$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: KGKA7dS2uO7D+XEstgIJYwwWINxm6l0uJEsgmDzGXhk= Subject key identifier: 89:2C:F1:C4:C9:A7:D6:ED:83:6E:6F:98:20:43:04:2D:ED:97:C5:46 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 0263 Signing time: Sat 23 Aug 2025 01:59:44 +0000 Manifest this update: Sat 23 Aug 2025 01:59:43 +0000 Manifest next update: Sat 30 Aug 2025 01:59:43 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: XkP5oevmh3mPelzLRB/pRh6Hmta2y0bcspj+vY77TiA=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: hGQixG8nIJXVA0JQORYC8z0pOj4UbTutn+kvPqmH25s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Aug 23 01:59:43 2025 GMT Not After : Aug 30 01:59:43 2025 GMT Subject: CN=68a92090-4e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:92:cf:0e:b5:af:9e:4b:3f:db:8b:34:28:24: 22:a8:ad:b4:d5:bc:25:ae:53:81:a9:3b:cc:67:9e: d4:99:23:5e:4b:c6:07:05:90:97:22:bc:e6:f7:f5: 55:dc:10:f1:7a:f0:3d:a2:eb:80:c6:f6:b8:cc:c0: 11:4c:2f:0c:58:10:32:a4:d1:cf:13:9f:1d:9b:c5: ee:af:12:70:be:bb:7c:55:f7:50:75:93:bd:fc:8a: 43:b7:9d:3a:e0:3f:43:e2:87:d1:db:2c:50:c8:7f: f4:54:8a:df:62:3a:e1:04:e3:71:f9:b9:45:71:97: 98:9f:20:88:0c:80:63:d1:50:e2:eb:70:c9:7f:7a: 9d:0a:54:29:84:19:9e:19:70:ff:ee:74:ad:c0:b4: 81:9b:47:88:4a:b7:65:8a:88:e2:e7:fb:ec:7d:67: 46:2e:66:3f:98:50:d8:06:00:be:c2:32:81:94:3a: de:fc:32:db:18:66:fb:37:3f:53:07:03:48:2d:32: 62:1a:d6:69:36:6c:c7:fa:c0:3d:10:ba:d2:91:5e: 28:9e:d0:3e:53:39:41:be:8c:0f:2d:92:5f:71:da: 68:45:0c:50:2f:82:d9:28:7f:07:d8:76:10:32:e5: da:c4:7c:ad:04:4d:00:d5:48:19:a9:09:48:9d:85: 29:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2C:F1:C4:C9:A7:D6:ED:83:6E:6F:98:20:43:04:2D:ED:97:C5:46 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:6d:e0:c1:9b:54:a3:e5:17:0d:1b:18:07:3b:ee:7d:12:60: bf:97:9d:f5:e1:bd:33:fd:cd:8d:3d:b4:49:31:8b:28:7b:a1: e5:53:22:34:cb:2e:7f:37:f3:07:ed:2a:3b:6e:4c:da:c4:99: 85:6f:f8:fb:25:d5:ac:99:53:7e:f6:a7:f9:d0:d3:65:1c:95: e9:aa:fa:d7:fb:30:c7:66:b3:2d:2e:9b:52:18:84:2b:b6:80: 38:5d:e8:28:a9:5d:7c:07:ae:57:d5:e7:dd:de:a6:07:63:aa: c2:ce:22:3c:8e:83:38:7a:0a:47:62:de:26:81:28:03:cd:58: 1a:89:64:b1:fc:18:9b:a1:c7:c3:9c:68:48:4b:6f:e9:49:00: b3:a8:2d:25:64:8c:4f:fe:a0:8a:6f:2e:05:45:9e:92:81:48: 2d:d5:41:fa:d8:0e:67:7d:4c:91:66:21:80:6c:5f:cf:62:89: b9:2c:07:c5:24:71:ec:11:e3:4c:29:8a:24:9c:60:e7:09:91: d3:4e:1a:90:05:50:e8:4c:b1:a6:6c:64:85:4e:e6:a7:87:61: 92:f4:7e:cf:02:79:47:78:41:7d:70:bf:45:6f:7b:89:d0:b8: 24:ed:9b:89:68:d9:86:dc:bc:b4:c0:d0:c7:c7:c0:b7:e2:56: 53:27:a6:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUwODIzMDE1OTQzWhcNMjUwODMwMDE1OTQzWjAYMRYwFAYD VQQDEw02OGE5MjA5MC00ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJLPDrWvnks/24s0KCQiqK201bwlrlOBqTvMZ57UmSNeS8YHBZCXIrzm9/VV 3BDxevA9ouuAxva4zMARTC8MWBAypNHPE58dm8XurxJwvrt8VfdQdZO9/IpDt506 4D9D4ofR2yxQyH/0VIrfYjrhBONx+blFcZeYnyCIDIBj0VDi63DJf3qdClQphBme GXD/7nStwLSBm0eISrdlioji5/vsfWdGLmY/mFDYBgC+wjKBlDre/DLbGGb7Nz9T BwNILTJiGtZpNmzH+sA9ELrSkV4ontA+UzlBvowPLZJfcdpoRQxQL4LZKH8H2HYQ MuXaxHytBE0A1UgZqQlInYUpXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIks8cTJ p9btg25vmCBDBC3tl8VGMB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrbeDBm1Sj5RcNGxgHO+59EmC/l5314b0z/c2NPbRJMYsoe6HlUyI0 yy5/N/MH7So7bkzaxJmFb/j7JdWsmVN+9qf50NNlHJXpqvrX+zDHZrMtLptSGIQr toA4XegoqV18B65X1efd3qYHY6rCziI8joM4egpHYt4mgSgDzVgaiWSx/BibocfD nGhIS2/pSQCzqC0lZIxP/qCKby4FRZ6SgUgt1UH62A5nfUyRZiGAbF/PYom5LAfF JHHsEeNMKYoknGDnCZHTThqQBVDoTLGmbGSFTuanh2GS9H7PAnlHeEF9cL9Fb3uJ 0Lgk7ZuJaNmG3Ly0wNDHx8C34lZTJ6Z6 -----END CERTIFICATE-----Generated at Sat Aug 23 20:32:16 2025 by rpki-client