$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: hbUNTvljYZB8ujeWpBtcBL4pNAZNp9B+Y15b13FfmE8= Subject key identifier: E1:47:C8:5E:72:F5:D7:E2:FA:77:01:A3:88:3E:86:60:EE:BE:0F:67 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 027D Signing time: Sat 09 Aug 2025 02:15:22 +0000 Manifest this update: Sat 09 Aug 2025 02:15:22 +0000 Manifest next update: Sat 16 Aug 2025 02:15:22 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: /bjJDeHwW6hqslClJ+wtvtpcx6Ox625eMTWtnvWfnB4=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Aug 9 02:15:22 2025 GMT Not After : Aug 16 02:15:22 2025 GMT Subject: CN=6896af3a-2be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9a:f6:cf:5b:cb:be:f3:01:e8:8b:e8:76:40: 99:60:6b:38:8c:c4:1c:73:9b:51:cc:ac:48:0b:76: 7d:13:e2:5a:5e:ab:0b:34:c7:5d:c3:d0:b4:5f:a7: 2e:71:59:d9:7d:bf:c3:55:1b:3f:b1:af:95:14:be: 5a:08:8b:8f:6a:55:96:c3:e7:c0:36:df:0e:05:b9: 80:72:8e:40:59:9d:15:79:60:75:09:15:f0:86:86: 6a:fa:5a:cb:a6:c0:97:57:82:0c:90:06:6c:4b:4a: b4:b9:e4:50:83:03:01:01:d6:3f:a3:45:f6:62:33: d7:36:f4:12:a8:89:6f:6a:1a:fd:d5:73:3a:05:48: 36:86:d5:03:88:17:aa:9e:4b:9a:7c:68:fc:ee:7f: c3:97:03:fb:80:80:f8:0d:d9:e9:46:cb:dc:bd:88: a3:82:2f:7f:4b:cf:11:6c:84:e2:16:40:6e:bb:1b: 4f:fe:fb:ba:ba:43:d1:57:67:09:5c:2e:e9:9e:ac: 9d:2d:5e:55:2e:10:b0:6e:3f:c3:50:3d:fc:4c:41: b4:36:23:35:f6:e6:b3:7b:74:20:d6:fa:3a:d9:4a: 99:71:ee:4b:49:fc:b7:17:2d:65:87:1d:3a:ed:b6: 31:da:58:b2:7b:ab:8b:4e:a8:e0:d7:de:74:39:be: 96:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:47:C8:5E:72:F5:D7:E2:FA:77:01:A3:88:3E:86:60:EE:BE:0F:67 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:90:df:df:48:b5:fa:af:17:43:7c:df:6e:4f:7e:26:73:24: c8:5b:61:9e:10:11:44:9c:f5:4a:27:05:f9:1f:08:62:a1:48: 0d:97:92:8a:53:50:6b:c8:a1:83:f2:41:a4:fd:7d:eb:68:42: 7c:d7:1a:b5:5f:73:08:ae:48:9b:33:8e:8f:b0:73:4e:8a:ef: 69:99:d5:04:52:88:d8:f8:a9:4e:63:e2:cf:69:f9:0e:5a:23: 5c:f8:c2:a9:0b:2a:30:f8:a2:f8:c5:bc:25:89:39:c9:31:e4: 48:d8:d6:e1:56:76:21:56:c9:39:6e:45:6f:7e:c2:29:37:4b: 60:fa:e2:da:28:19:99:21:a9:31:89:22:bc:5c:69:8b:8b:7c: 4f:6e:e6:9a:14:70:e5:cb:99:04:74:a3:f9:52:fa:76:0e:12: 1c:3e:b0:fb:c6:69:9b:14:9d:36:55:0d:af:c7:c7:cf:24:b9: 53:bd:8d:e9:a2:9b:f0:c5:8c:35:24:54:68:da:87:f8:cd:07: 61:84:b6:aa:97:f4:12:36:c2:60:0e:70:c3:24:e1:f9:86:7f: b8:48:37:74:23:70:83:42:0f:d0:ae:a3:f7:27:f4:7d:46:29: 75:fa:94:90:49:50:dc:80:f0:3d:ad:b1:b3:1a:fa:b4:cb:f5: 24:bd:04:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwODA5MDIxNTIyWhcNMjUwODE2MDIxNTIyWjAYMRYwFAYD VQQDEw02ODk2YWYzYS0yYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Jr2z1vLvvMB6IvodkCZYGs4jMQcc5tRzKxIC3Z9E+JaXqsLNMddw9C0X6cu cVnZfb/DVRs/sa+VFL5aCIuPalWWw+fANt8OBbmAco5AWZ0VeWB1CRXwhoZq+lrL psCXV4IMkAZsS0q0ueRQgwMBAdY/o0X2YjPXNvQSqIlvahr91XM6BUg2htUDiBeq nkuafGj87n/DlwP7gID4DdnpRsvcvYijgi9/S88RbITiFkBuuxtP/vu6ukPRV2cJ XC7pnqydLV5VLhCwbj/DUD38TEG0NiM19uaze3Qg1vo62UqZce5LSfy3Fy1lhx06 7bYx2liye6uLTqjg1950Ob6W1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFHyF5y 9dfi+ncBo4g+hmDuvg9nMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9kN/fSLX6rxdDfN9uT34mcyTIW2GeEBFEnPVKJwX5HwhioUgNl5KK U1BryKGD8kGk/X3raEJ81xq1X3MIrkibM46PsHNOiu9pmdUEUojY+KlOY+LPafkO WiNc+MKpCyow+KL4xbwliTnJMeRI2NbhVnYhVsk5bkVvfsIpN0tg+uLaKBmZIakx iSK8XGmLi3xPbuaaFHDly5kEdKP5Uvp2DhIcPrD7xmmbFJ02VQ2vx8fPJLlTvY3p opvwxYw1JFRo2of4zQdhhLaql/QSNsJgDnDDJOH5hn+4SDd0I3CDQg/QrqP3J/R9 Ril1+pSQSVDcgPA9rbGzGvq0y/UkvQQu -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:32 2025 by rpki-client