$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: xiPOkvnYXwtm/sN8/OPfL05yOkG7Fusew2inIQp5Xak= Subject key identifier: 1A:BD:9F:E1:1C:F0:18:3E:CD:94:0C:3A:55:E5:B0:98:E0:C3:8A:4A Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02F3 Signing time: Sat 09 Aug 2025 01:48:37 +0000 Manifest this update: Sat 09 Aug 2025 01:48:37 +0000 Manifest next update: Sat 16 Aug 2025 01:48:37 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: GU+IAXSulfEXZPQ00Qrhaue8vgVvtOuN7O2bdQcWavI=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Aug 9 01:48:37 2025 GMT Not After : Aug 16 01:48:37 2025 GMT Subject: CN=6896a8f5-01f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:8f:07:9d:a6:cf:6c:8b:a1:00:09:31:23: 32:ef:0a:55:9e:91:29:9b:2e:ac:af:78:6d:1d:5b: 5f:c4:52:38:fc:8e:04:0b:12:43:37:1a:70:be:ba: 3e:95:38:e6:8b:7f:44:a2:db:67:29:b2:44:ab:d1: 8a:ea:06:de:71:84:3a:3d:91:06:df:80:13:dc:97: 28:3e:0e:30:6b:3e:05:7d:39:58:79:3d:07:0a:b9: 1f:91:a5:ab:51:63:45:40:0c:39:a2:bb:0d:df:bb: c7:28:63:69:53:5a:9e:ed:f1:cb:6b:c7:9d:1d:58: 27:cd:ef:1c:8d:64:52:d5:65:ba:cb:dd:ae:7f:aa: 6c:56:7f:7c:cb:a2:dc:7f:a3:05:a6:c2:de:9c:56: 44:11:e3:7e:86:ef:15:82:1c:05:3f:55:d4:c4:ab: 49:4a:fe:9c:14:b1:3a:65:ed:4d:b7:77:54:90:c0: 04:66:6f:ec:93:22:91:6f:f5:b0:83:6f:0e:54:9f: 1d:d4:07:56:b8:a9:fd:cf:ad:2b:ca:e2:91:c7:b1: 67:eb:7e:a0:f5:ac:7d:1a:7e:e1:54:e2:f7:7b:10: 0c:10:f9:9b:b7:40:af:18:88:4c:ff:8f:9d:a4:37: a2:0c:3e:e0:37:ff:9c:8a:75:f5:7c:3b:7c:10:eb: 31:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BD:9F:E1:1C:F0:18:3E:CD:94:0C:3A:55:E5:B0:98:E0:C3:8A:4A X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:85:68:84:09:02:77:95:6c:78:08:5f:ea:4b:72:d4:e2:a9: 8b:68:53:5a:31:16:84:34:62:aa:85:d5:31:2e:0f:79:b5:6b: ef:ad:4a:71:2c:5c:bd:c5:dc:06:4e:36:fc:aa:93:b8:71:c7: fb:bc:59:78:44:37:fc:5c:5d:f2:ce:14:95:aa:e7:38:b8:4d: 6d:cf:a3:3f:93:7a:cc:a5:ff:34:4d:8a:e8:21:00:4f:78:3d: 74:30:c9:18:2c:31:1a:ba:ad:f6:b4:ce:b5:72:6d:e0:89:d3: 5c:6f:dc:a9:dd:68:46:c7:98:72:5f:df:45:97:d7:42:c1:8a: 7e:c4:4f:ef:e3:72:ed:1a:b5:e4:4a:0c:1a:fc:fa:b0:69:17: 5e:31:01:a7:9c:fd:6a:a5:87:79:09:e0:68:a5:c5:56:61:fe: 4a:17:c7:7f:76:d7:f7:04:8c:63:30:b5:91:3f:fb:8c:77:45: a1:40:e7:49:c4:01:7c:ff:59:1d:86:57:5d:f1:16:4b:d3:62: ac:22:97:53:27:e6:df:f2:6b:3f:04:c7:aa:39:59:7b:47:57: 70:66:ab:c9:39:45:ca:2a:c4:26:fb:0a:cd:3c:28:ab:92:bd: 92:60:a4:55:82:01:13:f4:40:87:7a:a6:af:9b:8e:2f:7e:b1: 96:2a:9a:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwODA5MDE0ODM3WhcNMjUwODE2MDE0ODM3WjAYMRYwFAYD VQQDEw02ODk2YThmNS0wMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqaPB52mz2yLoQAJMSMy7wpVnpEpmy6sr3htHVtfxFI4/I4ECxJDNxpwvro+ lTjmi39EottnKbJEq9GK6gbecYQ6PZEG34AT3JcoPg4waz4FfTlYeT0HCrkfkaWr UWNFQAw5orsN37vHKGNpU1qe7fHLa8edHVgnze8cjWRS1WW6y92uf6psVn98y6Lc f6MFpsLenFZEEeN+hu8VghwFP1XUxKtJSv6cFLE6Ze1Nt3dUkMAEZm/skyKRb/Ww g28OVJ8d1AdWuKn9z60ryuKRx7Fn636g9ax9Gn7hVOL3exAMEPmbt0CvGIhM/4+d pDeiDD7gN/+cinX1fDt8EOsxpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq9n+Ec 8Bg+zZQMOlXlsJjgw4pKMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3hWiECQJ3lWx4CF/qS3LU4qmLaFNaMRaENGKqhdUxLg95tWvvrUpx LFy9xdwGTjb8qpO4ccf7vFl4RDf8XF3yzhSVquc4uE1tz6M/k3rMpf80TYroIQBP eD10MMkYLDEauq32tM61cm3gidNcb9yp3WhGx5hyX99Fl9dCwYp+xE/v43LtGrXk Sgwa/PqwaRdeMQGnnP1qpYd5CeBopcVWYf5KF8d/dtf3BIxjMLWRP/uMd0WhQOdJ xAF8/1kdhldd8RZL02KsIpdTJ+bf8ms/BMeqOVl7R1dwZqvJOUXKKsQm+wrNPCir kr2SYKRVggET9ECHeqavm44vfrGWKprd -----END CERTIFICATE-----Generated at Sat Aug 9 05:36:56 2025 by rpki-client