$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: PG6v1S3TRlpDmbqIiGruO8SP7u7Mwb+OT7RKheI+8cY= Subject key identifier: BC:3F:B0:75:50:50:0C:70:28:04:62:71:3A:4B:75:71:D3:D4:85:54 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 34AE Signing time: Fri 22 Aug 2025 14:26:19 +0000 Manifest this update: Fri 22 Aug 2025 14:26:19 +0000 Manifest next update: Fri 29 Aug 2025 14:26:19 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: Sr05at5fAlXTbFzh0nX5UdQuA7W9C+gL+skkAyIwgDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Aug 22 14:26:19 2025 GMT Not After : Aug 29 14:26:19 2025 GMT Subject: CN=68a87e0b-8825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:33:9c:1f:02:c7:56:7f:a4:3a:6f:f7:eb:99: 60:ca:61:34:b0:20:ef:18:04:57:e5:7e:6c:dc:b3: bd:22:3b:4f:1a:ff:14:c1:ce:3f:95:23:e5:e7:b5: 42:4e:a0:99:4e:b4:74:fe:b7:51:48:68:42:a7:69: 63:9c:91:68:6f:77:1f:77:72:a6:6f:86:a3:1e:e2: d6:90:c9:e9:67:94:cc:97:6d:36:d0:5f:69:20:4c: 0e:f0:3f:46:63:8f:71:34:a3:f1:a0:ab:86:c2:18: 46:f8:d4:1e:8a:4c:87:35:67:47:93:85:6b:d0:51: af:4b:73:7d:cb:7d:c0:f4:57:76:a4:48:6b:37:56: c8:c0:24:65:7f:5c:7b:86:2d:c4:7c:61:12:49:25: 66:b4:d8:d4:b1:f0:05:48:f7:af:df:7c:3a:53:13: 03:e5:c6:10:c4:b0:0f:63:9b:4d:c2:58:80:67:ed: 99:24:83:31:e2:c5:fd:1c:23:ed:14:c0:68:f9:f1: 2d:3f:c9:38:28:0e:d2:38:93:17:b7:3a:eb:22:12: c2:9b:a5:e9:77:27:b7:10:fd:85:be:21:1e:e0:71: c9:73:5e:34:44:eb:8a:1a:c7:3d:64:2a:a3:dd:c4: f5:f1:cf:e4:cf:59:9c:25:28:d8:8c:00:1c:a7:4d: f8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3F:B0:75:50:50:0C:70:28:04:62:71:3A:4B:75:71:D3:D4:85:54 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:cd:44:e4:36:af:ee:84:41:1c:9c:79:10:fa:fb:e6:2b:db: 99:e9:79:0b:79:9a:1f:99:36:b0:94:57:7d:33:74:bc:70:af: 7a:a9:d4:27:90:38:01:9f:b2:63:36:f6:8b:26:56:4d:4c:5e: ea:99:68:42:4a:3f:4f:98:a2:ac:37:6c:36:5a:0b:9f:6b:cf: 22:24:cc:65:aa:49:8e:cd:5c:65:1f:2d:d6:36:29:d3:6c:cf: 56:3e:5f:c8:7a:7e:88:c4:c9:3a:6f:cc:d1:5a:d1:e1:de:0d: 8a:9f:e4:40:7a:14:56:a1:7c:de:4b:58:ba:be:0c:be:0a:95: 5e:f8:23:37:30:2d:40:47:2f:ff:65:49:0c:e4:23:94:ad:15: d2:66:5a:2e:05:84:6d:65:f3:81:a1:d2:7b:a8:53:36:bf:6f: ed:a5:3f:df:f1:2a:1f:1f:3d:06:35:59:8d:c1:e2:66:07:79: ba:11:77:74:55:c4:6a:c2:64:fb:06:d2:6f:d8:08:79:7d:e6: 46:76:1d:53:42:0b:fc:55:7f:9f:9a:07:d3:82:81:2f:67:cf: e0:3c:da:e0:5e:7f:e2:9c:8a:77:db:e9:f0:bb:8b:25:a2:6c: 25:4b:57:7d:07:2e:aa:c0:41:4d:30:8d:18:bf:45:ff:88:71: 9e:c5:80:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUwODIyMTQyNjE5WhcNMjUwODI5MTQyNjE5WjAYMRYwFAYD VQQDEw02OGE4N2UwYi04ODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DOcHwLHVn+kOm/365lgymE0sCDvGARX5X5s3LO9IjtPGv8Uwc4/lSPl57VC TqCZTrR0/rdRSGhCp2ljnJFob3cfd3Kmb4ajHuLWkMnpZ5TMl2020F9pIEwO8D9G Y49xNKPxoKuGwhhG+NQeikyHNWdHk4Vr0FGvS3N9y33A9Fd2pEhrN1bIwCRlf1x7 hi3EfGESSSVmtNjUsfAFSPev33w6UxMD5cYQxLAPY5tNwliAZ+2ZJIMx4sX9HCPt FMBo+fEtP8k4KA7SOJMXtzrrIhLCm6Xpdye3EP2FviEe4HHJc140ROuKGsc9ZCqj 3cT18c/kz1mcJSjYjAAcp0349wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLw/sHVQ UAxwKARicTpLdXHT1IVUMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAszUTkNq/uhEEcnHkQ+vvmK9uZ6XkLeZofmTawlFd9M3S8cK96qdQn kDgBn7JjNvaLJlZNTF7qmWhCSj9PmKKsN2w2Wgufa88iJMxlqkmOzVxlHy3WNinT bM9WPl/Ien6IxMk6b8zRWtHh3g2Kn+RAehRWoXzeS1i6vgy+CpVe+CM3MC1ARy// ZUkM5COUrRXSZlouBYRtZfOBodJ7qFM2v2/tpT/f8SofHz0GNVmNweJmB3m6EXd0 VcRqwmT7BtJv2Ah5feZGdh1TQgv8VX+fmgfTgoEvZ8/gPNrgXn/inIp32+nwu4sl omwlS1d9By6qwEFNMI0Yv0X/iHGexYDK -----END CERTIFICATE-----Generated at Sat Aug 23 17:54:59 2025 by rpki-client