$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: //9fHytHHCk7Hs6OCzbaV3bIwDr5wAqWeVX07djx1BM= Subject key identifier: 5F:C7:E8:C5:03:E0:04:66:A6:CA:BE:BC:13:21:F5:0D:4E:F7:40:F4 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 14 Signing time: Tue 01 Jul 2025 08:51:27 +0000 Manifest this update: Tue 01 Jul 2025 08:51:26 +0000 Manifest next update: Tue 08 Jul 2025 08:51:26 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: 8JKyaw4kokfLYb19tCRVBdpsLZ4H/z5sIVPbRpi0fkw=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Jul 1 08:51:26 2025 GMT Not After : Jul 8 08:51:26 2025 GMT Subject: CN=6863a18e-3925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:f6:1f:6c:0a:12:7f:94:7e:d8:fe:dd:00: 46:3a:ec:72:8b:b5:76:17:f2:38:5f:66:79:57:57: 55:b1:ef:74:2f:e2:e4:16:45:c0:96:94:2c:9d:c6: 0d:f8:f1:b4:3f:31:99:6e:5a:3f:17:6c:c4:9f:49: 5c:8c:6b:a2:69:ee:0e:ac:35:df:b2:d0:79:be:30: fc:f9:cb:7f:cc:c2:b0:30:d8:6a:9b:f1:10:df:98: 66:b8:00:35:14:43:4d:ba:cc:ea:ab:51:f6:ce:76: c1:ce:c2:c6:4c:3b:f3:22:07:59:9d:ec:1a:94:09: b6:88:a3:45:7a:4a:59:0e:c9:46:95:eb:f3:81:19: 54:3b:76:ee:ba:4a:a5:3f:f4:b3:8a:50:46:52:82: 40:ab:31:7d:f5:14:db:78:b9:11:46:b3:66:df:63: 81:69:2f:7c:2e:60:6e:6e:b6:d0:3f:fe:84:96:13: 8b:b0:9f:8d:15:86:16:13:cd:3b:96:83:9e:cd:33: 46:35:45:85:e2:f6:50:ef:fd:a2:ba:68:c6:1e:4d: d5:52:9e:e6:e2:47:70:41:15:4b:7b:22:5c:40:7d: d2:23:30:23:8a:27:34:55:a6:ae:14:4e:dc:9f:01: ea:3e:7b:93:f5:9f:d9:5b:87:c0:3e:e4:4b:66:51: 20:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C7:E8:C5:03:E0:04:66:A6:CA:BE:BC:13:21:F5:0D:4E:F7:40:F4 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:5a:19:2c:1f:c6:9b:67:e3:3c:86:15:34:0c:f4:17:b1:07: b1:46:a5:4e:a6:6b:43:b9:a8:ec:4a:fa:7b:d2:24:b5:6a:08: 75:16:34:20:4c:72:8a:42:44:e4:bb:6b:ef:60:43:37:c0:95: ae:1f:ca:16:cd:21:a5:de:2f:22:f0:3e:b3:50:f3:68:54:47: 16:e4:28:78:84:9d:59:e5:02:f7:e9:48:07:d5:72:dc:3a:a3: ec:5a:fa:9c:d2:d7:c7:4e:b7:c0:42:9b:85:19:f0:44:25:81: 73:e3:d4:c6:67:9e:d1:be:06:3b:09:ef:f5:f3:72:0e:13:3d: d3:f7:b2:14:41:ee:48:02:de:7d:64:81:43:cf:e3:91:10:eb: f4:72:da:47:24:fc:b5:91:25:98:03:9c:d5:34:e0:16:c8:a4: ce:ee:05:28:43:8c:a8:97:e1:b9:66:2c:aa:33:6e:73:87:3c: 93:22:57:be:a9:d8:93:a4:5d:34:59:6b:44:44:df:dd:77:a4: 27:39:3a:f2:4a:f8:a8:43:64:34:70:cf:7c:f2:6c:20:0a:f4: 0d:37:a3:27:3c:0b:05:bf:6a:e7:65:0d:9c:b3:3b:b6:25:43: f7:6a:71:fa:9e:f0:28:56:89:1f:ab:b6:6a:cd:59:af:9d:02: b2:6d:ad:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA3MDEwODUxMjZaFw0yNTA3MDgwODUxMjZaMBgxFjAUBgNV BAMTDTY4NjNhMThlLTM5MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2FvYfbAoSf5R+2P7dAEY67HKLtXYX8jhfZnlXV1Wx73Qv4uQWRcCWlCydxg34 8bQ/MZluWj8XbMSfSVyMa6Jp7g6sNd+y0Hm+MPz5y3/MwrAw2Gqb8RDfmGa4ADUU Q026zOqrUfbOdsHOwsZMO/MiB1md7BqUCbaIo0V6SlkOyUaV6/OBGVQ7du66SqU/ 9LOKUEZSgkCrMX31FNt4uRFGs2bfY4FpL3wuYG5uttA//oSWE4uwn40VhhYTzTuW g57NM0Y1RYXi9lDv/aK6aMYeTdVSnubiR3BBFUt7IlxAfdIjMCOKJzRVpq4UTtyf Aeo+e5P1n9lbh8A+5EtmUSDBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX8foxQPg BGamyr68EyH1DU73QPQwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABdaGSwfxptn4zyGFTQM9BexB7FGpU6ma0O5qOxK+nvSJLVqCHUWNCBM copCROS7a+9gQzfAla4fyhbNIaXeLyLwPrNQ82hURxbkKHiEnVnlAvfpSAfVctw6 o+xa+pzS18dOt8BCm4UZ8EQlgXPj1MZnntG+BjsJ7/Xzcg4TPdP3shRB7kgC3n1k gUPP45EQ6/Ry2kck/LWRJZgDnNU04BbIpM7uBShDjKiX4blmLKozbnOHPJMiV76p 2JOkXTRZa0RE3913pCc5OvJK+KhDZDRwz3zybCAK9A03oyc8CwW/audlDZyzO7Yl Q/dqcfqe8ChWiR+rtmrNWa+dArJtrV8= -----END CERTIFICATE-----Generated at Thu Jul 3 07:04:32 2025 by rpki-client