$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: rlngAyaMGQbC9HojQPPf6kgv+Mt8uRBjwahlJTOsa58= Subject key identifier: 5F:F3:DC:E3:9D:B4:DE:C7:8A:BA:E8:D9:5F:58:A2:12:CD:8E:CA:B5 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 97 Signing time: Thu 03 Jul 2025 06:35:44 +0000 Manifest this update: Thu 03 Jul 2025 06:35:43 +0000 Manifest next update: Thu 10 Jul 2025 06:35:43 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: 9e+Uym9S06H9wKGwgtWI1OnzJt4oVL/bx/9KpxoY+IY=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Jul 3 06:35:43 2025 GMT Not After : Jul 10 06:35:43 2025 GMT Subject: CN=686624bf-b927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:56:81:a2:3e:32:8d:58:e8:9c:e5:59:dd: 87:c2:61:ca:46:04:7f:0c:21:5d:5f:3e:5b:1b:1b: 9f:67:a5:00:fb:92:f8:f3:9b:73:5c:f9:cc:d4:22: 64:98:f3:a6:3e:5e:27:20:0e:42:78:97:23:73:5b: 30:32:b6:44:14:d1:15:a0:1c:8d:95:d5:53:3d:63: 8b:80:5d:e1:7e:63:ee:c8:46:61:77:24:35:1a:5c: 20:6e:4a:cb:6a:5c:88:6a:52:df:14:99:a6:7d:a0: 81:ae:6d:0c:91:54:2f:c6:6a:3d:bc:54:db:01:98: 43:12:82:00:01:0f:ea:3d:7f:62:96:95:f5:38:d6: 54:32:b6:50:1f:33:12:98:77:ff:f4:6d:39:82:f0: 26:66:b9:46:06:95:7e:fa:de:b7:68:4f:56:b5:5a: d9:e9:99:4a:a2:69:07:4e:ac:c9:65:e0:8c:de:4a: e1:a8:9e:ac:13:e9:22:0a:f2:e0:ec:7f:f7:fa:c7: 17:8a:bc:bb:4c:af:43:e6:9c:7f:e0:29:7c:cf:4d: c4:e5:ca:4a:f4:aa:df:99:dd:37:df:0b:1c:92:ae: fc:1d:28:f1:98:39:fc:e0:6f:21:c8:f2:96:fe:cd: a1:94:b5:52:9e:41:a5:6e:2c:bb:95:06:7b:a6:90: 74:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F3:DC:E3:9D:B4:DE:C7:8A:BA:E8:D9:5F:58:A2:12:CD:8E:CA:B5 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:33:75:3e:1f:f7:10:d1:a5:2d:7a:89:38:9f:82:19:6c:41: 48:5c:7a:f7:9a:7c:af:80:86:ec:4a:97:f5:ab:a9:f8:ba:a1: 9d:32:90:1c:50:67:70:db:94:1a:66:81:03:73:ce:1e:c8:8e: 8a:a6:83:ca:3a:b6:9e:dc:9b:7a:74:8b:92:4a:5a:68:94:be: 6b:ed:e5:0c:6a:12:0d:9f:ce:a6:7a:8d:f5:b6:f5:c5:a0:01: 8e:4b:c4:b5:46:e7:b6:b6:21:62:ec:af:a7:c8:03:6c:e0:61: 9a:31:69:00:49:11:68:2a:23:a8:24:d6:1c:91:fd:30:21:cc: ef:0c:85:e5:f0:b2:d3:83:fb:8e:24:90:b4:3e:3f:98:44:ac: 5b:f6:64:32:d7:08:7e:c1:9b:c4:84:46:6c:8a:3c:ee:81:05: c1:72:ca:9a:8d:68:dc:30:5f:76:c0:c9:06:4b:33:22:5c:6f: ee:37:c7:73:ee:97:4b:52:43:80:bb:ea:bb:0c:85:34:a3:80: 53:3e:c6:38:32:1c:d1:79:04:18:7d:64:1c:5c:1f:55:38:30: ac:d3:24:a1:fb:8e:4f:7e:d8:f6:57:d3:a9:8d:4d:a2:50:3f: 91:f1:4f:07:21:29:90:9d:df:02:1f:08:3d:b7:41:5d:76:74: a8:c9:79:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUwNzAzMDYzNTQzWhcNMjUwNzEwMDYzNTQzWjAYMRYwFAYD VQQDEw02ODY2MjRiZi1iOTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gVWgaI+Mo1Y6JzlWd2HwmHKRgR/DCFdXz5bGxufZ6UA+5L485tzXPnM1CJk mPOmPl4nIA5CeJcjc1swMrZEFNEVoByNldVTPWOLgF3hfmPuyEZhdyQ1GlwgbkrL alyIalLfFJmmfaCBrm0MkVQvxmo9vFTbAZhDEoIAAQ/qPX9ilpX1ONZUMrZQHzMS mHf/9G05gvAmZrlGBpV++t63aE9WtVrZ6ZlKomkHTqzJZeCM3krhqJ6sE+kiCvLg 7H/3+scXiry7TK9D5px/4Cl8z03E5cpK9Krfmd033wsckq78HSjxmDn84G8hyPKW /s2hlLVSnkGlbiy7lQZ7ppB02wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/z3OOd tN7Hirro2V9YohLNjsq1MB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRM3U+H/cQ0aUteok4n4IZbEFIXHr3mnyvgIbsSpf1q6n4uqGdMpAc UGdw25QaZoEDc84eyI6KpoPKOrae3Jt6dIuSSlpolL5r7eUMahINn86meo31tvXF oAGOS8S1Rue2tiFi7K+nyANs4GGaMWkASRFoKiOoJNYckf0wIczvDIXl8LLTg/uO JJC0Pj+YRKxb9mQy1wh+wZvEhEZsijzugQXBcsqajWjcMF92wMkGSzMiXG/uN8dz 7pdLUkOAu+q7DIU0o4BTPsY4MhzReQQYfWQcXB9VODCs0ySh+45Pftj2V9OpjU2i UD+R8U8HISmQnd8CHwg9t0FddnSoyXkT -----END CERTIFICATE-----Generated at Thu Jul 3 23:17:39 2025 by rpki-client