$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: qqmeSablGLYMMepqrrvqv/CXEXqOxLutR0Hg4YJBNWI= Subject key identifier: 27:9E:86:12:B0:BC:30:20:C3:81:14:C1:F2:D6:25:35:8F:44:56:A5 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 090D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0906 Signing time: Fri 22 Aug 2025 20:27:41 +0000 Manifest this update: Fri 22 Aug 2025 20:27:40 +0000 Manifest next update: Fri 29 Aug 2025 20:27:40 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: kw7dg3GJ+3PR4AJWj0G8nYK0li6HeeSCcxzVFm+yB+o=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2317 (0x90d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Aug 22 20:27:40 2025 GMT Not After : Aug 29 20:27:40 2025 GMT Subject: CN=68a8d2bd-b5b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:71:59:27:4a:c6:91:bb:ea:a5:48:15:be: 52:fa:d4:44:b7:0c:33:44:7f:75:a5:f8:20:27:69: f1:ad:71:0e:64:50:a8:54:43:73:68:8c:90:d6:f7: 29:bb:18:db:ec:cf:05:9c:26:79:2d:d5:35:e6:2a: 61:7d:42:b6:2b:a5:da:f2:3b:72:54:4e:3f:d2:9c: 77:1c:ab:0a:21:41:29:29:44:1a:40:c0:ac:c7:79: 5b:6a:e1:83:61:0f:fa:8a:2d:67:4d:1a:7e:f7:e5: 2e:60:6f:29:31:32:47:f8:c3:e2:71:cf:6c:36:c4: 33:74:41:48:6e:eb:36:30:36:5e:3e:86:d2:58:a5: cc:74:08:73:22:01:a3:4a:8a:da:7a:b2:5c:6d:54: 35:00:47:11:42:2d:fc:58:3f:dd:45:65:4d:57:f9: 46:ed:e5:ed:e4:ec:59:d7:35:01:66:1d:75:82:11: 6a:54:7b:f7:5f:4e:d1:2b:9f:d4:af:f5:cb:c5:19: ba:e8:98:6b:d4:85:54:cf:43:38:f5:7f:58:b2:c1: d3:a7:a6:f2:d4:af:5b:5d:3e:43:ec:5e:49:10:54: 5b:3f:0b:76:49:57:f5:b9:97:19:c7:fa:47:f4:0a: c8:95:80:8b:60:fd:34:81:b3:7b:63:d4:13:eb:d8: e2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9E:86:12:B0:BC:30:20:C3:81:14:C1:F2:D6:25:35:8F:44:56:A5 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:ff:6c:db:55:29:29:c3:3f:44:85:72:0f:a9:e3:e4:bc:9e: f5:db:0e:33:a5:29:ec:ca:01:49:8c:36:f8:1c:7a:0d:78:84: e9:37:cd:91:4e:4b:fc:48:aa:77:33:9c:74:19:ab:ba:21:96: 90:c7:4b:2d:4a:3a:11:7b:25:e4:8a:63:59:ff:d9:57:03:82: a0:55:e6:ea:d4:ad:ae:8c:a0:7f:a1:ea:23:e9:b5:b4:cd:4a: 84:63:5b:1a:88:a5:96:da:e0:e6:08:37:08:21:d8:10:46:05: e6:02:5f:f2:54:ae:50:a1:74:db:20:68:58:f5:10:49:f9:55: b2:48:e7:cd:39:5e:8d:d9:3a:76:c4:74:ba:48:80:6e:4f:c7: d5:65:72:fa:50:ac:df:59:fd:2e:f8:6c:fb:5d:b4:a2:59:68: 28:49:77:9d:01:c5:24:68:8d:8e:6b:4c:51:5b:86:f8:d9:59: 45:c1:9f:a2:7c:f1:b7:82:28:50:57:ef:ac:97:ad:b0:61:43: 4a:88:db:33:84:96:4f:e1:53:fb:8c:a1:44:97:ca:57:68:fc: cc:ad:01:49:43:86:4a:77:f3:8c:ed:c1:07:e4:17:94:2c:ec: e5:d5:92:0f:0f:91:55:cf:69:f7:88:cc:12:9b:ca:51:09:22: b8:2b:d4:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwODIyMjAyNzQwWhcNMjUwODI5MjAyNzQwWjAYMRYwFAYD VQQDEw02OGE4ZDJiZC1iNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvodxWSdKxpG76qVIFb5S+tREtwwzRH91pfggJ2nxrXEOZFCoVENzaIyQ1vcp uxjb7M8FnCZ5LdU15iphfUK2K6Xa8jtyVE4/0px3HKsKIUEpKUQaQMCsx3lbauGD YQ/6ii1nTRp+9+UuYG8pMTJH+MPicc9sNsQzdEFIbus2MDZePobSWKXMdAhzIgGj SoraerJcbVQ1AEcRQi38WD/dRWVNV/lG7eXt5OxZ1zUBZh11ghFqVHv3X07RK5/U r/XLxRm66Jhr1IVUz0M49X9YssHTp6by1K9bXT5D7F5JEFRbPwt2SVf1uZcZx/pH 9ArIlYCLYP00gbN7Y9QT69ji9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeehhKw vDAgw4EUwfLWJTWPRFalMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+/2zbVSkpwz9EhXIPqePkvJ712w4zpSnsygFJjDb4HHoNeITpN82R Tkv8SKp3M5x0Gau6IZaQx0stSjoReyXkimNZ/9lXA4KgVebq1K2ujKB/oeoj6bW0 zUqEY1saiKWW2uDmCDcIIdgQRgXmAl/yVK5QoXTbIGhY9RBJ+VWySOfNOV6N2Tp2 xHS6SIBuT8fVZXL6UKzfWf0u+Gz7XbSiWWgoSXedAcUkaI2Oa0xRW4b42VlFwZ+i fPG3gihQV++sl62wYUNKiNszhJZP4VP7jKFEl8pXaPzMrQFJQ4ZKd/OM7cEH5BeU LOzl1ZIPD5FVz2n3iMwSm8pRCSK4K9TE -----END CERTIFICATE-----Generated at Sat Aug 23 12:35:46 2025 by rpki-client