$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: B6y7pswP9ukvZob+UhL0Dh3/ni+q0bQLdNT6i2lxeTE= Subject key identifier: B3:40:A3:E9:F5:49:8C:BB:E5:1B:0C:FE:77:C0:2A:15:F9:6A:F6:08 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 2F Signing time: Sat 23 Aug 2025 07:57:35 +0000 Manifest this update: Sat 23 Aug 2025 07:57:34 +0000 Manifest next update: Sat 30 Aug 2025 07:57:34 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: HCRXUR1puqOtZKwO2lP5Kv/1N4L+vu/R2sTCCg9uXhI=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Aug 23 07:57:34 2025 GMT Not After : Aug 30 07:57:34 2025 GMT Subject: CN=68a9746f-48fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:4c:14:b8:bb:c7:84:20:64:47:d1:cc:80: 20:b0:e6:a5:05:07:0d:3f:a9:b4:b2:c9:ed:3e:41: e5:fb:89:ed:4e:a0:40:04:b6:df:7c:ed:5d:34:d5: 91:ad:ae:5e:b8:1a:ba:d8:65:43:96:5d:74:d4:ae: 23:d5:81:e3:9f:76:39:79:a6:66:5d:fd:02:40:5b: db:32:68:4e:e5:da:4d:3c:d0:0f:5c:b4:64:2e:0f: 22:2c:6a:c3:17:10:87:ae:5c:a0:31:db:80:eb:30: 0c:a1:0a:c8:8e:83:aa:bb:fa:e6:c3:c2:60:f4:c4: d6:3e:49:ab:fe:fe:a8:c5:9b:d6:3c:d1:e0:5a:95: 82:25:0b:17:7f:cc:24:e0:8d:8f:70:76:b3:02:4a: 9e:55:a2:1d:75:5d:ac:70:54:5d:6f:eb:79:d1:5e: cd:31:43:7c:ba:21:ab:17:c7:83:81:44:7d:42:90: cf:05:2c:f1:a9:cc:c8:82:88:57:c6:a9:37:a8:7c: 12:d2:79:59:58:aa:c3:99:dd:f7:3f:b6:1d:cc:1c: fb:8f:92:cb:1f:8b:01:00:6a:76:95:9d:3e:af:9d: 1a:a6:5a:4b:d7:c9:fd:75:c8:c1:d0:e0:7f:59:eb: bf:a5:45:eb:dc:76:36:00:2f:40:76:47:76:ab:b1: 47:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:40:A3:E9:F5:49:8C:BB:E5:1B:0C:FE:77:C0:2A:15:F9:6A:F6:08 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:2e:e7:82:59:1f:9a:b4:cf:0a:74:f4:06:4f:91:c7:ec:ab: 1f:3d:7a:15:ac:0c:4c:55:21:f3:b1:7d:90:10:f9:dc:ca:fb: 4a:c9:52:31:09:1d:f5:7c:01:23:48:e9:37:91:03:fe:6b:2c: 62:8a:fa:1a:c0:a9:d9:f5:43:d1:28:40:67:2e:6d:f1:df:07: 66:e4:17:55:41:ac:07:97:5b:fd:68:34:4b:ed:70:67:c8:40: 0d:4b:bf:43:20:d5:23:30:da:0c:71:92:4d:f3:ab:c3:e9:22: 7a:98:f8:8f:41:de:a2:f9:a9:d4:60:4b:fb:b6:bf:67:73:d3: ca:94:e0:e7:5c:06:24:6b:03:02:83:30:88:b2:9b:4d:61:9d: 9f:45:46:0a:52:de:e8:44:f9:3c:ea:14:71:f0:34:64:ad:87: 04:7a:7c:3c:c4:3d:09:69:d7:13:c5:6b:cc:ec:41:40:de:45: d2:61:da:76:ad:e9:bc:be:49:3e:d9:cb:f0:67:c1:32:58:ca: cb:fb:39:1c:e3:af:96:e7:35:af:69:00:47:d9:c8:8c:65:1e: 6b:a8:eb:32:9c:18:de:b0:cf:db:a5:69:31:cb:8a:d8:40:76: 99:f0:d1:6d:7a:fe:11:cd:a4:26:aa:39:cd:8e:90:ae:77:4b: 13:a5:94:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA4MjMwNzU3MzRaFw0yNTA4MzAwNzU3MzRaMBgxFjAUBgNV BAMTDTY4YTk3NDZmLTQ4ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqkUwUuLvHhCBkR9HMgCCw5qUFBw0/qbSyye0+QeX7ie1OoEAEtt987V001ZGt rl64GrrYZUOWXXTUriPVgeOfdjl5pmZd/QJAW9syaE7l2k080A9ctGQuDyIsasMX EIeuXKAx24DrMAyhCsiOg6q7+ubDwmD0xNY+Sav+/qjFm9Y80eBalYIlCxd/zCTg jY9wdrMCSp5Voh11XaxwVF1v63nRXs0xQ3y6IasXx4OBRH1CkM8FLPGpzMiCiFfG qTeofBLSeVlYqsOZ3fc/th3MHPuPkssfiwEAanaVnT6vnRqmWkvXyf11yMHQ4H9Z 67+lRevcdjYAL0B2R3arsUfnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs0Cj6fVJ jLvlGwz+d8AqFflq9ggwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJAu54JZH5q0zwp09AZPkcfsqx89ehWsDExVIfOxfZAQ+dzK+0rJUjEJ HfV8ASNI6TeRA/5rLGKK+hrAqdn1Q9EoQGcubfHfB2bkF1VBrAeXW/1oNEvtcGfI QA1Lv0Mg1SMw2gxxkk3zq8PpInqY+I9B3qL5qdRgS/u2v2dz08qU4OdcBiRrAwKD MIiym01hnZ9FRgpS3uhE+TzqFHHwNGSthwR6fDzEPQlp1xPFa8zsQUDeRdJh2nat 6by+ST7Zy/BnwTJYysv7ORzjr5bnNa9pAEfZyIxlHmuo6zKcGN6wz9ulaTHLithA dpnw0W16/hHNpCaqOc2OkK53SxOllBQ= -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:45 2025 by rpki-client