$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: JvcyUK9FECobDQQBXYZ0q5Csd5leAz0Eq42gR/4gZQY= Subject key identifier: 0F:1B:C7:92:EA:39:D5:3F:F0:CF:60:29:74:A8:90:9D:A7:24:2C:35 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 0249 Signing time: Thu 03 Jul 2025 02:14:35 +0000 Manifest this update: Thu 03 Jul 2025 02:14:35 +0000 Manifest next update: Thu 10 Jul 2025 02:14:35 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: /DsJRjHfl+7qjF8Ee5C2tjFVxuwCu653IUE5xZG+FJg=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: hGQixG8nIJXVA0JQORYC8z0pOj4UbTutn+kvPqmH25s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Jul 3 02:14:35 2025 GMT Not After : Jul 10 02:14:35 2025 GMT Subject: CN=6865e78b-3bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:6a:22:2e:da:94:03:d5:91:42:ea:26:6e: f5:4d:44:b0:58:df:c9:f6:7d:de:85:8d:25:d1:a5: f6:eb:e1:24:d7:2f:4d:82:2d:ae:f9:85:5d:2f:50: 1c:0c:f1:40:3c:24:85:6c:43:b2:df:65:ca:84:14: bf:a0:34:e8:80:f5:fc:f7:20:b9:ff:97:f3:43:5b: d8:b9:6f:d3:93:f4:e3:b7:10:7a:52:6f:d2:44:3e: 8d:33:bb:b0:85:08:55:7f:7a:6f:33:f5:c0:d2:4f: 5d:0b:d9:86:08:67:a9:52:0e:d7:df:58:18:fd:47: a4:d0:ec:be:e8:46:40:53:d8:ac:be:c8:cf:3c:0a: 7f:f0:ef:4b:71:f4:48:ea:ac:75:9c:2f:d1:14:1e: 61:55:54:a8:5f:ae:ba:7c:41:41:96:fb:80:5f:77: 09:98:bf:fb:6f:b8:af:c4:77:b0:f2:63:d8:0a:4d: 74:1f:ec:49:b9:df:30:c5:72:69:2b:1d:34:7d:54: e4:b2:50:46:28:81:29:a5:f8:91:9f:6e:a5:a9:c5: 8a:8f:79:77:3d:59:11:c3:7f:81:86:ea:fa:cb:e5: 02:75:dc:5b:dc:b0:1c:b8:69:94:83:c9:06:9f:4d: 64:00:74:c4:1e:d3:62:8f:51:4c:08:0f:52:78:f9: 5d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1B:C7:92:EA:39:D5:3F:F0:CF:60:29:74:A8:90:9D:A7:24:2C:35 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:ce:95:f5:3a:c0:78:6a:56:d5:4b:f9:84:b0:ba:1d:23:9b: a9:51:c2:05:55:ff:b1:7a:de:9c:a8:97:d4:fc:06:db:bd:16: 9f:4b:28:e0:9f:7d:ce:89:2d:b3:ec:71:64:6d:93:a4:e0:ce: f3:8e:d0:58:a2:03:ea:59:a9:c2:b3:f1:0b:5e:94:4c:4d:b5: ef:a9:9f:99:98:39:3e:64:6a:4c:aa:fa:6b:fe:29:f2:56:67: 74:f8:0c:00:fe:9a:28:bd:38:71:fc:98:88:ab:54:99:92:93: 86:f1:45:79:4f:08:98:e4:42:48:7c:59:63:65:6b:05:a5:2d: aa:81:7b:52:88:cc:f7:1f:76:aa:54:c3:11:1e:9b:8d:57:68: 44:c6:a1:0a:bb:06:c8:46:e3:45:a1:10:cb:3f:7a:a1:af:14: c1:4a:ed:cd:be:bd:c5:2b:a3:62:57:d9:e7:8e:8a:f2:6f:37: 16:28:78:b6:e2:09:8d:17:5f:16:e5:e4:8f:cb:bb:fb:a0:c3: cb:29:2a:8f:bd:41:85:69:66:b8:a2:4e:07:e1:f6:5d:92:de: 61:c3:db:17:39:bb:eb:41:aa:cf:77:0f:b4:22:87:da:90:51: 91:0a:87:d7:4d:c4:6c:f8:d3:4f:d5:96:93:ff:fb:27:1e:b4: 75:ec:f1:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUwNzAzMDIxNDM1WhcNMjUwNzEwMDIxNDM1WjAYMRYwFAYD VQQDEw02ODY1ZTc4Yi0zYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4NqIi7alAPVkULqJm71TUSwWN/J9n3ehY0l0aX26+Ek1y9Ngi2u+YVdL1Ac DPFAPCSFbEOy32XKhBS/oDTogPX89yC5/5fzQ1vYuW/Tk/TjtxB6Um/SRD6NM7uw hQhVf3pvM/XA0k9dC9mGCGepUg7X31gY/Uek0Oy+6EZAU9isvsjPPAp/8O9LcfRI 6qx1nC/RFB5hVVSoX666fEFBlvuAX3cJmL/7b7ivxHew8mPYCk10H+xJud8wxXJp Kx00fVTkslBGKIEppfiRn26lqcWKj3l3PVkRw3+Bhur6y+UCddxb3LAcuGmUg8kG n01kAHTEHtNij1FMCA9SePlduwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8bx5Lq OdU/8M9gKXSokJ2nJCw1MB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/zpX1OsB4albVS/mEsLodI5upUcIFVf+xet6cqJfU/AbbvRafSyjg n33OiS2z7HFkbZOk4M7zjtBYogPqWanCs/ELXpRMTbXvqZ+ZmDk+ZGpMqvpr/iny Vmd0+AwA/poovThx/JiIq1SZkpOG8UV5TwiY5EJIfFljZWsFpS2qgXtSiMz3H3aq VMMRHpuNV2hExqEKuwbIRuNFoRDLP3qhrxTBSu3Nvr3FK6NiV9nnjorybzcWKHi2 4gmNF18W5eSPy7v7oMPLKSqPvUGFaWa4ok4H4fZdkt5hw9sXObvrQarPdw+0Iofa kFGRCofXTcRs+NNP1ZaT//snHrR17PHQ -----END CERTIFICATE-----Generated at Fri Jul 4 19:07:14 2025 by rpki-client