$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: xN9Nq21OGb637alZKk6Ivc+u/AxRCdrO8VHrHOGuU8o= Subject key identifier: 91:7D:0F:30:FA:71:3C:6B:46:0E:06:1B:BA:D4:1A:52:A5:81:56:9C Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0415 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 040F Signing time: Sat 23 Aug 2025 00:38:38 +0000 Manifest this update: Sat 23 Aug 2025 00:38:38 +0000 Manifest next update: Sat 30 Aug 2025 00:38:38 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: 1V9by3rGmdWXi8u5WEMqGk8Mus8UIjm01TS65yKoj0A=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Aug 23 00:38:38 2025 GMT Not After : Aug 30 00:38:38 2025 GMT Subject: CN=68a90d8e-c830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:eb:ea:0a:de:2b:9a:34:85:3a:5c:cb:15: c5:b3:3c:78:41:df:d7:d4:a1:07:e4:f6:2a:9a:1b: 8a:d8:c2:6f:ad:58:bd:92:d4:30:f4:a5:a1:58:c5: c5:d8:d2:93:11:9c:11:d9:11:37:49:2a:40:be:37: c6:bd:da:0e:c0:4a:5e:c8:aa:57:a9:24:fa:be:a7: 74:f4:a2:bd:24:28:42:5b:3d:80:6e:83:e8:2c:4b: c9:96:41:ab:65:4b:84:ed:49:a0:bb:02:26:6c:87: c2:ed:5f:65:e1:39:b1:6c:34:9e:db:7a:29:f5:f8: 58:ee:06:19:c1:77:54:ed:fd:7d:9c:6c:f4:86:08: c6:b9:93:85:4b:39:92:2d:6a:24:08:ea:52:06:e4: bf:e7:d2:fc:a9:eb:27:36:3a:4c:b8:79:94:ff:d5: 0a:2f:41:57:c4:4f:ea:2f:a6:49:bf:bc:c5:b8:81: cc:98:49:9b:cc:24:3b:b8:e3:8b:d7:1c:05:55:37: 35:10:d3:7e:45:14:fa:9c:e0:5c:8e:eb:e7:ff:69: 47:54:ca:35:62:d3:ae:03:8a:7b:9f:6c:d4:16:e5: cc:fa:c8:41:13:2a:39:d0:4a:3e:e4:77:b2:f3:5c: 11:0a:2e:37:d1:c3:77:3e:2e:9a:ec:52:84:83:f7: fb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7D:0F:30:FA:71:3C:6B:46:0E:06:1B:BA:D4:1A:52:A5:81:56:9C X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:7d:1a:c7:f6:2b:ea:1b:65:c3:2d:d3:14:ad:98:eb:de:c5: 56:cb:67:24:bf:60:d0:ee:22:00:60:b7:02:41:09:89:2d:3d: 5f:20:66:96:db:6d:25:d6:bd:05:59:db:cc:ad:df:40:a0:a5: dd:87:25:08:74:bb:40:01:ee:1b:cd:4e:6d:52:b8:05:b9:46: 58:76:0a:a3:5a:e5:91:34:d3:d1:4d:0f:ac:4d:54:88:57:10: 4d:d8:d8:43:2c:77:f1:a5:87:c1:c4:3a:ac:a5:cb:05:f1:27: 6c:9e:cd:31:32:ff:0e:3c:37:69:34:7a:04:5b:99:1e:ab:c8: bf:be:80:3b:5f:7c:a9:e5:b9:17:ad:74:5d:e3:a3:73:89:fe: d5:05:04:57:6b:23:79:35:03:76:b7:a0:7b:c9:4a:3b:ca:eb: 79:28:65:dc:c4:2a:fe:3e:e6:3d:8e:a9:af:e0:19:9c:a3:db: 32:57:4d:eb:08:db:3f:82:68:96:7b:47:bc:c1:67:6f:7c:b2: 8b:96:dc:9d:c7:ab:a2:63:ba:fc:b3:fb:5c:a9:ce:e2:8e:e6: 8d:cd:59:f6:f4:20:4a:04:fa:15:d7:f4:e7:a9:12:36:b6:d3: 91:54:4b:63:40:f2:b8:ca:ec:98:cc:c2:67:5c:66:7c:af:55: d1:7c:42:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwODIzMDAzODM4WhcNMjUwODMwMDAzODM4WjAYMRYwFAYD VQQDEw02OGE5MGQ4ZS1jODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxknr6greK5o0hTpcyxXFszx4Qd/X1KEH5PYqmhuK2MJvrVi9ktQw9KWhWMXF 2NKTEZwR2RE3SSpAvjfGvdoOwEpeyKpXqST6vqd09KK9JChCWz2AboPoLEvJlkGr ZUuE7UmguwImbIfC7V9l4TmxbDSe23op9fhY7gYZwXdU7f19nGz0hgjGuZOFSzmS LWokCOpSBuS/59L8qesnNjpMuHmU/9UKL0FXxE/qL6ZJv7zFuIHMmEmbzCQ7uOOL 1xwFVTc1ENN+RRT6nOBcjuvn/2lHVMo1YtOuA4p7n2zUFuXM+shBEyo50Eo+5Hey 81wRCi430cN3Pi6a7FKEg/f7gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF9DzD6 cTxrRg4GG7rUGlKlgVacMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsfRrH9ivqG2XDLdMUrZjr3sVWy2ckv2DQ7iIAYLcCQQmJLT1fIGaW 220l1r0FWdvMrd9AoKXdhyUIdLtAAe4bzU5tUrgFuUZYdgqjWuWRNNPRTQ+sTVSI VxBN2NhDLHfxpYfBxDqspcsF8Sdsns0xMv8OPDdpNHoEW5keq8i/voA7X3yp5bkX rXRd46Nzif7VBQRXayN5NQN2t6B7yUo7yut5KGXcxCr+PuY9jqmv4Bmco9syV03r CNs/gmiWe0e8wWdvfLKLltydx6uiY7r8s/tcqc7ijuaNzVn29CBKBPoV1/TnqRI2 ttORVEtjQPK4yuyYzMJnXGZ8r1XRfEIa -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:23 2025 by rpki-client