$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: D5qBQosvV5kjXWujNpmNJGMXgkrzzjN2YhVEhwS6d5k= Subject key identifier: 68:66:38:3D:48:38:CC:55:F8:08:D8:42:45:CC:97:8E:72:15:9F:4E Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 082D Signing time: Thu 12 Jun 2025 20:31:10 +0000 Manifest this update: Thu 12 Jun 2025 20:31:10 +0000 Manifest next update: Thu 19 Jun 2025 20:31:10 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: 1SXWILBwDExviMNnWw7H/J2cwfSDg+vB57eSwG54cME=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: BTpWw7F/XbdMRveGgpGDkDR4BmkxDYTL8O9GDvpyiEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Jun 12 20:31:10 2025 GMT Not After : Jun 19 20:31:10 2025 GMT Subject: CN=684b390e-9e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:17:06:10:4a:0d:7d:3e:9c:e7:75:86:d5:ad: c1:52:98:a2:5e:41:1c:42:73:cb:cb:3f:b5:d8:e9: 15:d4:f0:4d:4c:df:8f:84:4b:74:c9:2d:0d:7c:f3: b9:ab:5a:21:59:e0:13:fc:42:c2:92:7c:d8:2f:c7: cb:71:ff:9d:a7:5c:3a:10:00:b7:57:16:e4:83:1c: 82:7a:66:91:29:7d:fe:35:a2:77:48:fa:fa:89:03: 37:98:ba:b1:90:d2:75:c7:05:68:c3:2e:b4:b1:50: f3:03:ea:ca:2a:4a:3e:2b:18:0d:81:fe:29:c5:9c: b6:a0:73:3f:98:da:e5:fb:a4:d5:d4:46:cf:bf:a5: 57:2d:4d:49:fd:e6:d8:f8:e8:e3:b1:0c:72:0f:c2: b2:d2:8f:1d:e5:a2:15:d8:43:4b:40:74:f2:5f:8e: 90:0a:42:54:b0:93:cf:d6:2e:77:98:73:6f:c6:f0: 96:43:c8:0c:f2:2a:21:c3:00:ab:f4:20:f6:bc:b6: b2:15:04:69:f6:da:96:6e:03:40:b8:ec:a8:6c:57: fd:99:14:87:52:50:a6:6d:60:82:c0:7c:d1:42:b0: a3:a2:c5:94:fe:0b:ce:dc:ff:59:d4:60:4d:91:1d: 64:7a:f7:2e:71:4c:70:1b:63:f3:d9:14:ab:35:b9: db:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:66:38:3D:48:38:CC:55:F8:08:D8:42:45:CC:97:8E:72:15:9F:4E X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:bf:79:cd:74:23:cb:1f:85:80:85:76:6d:1f:29:bb:13:31: d6:d1:ad:1e:24:ee:73:87:dd:91:6a:af:5a:ca:ad:d8:47:1a: e5:28:c5:6a:e8:81:86:49:58:18:90:06:a7:99:bd:aa:18:12: 0d:8f:c3:15:94:1a:8d:8d:1c:db:5d:fd:f5:7f:19:18:b7:f3: 0c:30:27:f2:d8:78:b6:41:c9:21:49:0f:d1:34:40:79:a2:db: dc:d9:26:ba:aa:0b:52:f1:7a:aa:93:ba:c0:93:e6:08:59:e8: c6:3f:0f:2e:ff:9f:d5:d9:e3:7a:7b:4f:c3:0d:56:9f:cf:aa: ec:db:79:23:00:06:0e:de:dd:cb:7a:50:6d:ad:aa:a8:e0:97: 6c:88:5d:13:b2:2a:30:13:b9:da:bf:97:3c:d9:69:bf:8f:0f: 01:05:84:32:16:bd:02:08:8e:e8:b5:87:9a:ae:e9:25:2b:f5: 08:77:d7:94:3a:1d:21:5f:90:35:c7:ab:0e:b6:1e:a3:6f:c0: 9d:ef:35:b5:f2:4f:92:0c:18:2e:46:72:1d:8c:d9:83:6b:5f: cf:2c:fb:63:97:1c:37:a9:b4:e4:2a:d0:3a:76:e1:80:b2:58: 25:77:db:ef:e0:b1:b1:34:1b:45:db:a4:7a:55:22:61:5b:d5: e7:38:92:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwNjEyMjAzMTEwWhcNMjUwNjE5MjAzMTEwWjAYMRYwFAYD VQQDEw02ODRiMzkwZS05ZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BcGEEoNfT6c53WG1a3BUpiiXkEcQnPLyz+12OkV1PBNTN+PhEt0yS0NfPO5 q1ohWeAT/ELCknzYL8fLcf+dp1w6EAC3VxbkgxyCemaRKX3+NaJ3SPr6iQM3mLqx kNJ1xwVowy60sVDzA+rKKko+KxgNgf4pxZy2oHM/mNrl+6TV1EbPv6VXLU1J/ebY +OjjsQxyD8Ky0o8d5aIV2ENLQHTyX46QCkJUsJPP1i53mHNvxvCWQ8gM8iohwwCr 9CD2vLayFQRp9tqWbgNAuOyobFf9mRSHUlCmbWCCwHzRQrCjosWU/gvO3P9Z1GBN kR1kevcucUxwG2Pz2RSrNbnbiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhmOD1I OMxV+AjYQkXMl45yFZ9OMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARv3nNdCPLH4WAhXZtHym7EzHW0a0eJO5zh92Raq9ayq3YRxrlKMVq 6IGGSVgYkAanmb2qGBINj8MVlBqNjRzbXf31fxkYt/MMMCfy2Hi2QckhSQ/RNEB5 otvc2Sa6qgtS8Xqqk7rAk+YIWejGPw8u/5/V2eN6e0/DDVafz6rs23kjAAYO3t3L elBtraqo4JdsiF0TsiowE7nav5c82Wm/jw8BBYQyFr0CCI7otYearuklK/UId9eU Oh0hX5A1x6sOth6jb8Cd7zW18k+SDBguRnIdjNmDa1/PLPtjlxw3qbTkKtA6duGA slgld9vv4LGxNBtF26R6VSJhW9XnOJI5 -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:16 2025 by rpki-client