$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft File: HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json) Hash identifier: fOieREItcOEv7q3+J9bJ3P+dX27whnGpIzHiojms8s8= Subject key identifier: BB:0D:4B:C0:6F:3A:26:E9:A1:86:7C:7C:E2:70:7B:D5:93:3F:24:0B Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft Manifest number: 34C0 Signing time: Fri 22 Aug 2025 14:57:30 +0000 Manifest this update: Fri 22 Aug 2025 14:57:30 +0000 Manifest next update: Fri 29 Aug 2025 14:57:30 +0000 Files and hashes: 1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: Gs4FiDlngfuiFK3zA3DyVw37DbYeSkUIJI4bDFh9LQs=) 2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Aug 22 14:57:30 2025 GMT Not After : Aug 29 14:57:30 2025 GMT Subject: CN=68a8855a-6179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:21:6d:bb:19:fc:93:9b:3a:7c:22:3c:29:e9: a3:1a:a6:ed:44:08:96:cf:bd:03:ee:6b:03:16:24: 48:45:8f:29:0a:37:f0:76:4f:47:34:47:de:69:59: 46:67:9f:1b:fa:e9:d3:b7:bc:e4:28:0f:81:3d:de: d8:39:75:98:45:15:fb:bf:f4:43:39:0c:07:3c:b7: c8:43:91:13:a0:73:6f:71:e0:ea:6c:d2:eb:cd:e7: 3d:de:64:0f:da:ca:9c:1b:53:5f:dd:ce:07:b2:d4: 1d:6b:80:0a:aa:4a:8e:11:bf:2a:03:b1:d1:25:bf: c7:dd:b7:1b:d5:15:05:09:bc:3f:46:6e:60:0f:f7: c5:e0:c5:e1:be:56:7d:20:04:71:3c:2e:ef:6b:05: 48:64:6b:d1:d1:d8:25:a1:0e:a7:16:8b:84:03:fe: 08:86:38:55:a6:79:10:4d:bd:ea:1d:64:6e:2c:63: e8:d6:49:d1:ce:09:e7:68:ab:da:6c:16:dd:9f:fa: 00:d8:2c:e3:8d:9d:04:1b:84:c6:f9:11:af:f8:84: b6:a0:96:16:aa:be:c6:7f:9f:5e:f6:ce:b4:dc:e3: 9b:df:8c:26:9d:8c:7b:c7:a3:36:fb:59:c9:9a:ca: 57:65:90:0d:bf:11:59:59:db:9d:ed:22:53:50:d0: 06:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0D:4B:C0:6F:3A:26:E9:A1:86:7C:7C:E2:70:7B:D5:93:3F:24:0B X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:3e:9a:1c:7a:e6:f1:80:94:b8:cb:5f:f9:b3:01:df:30:96: b4:5e:af:f1:bf:c9:11:50:c3:7d:f5:1e:f9:9d:64:27:ea:00: 2f:d9:59:d9:77:07:7d:89:fc:d5:9d:1c:13:6b:31:2c:04:0d: 39:2c:27:7f:21:75:d3:ce:6c:63:f0:b4:65:9f:18:da:71:a0: 77:78:0f:a5:3f:48:bf:3e:91:70:d8:3d:05:a7:a3:ad:34:c1: 5d:25:15:90:54:39:5a:8d:ee:dc:c1:ba:1e:e2:c9:97:6b:fa: 17:3e:75:b0:07:d1:14:58:b6:fb:83:a3:64:6b:ed:44:90:61: 71:0a:7b:02:df:23:68:db:19:7c:61:12:dd:10:74:97:fe:e9: cf:cc:de:c0:c6:5c:08:b9:ac:10:50:f1:ca:51:ec:df:1a:14: af:ca:86:7e:19:61:06:15:f3:c8:1a:c6:fd:bc:33:cf:a0:f0: 9d:c5:06:6c:62:87:19:84:a6:66:ba:f7:7e:95:d6:af:87:3b: 92:8d:1d:c7:07:21:e4:ac:70:96:ce:1e:2e:b3:66:25:34:9f: 2b:35:f0:e4:fe:08:1d:2b:a0:cb:d8:34:57:55:73:45:0e:a6: 5d:6e:12:f0:6b:2b:15:c5:b3:0d:65:0c:a2:d7:fa:a9:32:12: 6a:34:e2:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjUwODIyMTQ1NzMwWhcNMjUwODI5MTQ1NzMwWjAYMRYwFAYD VQQDEw02OGE4ODU1YS02MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCFtuxn8k5s6fCI8KemjGqbtRAiWz70D7msDFiRIRY8pCjfwdk9HNEfeaVlG Z58b+unTt7zkKA+BPd7YOXWYRRX7v/RDOQwHPLfIQ5EToHNvceDqbNLrzec93mQP 2sqcG1Nf3c4HstQda4AKqkqOEb8qA7HRJb/H3bcb1RUFCbw/Rm5gD/fF4MXhvlZ9 IARxPC7vawVIZGvR0dgloQ6nFouEA/4IhjhVpnkQTb3qHWRuLGPo1knRzgnnaKva bBbdn/oA2CzjjZ0EG4TG+RGv+IS2oJYWqr7Gf59e9s603OOb34wmnYx7x6M2+1nJ mspXZZANvxFZWdud7SJTUNAGUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsNS8Bv OibpoYZ8fOJwe9WTPyQLMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNBOC84NzAzMjI1ODFEOUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpE OF9ZeVBTdVJCd3Z5UjlhR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdPpoceubxgJS4y1/5swHfMJa0Xq/xv8kRUMN99R75nWQn6gAv2VnZ dwd9ifzVnRwTazEsBA05LCd/IXXTzmxj8LRlnxjacaB3eA+lP0i/PpFw2D0Fp6Ot NMFdJRWQVDlaje7cwboe4smXa/oXPnWwB9EUWLb7g6Nka+1EkGFxCnsC3yNo2xl8 YRLdEHSX/unPzN7AxlwIuawQUPHKUezfGhSvyoZ+GWEGFfPIGsb9vDPPoPCdxQZs YocZhKZmuvd+ldavhzuSjR3HByHkrHCWzh4us2YlNJ8rNfDk/ggdK6DL2DRXVXNF DqZdbhLwaysVxbMNZQyi1/qpMhJqNOJm -----END CERTIFICATE-----Generated at Sat Aug 23 21:01:43 2025 by rpki-client