$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: mLx/tUgOZuinu4WBV/oLpR7Es1mm6SFMfGgmwq+fjrI= Subject key identifier: DC:A8:EF:A5:5C:70:23:CB:45:D6:4B:55:BF:6A:EC:97:22:7C:93:4C Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 30 Signing time: Sat 23 Aug 2025 07:54:39 +0000 Manifest this update: Sat 23 Aug 2025 07:54:39 +0000 Manifest next update: Sat 30 Aug 2025 07:54:39 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: 6/HXn6i73CfgT71970o3h3nd2TY6B5JjcD7EfSHrE2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Aug 23 07:54:39 2025 GMT Not After : Aug 30 07:54:39 2025 GMT Subject: CN=68a973bf-9660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:35:0f:d7:91:b8:05:dc:c0:c9:4f:49:c3:b6: d6:bd:ae:ce:59:6c:fd:79:d9:8f:74:6b:6e:37:c8: 6b:26:a2:61:74:5b:fe:20:8c:7f:0e:0c:0e:bd:04: 5a:d0:68:4d:a1:8e:98:2f:5f:83:0b:8c:ad:aa:77: 94:03:94:66:61:1e:6b:d4:af:30:8b:65:8d:20:6a: 22:56:4a:f5:06:04:85:65:28:17:cb:69:7b:55:8e: 6c:cf:69:17:6a:1f:85:b0:90:0a:21:61:3d:52:a0: 0b:d7:48:f6:6c:6c:1d:50:61:b7:54:81:a7:9f:0c: 39:96:cb:85:53:fb:a2:4c:2b:74:2f:0a:96:6e:a2: d5:0a:26:26:55:19:71:a5:58:18:8a:c4:1e:32:63: 08:e4:37:03:08:f4:40:7a:fb:06:35:10:d4:3e:1c: 64:7e:06:80:36:ee:b2:0e:8f:b8:74:a6:12:ac:04: a1:6b:34:79:b2:e7:08:c1:4c:84:f2:8f:3d:67:77: 2b:5f:6c:2e:9e:40:bb:eb:0c:27:44:a1:15:5a:75: 91:09:e7:d6:fb:77:8a:1b:ec:54:da:a1:af:b1:96: 41:27:23:57:28:f8:a3:d8:ec:88:49:d1:45:17:cf: 5d:3b:78:17:29:92:39:a2:43:a6:1d:a9:cd:bf:bf: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A8:EF:A5:5C:70:23:CB:45:D6:4B:55:BF:6A:EC:97:22:7C:93:4C X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a5:a5:ee:3e:94:5b:44:f6:bf:7f:c9:76:49:2a:31:db:22: e7:3a:e6:5e:80:b4:53:57:21:16:2d:76:31:e7:57:da:27:3b: 6b:29:a8:76:07:bc:13:70:bf:71:b9:cc:d6:be:59:d3:a1:29: 47:d5:dd:86:31:ec:bc:e8:af:7e:2b:a1:51:22:75:c0:00:66: e5:28:cb:d1:16:2e:4c:b0:05:68:78:e1:eb:17:8c:1c:22:9c: c5:26:e9:ed:0a:a1:60:8a:3e:22:d5:db:76:29:35:ab:e6:a6: a4:55:ba:18:f8:8e:1d:af:1c:b0:79:42:2e:d5:25:0f:e7:f8: 21:d3:75:e8:a9:90:d2:26:66:c6:73:39:ca:90:34:98:29:a9: 98:3d:0c:d8:c0:7c:cc:77:94:3d:50:ab:af:9a:6e:b1:57:87: 73:ac:1a:18:a1:b4:8f:38:ec:52:b0:ea:6a:7d:57:6d:f1:a0: 7f:5b:81:14:58:54:29:85:f8:7d:76:93:81:dd:ae:cf:6e:3b: 80:12:7a:7f:17:99:83:2f:9e:4e:c2:b1:c1:86:b6:d5:75:b0: c1:16:07:73:e0:58:a2:4e:58:c3:98:82:85:85:93:38:d3:ea: 8d:2b:ed:3e:c4:93:c2:95:c1:d1:75:3d:a5:00:6c:8f:f0:cd: 56:33:48:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTA4MjMwNzU0MzlaFw0yNTA4MzAwNzU0MzlaMBgxFjAUBgNV BAMTDTY4YTk3M2JmLTk2NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhNQ/XkbgF3MDJT0nDtta9rs5ZbP152Y90a243yGsmomF0W/4gjH8ODA69BFrQ aE2hjpgvX4MLjK2qd5QDlGZhHmvUrzCLZY0gaiJWSvUGBIVlKBfLaXtVjmzPaRdq H4WwkAohYT1SoAvXSPZsbB1QYbdUgaefDDmWy4VT+6JMK3QvCpZuotUKJiZVGXGl WBiKxB4yYwjkNwMI9EB6+wY1ENQ+HGR+BoA27rIOj7h0phKsBKFrNHmy5wjBTITy jz1ndytfbC6eQLvrDCdEoRVadZEJ59b7d4ob7FTaoa+xlkEnI1co+KPY7IhJ0UUX z107eBcpkjmiQ6Ydqc2/v0JfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3KjvpVxw I8tF1ktVv2rslyJ8k0wwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALClpe4+lFtE9r9/yXZJKjHbIuc65l6AtFNXIRYtdjHnV9onO2spqHYH vBNwv3G5zNa+WdOhKUfV3YYx7Lzor34roVEidcAAZuUoy9EWLkywBWh44esXjBwi nMUm6e0KoWCKPiLV23YpNavmpqRVuhj4jh2vHLB5Qi7VJQ/n+CHTdeipkNImZsZz OcqQNJgpqZg9DNjAfMx3lD1Qq6+abrFXh3OsGhihtI847FKw6mp9V23xoH9bgRRY VCmF+H12k4Hdrs9uO4ASen8XmYMvnk7CscGGttV1sMEWB3PgWKJOWMOYgoWFkzjT 6o0r7T7Ek8KVwdF1PaUAbI/wzVYzSAE= -----END CERTIFICATE-----Generated at Sun Aug 24 04:56:52 2025 by rpki-client