$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: OyS2ObptmjX1/Lq+e/cvrTZukEFWC5qNxQk+KYDnoQo= Subject key identifier: F2:CF:62:6F:98:D4:8F:26:17:7C:A2:1A:50:AF:81:27:13:8F:56:0A Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0852 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 084C Signing time: Fri 08 Aug 2025 21:04:14 +0000 Manifest this update: Fri 08 Aug 2025 21:04:13 +0000 Manifest next update: Fri 15 Aug 2025 21:04:13 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: CNskZr0r9gplSlL4U5RoBXlrHIUQ5U3jh0EpJnYz5iE=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: B+Mru32S1aXG9w3Uo0R4mgvVrJKNsa0zvQvSg+Djl+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2130 (0x852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Aug 8 21:04:13 2025 GMT Not After : Aug 15 21:04:13 2025 GMT Subject: CN=6896664d-d087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:89:70:7e:49:82:b0:7c:42:e2:bb:79:d3: 1f:94:20:93:72:4c:2f:69:d5:7c:bf:20:4d:37:e6: c1:09:46:dd:db:d2:4c:38:4d:19:c7:97:fa:a9:c2: b4:ef:eb:bd:56:c9:3a:71:37:3d:fe:0c:a9:26:a9: 6f:9d:ad:c6:1d:ed:78:b9:de:3d:d3:f6:74:ba:cf: 7d:90:8d:9b:4d:29:56:b5:41:3a:08:de:bf:db:ca: 52:89:40:94:b3:12:4c:db:f4:0d:79:c5:32:bc:f0: e3:c3:9d:ec:e0:6f:41:44:73:36:bf:26:2f:3d:bb: 04:e8:41:b4:01:4f:c2:d1:a6:b9:0a:0c:29:de:7e: f8:00:5a:85:e9:81:85:1c:69:ae:79:d4:b5:5c:4a: 92:00:a4:9e:91:59:a3:37:08:85:4b:72:a5:7b:a4: f2:53:71:8c:19:c3:11:79:85:6a:27:2a:5c:48:bf: f0:96:2b:ba:f4:f7:cb:1e:c6:ad:78:8d:27:04:81: b7:98:10:d5:26:aa:c3:bc:2f:32:2b:c4:45:35:2e: 23:e5:f7:1c:40:72:12:c7:0e:a7:76:4f:05:a2:99: 1d:b9:fc:3e:7c:53:40:e8:50:11:00:b2:75:fe:22: 98:1c:37:2c:5f:ee:a7:33:ec:c7:71:cd:6e:c7:a0: 49:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CF:62:6F:98:D4:8F:26:17:7C:A2:1A:50:AF:81:27:13:8F:56:0A X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:41:40:a4:e7:ba:0d:ce:45:ea:f4:ad:ea:dd:34:22:be:be: 3d:53:5b:71:08:2c:be:65:0d:2a:3e:bc:96:ec:9b:99:0e:3c: d1:52:eb:7c:63:74:c4:06:a0:56:44:75:8b:f9:0c:82:40:c8: 94:1e:60:67:d2:14:47:0c:81:0d:e1:7a:9c:98:df:6c:29:86: e9:ca:9f:5f:5c:d0:99:d0:1c:99:bd:bd:39:71:ea:fc:fa:55: b2:86:5b:b1:3a:68:ec:41:ca:31:43:4a:eb:3d:a3:1f:71:0e: a3:8a:fe:96:2d:52:d4:72:09:90:e7:67:96:39:61:c3:5b:85: f9:b6:83:c9:8d:d0:5e:aa:ec:dd:f2:9e:ac:1a:0b:76:58:f3: ab:35:61:8e:1c:3b:e4:18:80:cb:80:a9:bb:1a:90:a3:55:2b: 12:83:18:a5:d2:5d:fc:64:8a:56:fb:64:5b:f8:c9:ec:29:8a: b7:bd:d6:c3:13:27:27:53:da:97:df:c4:6b:96:20:5e:5c:ba: cb:e5:52:e8:72:7a:79:91:27:b5:db:a6:09:db:10:e8:9c:a1: 64:0f:ff:75:35:8d:1f:3e:cb:79:da:32:86:08:7b:77:aa:e1: c6:ca:df:c3:25:d0:7e:1a:a6:7a:cb:c9:d7:c7:56:1b:72:fb: 84:bd:27:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwODA4MjEwNDEzWhcNMjUwODE1MjEwNDEzWjAYMRYwFAYD VQQDEw02ODk2NjY0ZC1kMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvKJcH5JgrB8QuK7edMflCCTckwvadV8vyBNN+bBCUbd29JMOE0Zx5f6qcK0 7+u9Vsk6cTc9/gypJqlvna3GHe14ud490/Z0us99kI2bTSlWtUE6CN6/28pSiUCU sxJM2/QNecUyvPDjw53s4G9BRHM2vyYvPbsE6EG0AU/C0aa5Cgwp3n74AFqF6YGF HGmuedS1XEqSAKSekVmjNwiFS3Kle6TyU3GMGcMReYVqJypcSL/wliu69PfLHsat eI0nBIG3mBDVJqrDvC8yK8RFNS4j5fccQHISxw6ndk8Fopkdufw+fFNA6FARALJ1 /iKYHDcsX+6nM+zHcc1ux6BJcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLPYm+Y 1I8mF3yiGlCvgScTj1YKMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7QUCk57oNzkXq9K3q3TQivr49U1txCCy+ZQ0qPryW7JuZDjzRUut8 Y3TEBqBWRHWL+QyCQMiUHmBn0hRHDIEN4XqcmN9sKYbpyp9fXNCZ0ByZvb05cer8 +lWyhluxOmjsQcoxQ0rrPaMfcQ6jiv6WLVLUcgmQ52eWOWHDW4X5toPJjdBequzd 8p6sGgt2WPOrNWGOHDvkGIDLgKm7GpCjVSsSgxil0l38ZIpW+2Rb+MnsKYq3vdbD EycnU9qX38RrliBeXLrL5VLocnp5kSe126YJ2xDonKFkD/91NY0fPst52jKGCHt3 quHGyt/DJdB+GqZ6y8nXx1YbcvuEvSe8 -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:42 2025 by rpki-client