$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: BwlY9i+Jiv/u2gda4wQt80PGeyCDB7AMNLWhJhpAf5Q= Subject key identifier: 50:25:2F:77:45:AA:6F:B7:F6:EC:7E:05:44:44:41:07:7E:2F:14:E5 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 34C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 34B8 Signing time: Sun 10 Aug 2025 14:49:16 +0000 Manifest this update: Sun 10 Aug 2025 14:49:15 +0000 Manifest next update: Sun 17 Aug 2025 14:49:15 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: XCbH7ddz2u/AXzHj7mUgDWvIkctsXBMHMG7YlnIEojY=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 14:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Aug 10 14:49:15 2025 GMT Not After : Aug 17 14:49:15 2025 GMT Subject: CN=6898b16b-7935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:a9:a9:9a:9c:ae:52:2e:4a:d5:ec:a8:8b: 20:98:5e:2c:28:96:c4:a2:ce:23:05:06:52:74:c5: b8:0e:8a:1a:81:33:a4:f2:b6:cc:80:86:11:ab:92: 32:f0:07:87:a7:db:34:25:5a:c8:e8:8e:45:fd:61: 3b:0d:2e:7e:5a:45:cb:2e:ba:6d:a3:f0:7b:41:0e: 58:43:1d:a7:c9:f4:9f:d5:82:20:5d:e7:79:4a:ca: 9c:bd:c3:2f:5c:6d:74:d4:f0:32:3f:10:b0:db:21: 32:37:f4:f0:88:13:fc:06:b8:55:91:d9:56:45:11: 62:9a:6a:cb:46:8c:dd:00:4f:1a:1c:8d:82:e4:a4: f1:1e:bf:e0:a5:2f:2f:14:ca:83:64:8d:39:fc:09: c4:d9:df:1e:81:bc:a2:34:92:ef:93:b7:c0:74:4c: 98:97:50:7f:72:9e:8e:52:20:d5:b5:b4:6f:a4:11: 18:ed:08:d1:35:b3:c3:50:5c:13:2f:9a:3a:f3:d4: 97:ff:2f:d2:58:80:e8:bb:05:52:5e:1a:68:62:de: dc:24:b4:32:bb:bc:67:36:6a:df:a7:d0:d6:3c:3c: 44:0f:01:1c:01:e5:b7:85:2e:57:be:03:2a:9f:38: 73:9f:0c:7f:d2:3b:ac:a0:91:23:10:5a:da:df:05: 14:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:25:2F:77:45:AA:6F:B7:F6:EC:7E:05:44:44:41:07:7E:2F:14:E5 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:dd:87:1b:e9:16:05:66:5d:f8:d9:85:dd:af:fc:d9:7e:91: fe:d1:f7:f8:4a:84:2f:5b:b9:ec:f9:71:d3:b3:ad:86:95:3c: 91:c5:dd:93:08:fd:b2:07:06:f3:ff:28:6f:01:91:b6:be:55: 0c:21:86:d3:cc:41:1e:0a:a6:a2:09:4a:56:2b:42:3a:f7:c2: 10:42:31:54:2f:2f:f8:aa:ba:05:ae:c2:21:62:d0:87:4a:cf: 5e:cd:5d:56:04:09:a9:3e:2d:e5:3f:22:0b:aa:a0:0b:66:40: 2f:96:6d:89:a5:2e:dd:82:33:1e:e2:24:54:4a:78:5d:cd:c0: c0:61:3a:02:e3:20:fe:e4:29:bb:a0:f3:a4:c1:af:36:27:28: 4d:87:a3:46:30:47:bb:68:5b:bd:cb:2c:25:ef:b7:9f:06:b6: 46:5a:28:66:7a:27:91:6f:1a:07:a4:28:6c:3f:17:48:18:df: f3:5a:cd:19:c9:0c:0b:16:12:63:12:43:dd:0c:53:9b:1f:db: 5c:25:41:28:7f:aa:19:bc:c3:e9:5b:d3:60:10:ed:46:c2:9a: e9:c7:e5:9b:b9:7e:1c:b8:18:2d:4f:13:40:50:be:51:f1:f1: fa:7d:78:eb:80:27:1f:dc:4a:f7:3b:cc:67:b8:88:0f:78:d9: 96:a9:8a:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUwODEwMTQ0OTE1WhcNMjUwODE3MTQ0OTE1WjAYMRYwFAYD VQQDEw02ODk4YjE2Yi03OTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCmpqZqcrlIuStXsqIsgmF4sKJbEos4jBQZSdMW4DooagTOk8rbMgIYRq5Iy 8AeHp9s0JVrI6I5F/WE7DS5+WkXLLrpto/B7QQ5YQx2nyfSf1YIgXed5SsqcvcMv XG101PAyPxCw2yEyN/TwiBP8BrhVkdlWRRFimmrLRozdAE8aHI2C5KTxHr/gpS8v FMqDZI05/AnE2d8egbyiNJLvk7fAdEyYl1B/cp6OUiDVtbRvpBEY7QjRNbPDUFwT L5o689SX/y/SWIDouwVSXhpoYt7cJLQyu7xnNmrfp9DWPDxEDwEcAeW3hS5XvgMq nzhznwx/0jusoJEjEFra3wUUXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAlL3dF qm+39ux+BUREQQd+LxTlMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn3Ycb6RYFZl342YXdr/zZfpH+0ff4SoQvW7ns+XHTs62GlTyRxd2T CP2yBwbz/yhvAZG2vlUMIYbTzEEeCqaiCUpWK0I698IQQjFULy/4qroFrsIhYtCH Ss9ezV1WBAmpPi3lPyILqqALZkAvlm2JpS7dgjMe4iRUSnhdzcDAYToC4yD+5Cm7 oPOkwa82JyhNh6NGMEe7aFu9yywl77efBrZGWihmeieRbxoHpChsPxdIGN/zWs0Z yQwLFhJjEkPdDFObH9tcJUEof6oZvMPpW9NgEO1Gwprpx+WbuX4cuBgtTxNAUL5R 8fH6fXjrgCcf3Er3O8xnuIgPeNmWqYrQ -----END CERTIFICATE-----Generated at Tue Aug 12 13:46:23 2025 by rpki-client