$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: GUoj6c4tTt/Jnt9xSqoW61Da9kmRVFtbOqP/Orc5fZI= Subject key identifier: F9:71:FC:BA:F7:94:4F:28:9B:24:25:05:FF:67:4A:53:7C:32:5A:45 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 08CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 08C1 Signing time: Fri 22 Aug 2025 20:35:36 +0000 Manifest this update: Fri 22 Aug 2025 20:35:36 +0000 Manifest next update: Fri 29 Aug 2025 20:35:36 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: ZpuvE9wZnrmB4vdlvUH3P+NutQaXSOBPFpqpHGXr63U=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: pJopSUouAomRS7bBbLiExTbU2TzCWgsGbKH4r8LjMrI=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: NDjkgreHok48ic1Su9+HPGIeiSQ2Z7P+GcpTGnpZzHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Aug 22 20:35:36 2025 GMT Not After : Aug 29 20:35:36 2025 GMT Subject: CN=68a8d498-e148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:38:41:3a:d0:6c:06:4a:83:bb:e7:fb:c4:4a: 7b:e6:b9:ce:5c:5e:49:02:e5:5d:42:cd:c8:ee:66: 15:a9:61:dd:c5:30:0b:ee:f1:65:bc:16:40:f2:14: b1:46:0f:d1:c2:2f:10:82:e2:b8:4a:c9:3e:a0:ad: 2e:9b:46:b5:c8:c2:71:a5:c3:2c:fb:51:a1:7b:53: 9d:02:e9:a8:24:35:30:75:ec:1d:a7:b1:2f:3e:45: ad:aa:06:cd:05:93:86:d7:cf:a2:00:51:f3:24:ed: 14:7f:ac:2a:d5:eb:82:16:86:e1:fd:a5:29:cf:e4: a6:a8:27:0d:f3:36:92:d9:33:67:d4:2e:6e:e4:b1: 36:0f:a5:4d:a3:8a:3e:83:d9:ce:ba:97:6a:0b:41: 66:40:34:ca:95:75:04:99:59:a6:25:eb:4b:f3:3a: 1b:07:fb:e0:30:33:45:63:e1:8c:f0:d2:c7:99:e6: c6:a1:5a:cd:b3:f7:8f:95:7f:40:39:4a:87:6b:e2: 9d:5f:0a:9d:b4:48:50:9d:93:2a:1d:b9:97:f2:64: 3e:3c:69:03:44:ea:e3:f4:bf:08:79:e0:6f:ad:d3: e4:8c:23:7c:28:ae:36:b0:57:c9:09:16:07:12:92: be:44:61:8f:45:bd:a9:a6:28:f4:36:4a:2e:8a:0c: 5e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:71:FC:BA:F7:94:4F:28:9B:24:25:05:FF:67:4A:53:7C:32:5A:45 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:dc:1f:5e:c2:7e:05:07:64:f6:0b:07:52:36:13:a6:23:03: a5:a4:9b:81:81:7b:e5:cd:23:0b:d4:cb:5b:a6:1b:d3:e2:bb: 29:04:5c:1f:2b:7f:f3:62:38:4e:8e:4e:6a:42:60:95:50:c6: 73:77:d3:fa:6d:00:5c:22:07:af:e8:97:7a:01:f7:02:0e:a7: 13:01:e4:95:ee:85:cb:ae:db:08:d7:63:ba:8d:3e:68:cf:84: dc:48:2b:ee:15:cf:f5:c4:88:09:08:0b:cc:c2:52:e1:c8:48: cb:5c:5e:68:c4:26:31:ef:4f:58:2f:75:9f:09:b0:69:98:c6: b6:1a:c2:a8:83:a4:ba:b2:49:03:0f:f8:aa:66:2e:45:a5:2c: 25:2d:57:63:f0:30:73:49:b0:2b:8d:29:e2:67:1d:7f:f0:d5: ed:bc:30:20:b8:ea:83:3d:ae:06:bb:3c:32:82:26:fe:94:47: d5:4d:c6:6a:1c:80:f6:6b:f5:bc:a0:5d:5a:04:4b:e3:30:78: 95:dd:f0:d8:f2:4f:b8:80:2f:70:2e:0e:b7:db:80:f3:dd:1a: f2:c9:d8:8b:9d:b3:1b:7e:cb:e5:8e:f5:7f:b5:7e:3a:55:b0: 3c:c7:3e:05:0f:53:68:e0:14:30:e5:02:52:5a:90:44:ff:1d: 86:98:20:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjUwODIyMjAzNTM2WhcNMjUwODI5MjAzNTM2WjAYMRYwFAYD VQQDEw02OGE4ZDQ5OC1lMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ThBOtBsBkqDu+f7xEp75rnOXF5JAuVdQs3I7mYVqWHdxTAL7vFlvBZA8hSx Rg/Rwi8QguK4Ssk+oK0um0a1yMJxpcMs+1Ghe1OdAumoJDUwdewdp7EvPkWtqgbN BZOG18+iAFHzJO0Uf6wq1euCFobh/aUpz+SmqCcN8zaS2TNn1C5u5LE2D6VNo4o+ g9nOupdqC0FmQDTKlXUEmVmmJetL8zobB/vgMDNFY+GM8NLHmebGoVrNs/ePlX9A OUqHa+KdXwqdtEhQnZMqHbmX8mQ+PGkDROrj9L8IeeBvrdPkjCN8KK42sFfJCRYH EpK+RGGPRb2ppij0NkouigxeVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlx/Lr3 lE8omyQlBf9nSlN8MlpFMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd3B9ewn4FB2T2CwdSNhOmIwOlpJuBgXvlzSML1MtbphvT4rspBFwf K3/zYjhOjk5qQmCVUMZzd9P6bQBcIgev6Jd6AfcCDqcTAeSV7oXLrtsI12O6jT5o z4TcSCvuFc/1xIgJCAvMwlLhyEjLXF5oxCYx709YL3WfCbBpmMa2GsKog6S6skkD D/iqZi5FpSwlLVdj8DBzSbArjSniZx1/8NXtvDAguOqDPa4Guzwygib+lEfVTcZq HID2a/W8oF1aBEvjMHiV3fDY8k+4gC9wLg6324Dz3RryydiLnbMbfsvljvV/tX46 VbA8xz4FD1No4BQw5QJSWpBE/x2GmCD8 -----END CERTIFICATE-----Generated at Sat Aug 23 15:46:57 2025 by rpki-client