9BNm6k/Sogz7fHzMhv nl8Zjpr3KGTm6RgCxfmPqLgcgYBYfXzmH5zcRifXiAiE6/AKqsmsHqQIk2l6kJMf jbzruXHDDgJkATjqGeNQT5SDa5vh3XwVvn/wItF3p8kDJNsoW6LarC/7j/m7OJzK audjdDhjRjGxxjhWpxxc8h+GDy3jRScgZnoXvrdCNn0FBXMmAcd0fTfJDlY7W8IE Qk9SQ3vvHNABbNFaennTxkorLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZJd03B zfTFibYapRjJ6S5sbXe+MB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiQJ23tg1aLQVpnHrdlQ2+bhotiPr7CedZP+U36gNeEnRPhQpLm1L5 gthe6whX9D2lKnonMc2aTjQLOEMO5+PmBuvsby/MsTOGJrZPRNUbd/uvpaiifZ6A /K8eDmrpejo3bkjn87CPN5sTcQ4n/BIqKs+0WqBhit1TyvcSQ3S0f15IHg7KF/hO 2ZLVrVJIclITIEffFp3gZH1iWrKmEghcCPZW5XSlZ0jO0onU25U19L8WNsuVQAYU ku+9WDCLd4pQn3IWGeqm94swT0j2yLX6mq3YL+u4jWJTgqV16LfzqPl5Fc2KDrjT 974/0pjqOzhYYj+PRJxTNiMsxCxEitzQ -----END CERTIFICATE-----Generated at Sat Aug 23 19:26:36 2025 by rpki-client