$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: V46Ub4ll/sWlbFc5RlDnw/Z4q1sNRLCgPAxpVMogo90= Subject key identifier: EF:D9:AE:DC:6F:EF:86:6E:80:73:34:34:EF:2C:68:5B:E7:73:D2:F8 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 03FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 03F6 Signing time: Sat 05 Jul 2025 01:00:09 +0000 Manifest this update: Sat 05 Jul 2025 01:00:08 +0000 Manifest next update: Sat 12 Jul 2025 01:00:08 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: ostmrSBnAntk81CUtF7RQCohNrbvPIslg6kE7sMN5ec=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Jul 5 01:00:08 2025 GMT Not After : Jul 12 01:00:08 2025 GMT Subject: CN=68687918-44c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:d9:73:b4:b6:4f:4d:5f:ff:77:5a:60:13: 18:18:19:17:75:05:c9:50:17:e3:cc:8a:0f:2c:db: 58:21:9d:18:d5:ca:dc:c6:47:8f:f8:77:d8:05:80: 63:59:cd:8e:eb:af:d1:b1:48:cc:dd:af:77:53:85: ae:8c:db:2c:62:8b:4a:a2:c2:c4:64:eb:2c:49:e8: f5:65:e0:88:d8:53:11:e2:97:51:8d:ab:34:65:03: dd:a4:2c:29:f8:fd:45:b3:12:cb:31:53:c7:6f:b1: 23:67:ba:1e:eb:27:53:da:92:5c:2c:dc:1d:0e:07: 7e:24:56:fe:93:75:9e:9a:2c:bb:2c:48:32:8b:65: 1b:b8:f2:c4:38:8f:bc:07:c9:8a:75:bf:27:12:ae: ff:62:9e:d8:35:85:78:05:3e:28:e5:7e:d2:a7:23: 6f:4b:5a:ef:23:89:77:51:39:8a:55:1b:46:48:93: e7:a1:5b:dd:98:83:96:7e:f8:04:e4:31:33:b1:79: a5:f1:70:bf:6c:03:8a:a3:92:af:f9:91:14:68:b7: 53:ed:d1:2f:32:e4:6a:3b:73:ef:57:f9:64:89:96: 38:53:ab:be:ff:c7:28:fd:f7:c9:8a:b2:f3:37:dc: 05:fd:57:f9:8c:3b:ad:21:8e:27:d5:10:b8:57:e0: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D9:AE:DC:6F:EF:86:6E:80:73:34:34:EF:2C:68:5B:E7:73:D2:F8 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:85:92:ca:68:0e:98:95:6d:62:23:e9:99:02:c2:bc:67:64: 62:56:5c:17:01:33:9e:b9:a3:2e:4a:9e:ca:35:d0:cf:b3:85: 34:57:95:ad:0c:d5:f5:86:b1:9f:c2:c5:83:63:eb:e8:8e:0a: ac:7e:a8:38:a4:b6:3b:1b:75:f8:f4:00:fe:6d:d7:98:5f:bc: 57:6f:fb:38:57:8e:03:d3:b3:ad:eb:54:7e:43:e2:53:92:f9: 96:a5:80:5b:06:d2:da:f3:d9:bb:93:1f:a2:91:83:65:8b:2e: 2f:4b:e1:b9:57:0a:15:00:f4:51:b9:3b:ad:e5:41:6d:22:32: 76:ab:ea:78:c0:8d:0e:31:30:c1:68:f1:c5:f6:d0:bc:ae:5b: 0f:d5:6c:a9:c2:97:d9:ab:36:21:42:a5:2b:0f:55:bc:62:98: 72:19:ad:35:12:10:49:98:20:7f:91:2f:d9:f3:06:85:14:f5: b6:67:8f:29:06:c8:4d:fb:0f:b7:ae:0d:8d:89:72:b1:85:c3: 75:a5:ed:60:59:86:64:5d:e4:b6:d0:dd:69:a6:5c:5c:8e:6b: d7:f9:54:39:91:f4:c8:bf:7d:8a:01:12:11:a4:9b:f1:73:8d: 61:24:a2:72:5c:3f:89:d9:1c:b0:fb:02:f2:5a:dc:d8:9c:98: 98:86:57:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwNzA1MDEwMDA4WhcNMjUwNzEyMDEwMDA4WjAYMRYwFAYD VQQDEw02ODY4NzkxOC00NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCXZc7S2T01f/3daYBMYGBkXdQXJUBfjzIoPLNtYIZ0Y1crcxkeP+HfYBYBj Wc2O66/RsUjM3a93U4WujNssYotKosLEZOssSej1ZeCI2FMR4pdRjas0ZQPdpCwp +P1FsxLLMVPHb7EjZ7oe6ydT2pJcLNwdDgd+JFb+k3Wemiy7LEgyi2UbuPLEOI+8 B8mKdb8nEq7/Yp7YNYV4BT4o5X7SpyNvS1rvI4l3UTmKVRtGSJPnoVvdmIOWfvgE 5DEzsXml8XC/bAOKo5Kv+ZEUaLdT7dEvMuRqO3PvV/lkiZY4U6u+/8co/ffJirLz N9wF/Vf5jDutIY4n1RC4V+AeoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/Zrtxv 74ZugHM0NO8saFvnc9L4MB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvhZLKaA6YlW1iI+mZAsK8Z2RiVlwXATOeuaMuSp7KNdDPs4U0V5Wt DNX1hrGfwsWDY+vojgqsfqg4pLY7G3X49AD+bdeYX7xXb/s4V44D07Ot61R+Q+JT kvmWpYBbBtLa89m7kx+ikYNliy4vS+G5VwoVAPRRuTut5UFtIjJ2q+p4wI0OMTDB aPHF9tC8rlsP1WypwpfZqzYhQqUrD1W8YphyGa01EhBJmCB/kS/Z8waFFPW2Z48p BshN+w+3rg2NiXKxhcN1pe1gWYZkXeS20N1pplxcjmvX+VQ5kfTIv32KARIRpJvx c41hJKJyXD+J2Ryw+wLyWtzYnJiYhlck -----END CERTIFICATE-----Generated at Sat Jul 5 21:54:49 2025 by rpki-client