$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: DHD+PTkcOk/GN9merZE82zJfV1w05RpoHqv40OG+bI4= Subject key identifier: 23:A6:2C:50:D2:44:A5:33:22:2C:13:FA:E6:12:2C:91:94:63:C9:E8 Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: 4B Signing time: Tue 05 Aug 2025 07:58:41 +0000 Manifest this update: Tue 05 Aug 2025 07:58:40 +0000 Manifest next update: Tue 12 Aug 2025 07:58:40 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: s/cEdriPSERf+Ha/PEbzEPITAA/IKc3qOXsTZxXojSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Aug 5 07:58:40 2025 GMT Not After : Aug 12 07:58:40 2025 GMT Subject: CN=6891b9b1-5b3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:60:4c:de:38:1f:fc:dd:5f:c2:a8:61:1a: 62:13:18:24:42:4d:92:75:dc:2e:19:c8:1c:22:3a: 7f:c9:23:37:b5:5d:13:45:62:c5:e3:08:28:3f:ae: de:33:d2:24:00:59:f6:8e:c6:4c:42:16:29:8b:76: e0:74:50:53:ec:04:b0:2c:72:fe:b1:9b:8c:1d:94: 7a:c8:9d:3a:2e:ed:04:59:f9:55:d1:69:ac:26:65: 71:d3:92:40:28:8f:11:0d:d0:c8:27:3a:56:60:1e: 15:7b:95:a3:ce:f8:c1:8d:ea:00:33:9b:aa:9a:cf: dc:26:8a:8c:33:23:04:1f:6e:9a:6c:49:b0:51:83: 3a:c6:d2:57:19:d2:84:7b:68:1c:e0:bb:d4:5e:57: 36:31:4b:10:21:e9:74:b5:c4:1a:8b:6a:da:5c:65: d9:4a:6a:c1:b9:f1:a6:f1:85:07:8b:b6:0f:6c:10: b1:94:b5:0e:57:88:a7:ad:d1:2b:e0:a0:c2:5a:1a: 73:85:ee:a8:f3:7b:9f:5d:38:80:fd:52:d6:a5:30: b4:ec:33:de:98:64:69:aa:76:ca:16:47:71:88:d9: 54:41:bb:66:ef:d3:51:16:22:12:2a:2a:23:78:03: f0:0e:2e:89:4e:e6:66:c1:f2:9d:f7:60:39:cf:b5: b9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A6:2C:50:D2:44:A5:33:22:2C:13:FA:E6:12:2C:91:94:63:C9:E8 X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:68:5b:85:b3:35:fd:59:54:d6:28:72:81:f3:45:95:f4:c1: ad:0a:98:b9:f6:99:c1:82:ea:f6:3a:ba:9b:35:05:ad:fc:2d: 77:47:2b:c8:a2:48:54:4a:4f:02:e8:48:22:17:4b:6e:0b:24: 3c:1f:2a:6f:3b:61:38:1a:a5:68:46:81:a8:a5:7f:a3:46:55: 90:4f:28:14:bf:1e:e9:34:0f:96:df:4e:26:3e:7d:35:25:15: 4c:27:ad:2b:e5:4d:3a:9b:5b:63:38:d9:f4:0e:c9:ab:05:0a: 41:47:dd:e2:9b:7e:41:fb:00:59:e1:4a:6e:d3:8a:45:d5:ff: 42:1e:a4:71:52:c3:7f:90:e2:a9:7f:22:39:70:49:f5:09:d7: 9c:62:1d:b0:6a:bf:7f:0d:f6:49:3c:b3:dd:4e:fe:9b:da:1f: 81:77:d6:98:32:d0:dd:fd:9d:9d:bc:77:1e:93:0d:80:c4:36: fc:d0:51:3d:f5:a8:d1:44:4c:11:bc:95:59:00:a3:8a:da:62: 94:c9:6d:48:3c:99:fb:fc:fb:9f:a4:6b:a8:e7:b4:13:13:e5: 9b:38:ba:a4:c8:06:4e:93:af:91:0e:69:21:98:ab:b7:fe:66: a9:d2:d2:8c:19:ff:dc:85:91:1a:21:fb:a3:81:73:4c:2b:02: 70:d7:4b:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDdEMDExMC8GA1UEBRMoMUQ2MzQxNkM0NzNCMEMwOTEyQkRBQjM3MTAyNzAxMDk1 RkM2QzM1QTAeFw0yNTA4MDUwNzU4NDBaFw0yNTA4MTIwNzU4NDBaMBgxFjAUBgNV BAMTDTY4OTFiOWIxLTViM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/9mBM3jgf/N1fwqhhGmITGCRCTZJ13C4ZyBwiOn/JIze1XRNFYsXjCCg/rt4z 0iQAWfaOxkxCFimLduB0UFPsBLAscv6xm4wdlHrInTou7QRZ+VXRaawmZXHTkkAo jxEN0MgnOlZgHhV7laPO+MGN6gAzm6qaz9wmiowzIwQfbppsSbBRgzrG0lcZ0oR7 aBzgu9ReVzYxSxAh6XS1xBqLatpcZdlKasG58abxhQeLtg9sELGUtQ5XiKet0Svg oMJaGnOF7qjze59dOID9UtalMLTsM96YZGmqdsoWR3GI2VRBu2bv01EWIhIqKiN4 A/AOLolO5mbB8p33YDnPtbn5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI6YsUNJE pTMiLBP65hIskZRjyegwHwYDVR0jBBgwFoAUHWNBbEc7DAkSvas3ECcBCV/Gw1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwN0QwLzY1QjY4RTk2MDA3 MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFdOQmJFYzdEQWtTdmFzM0VDY0JDVl9HdzFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw N0QwLzY1QjY4RTk2MDA3MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFr U3ZhczNFQ2NCQ1ZfR3cxby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKRoW4WzNf1ZVNYocoHzRZX0wa0KmLn2mcGC6vY6ups1Ba38LXdHK8ii SFRKTwLoSCIXS24LJDwfKm87YTgapWhGgailf6NGVZBPKBS/Huk0D5bfTiY+fTUl FUwnrSvlTTqbW2M42fQOyasFCkFH3eKbfkH7AFnhSm7TikXV/0IepHFSw3+Q4ql/ IjlwSfUJ15xiHbBqv38N9kk8s91O/pvaH4F31pgy0N39nZ28dx6TDYDENvzQUT31 qNFETBG8lVkAo4raYpTJbUg8mfv8+5+ka6jntBMT5Zs4uqTIBk6Tr5EOaSGYq7f+ ZqnS0owZ/9yFkRoh+6OBc0wrAnDXSwU= -----END CERTIFICATE-----Generated at Wed Aug 6 13:16:40 2025 by rpki-client