$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: qMEs6u/1/oLo7kQcjSgpHTgR7aiBnkDbIwJ5byA4o10= Subject key identifier: F6:45:94:2F:F7:8D:2C:C1:13:16:DB:4C:F8:27:B8:0F:0F:7D:52:CC Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 6E Signing time: Mon 11 Aug 2025 07:08:42 +0000 Manifest this update: Mon 11 Aug 2025 07:08:42 +0000 Manifest next update: Mon 18 Aug 2025 07:08:42 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: gDEXpUOjUs49/qBlxpaugTzLP0nMnrAiLcl0pNVMpTQ=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Aug 11 07:08:42 2025 GMT Not After : Aug 18 07:08:42 2025 GMT Subject: CN=689996fa-0215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fa:5a:4b:1e:7b:0e:8e:77:9a:be:1f:69:5e: 78:a1:b4:39:89:5a:e6:3b:4b:c0:d9:c5:2d:07:9c: 7b:d6:a9:c1:9c:3b:e4:6b:74:b4:2f:8e:87:82:94: 11:97:43:e7:35:b7:cd:3c:69:62:80:e6:2e:7a:0a: f0:39:7c:ae:90:b5:1c:ad:19:0c:05:15:6e:ed:16: d1:e7:78:ef:78:74:91:e5:47:84:f8:11:5b:e6:18: c7:09:d4:8a:3f:04:05:6c:f6:fd:da:3d:f0:82:44: 62:f0:c0:e5:62:2a:84:82:fe:c7:44:f2:d6:94:ca: 03:34:57:ad:a6:2e:d3:6f:4b:cf:f4:4b:e5:c0:71: 37:de:ee:60:b1:f9:fc:af:30:4b:04:95:54:14:55: 87:78:fc:13:2e:0e:7f:75:1b:82:37:67:1b:a3:46: 93:66:d3:75:b4:f1:57:e9:b1:07:ee:ce:cc:c7:04: 8b:56:27:6a:db:c8:ef:9a:d0:da:cf:37:f4:1d:92: 1b:04:0f:95:2c:9b:ab:13:47:ba:f6:9c:a0:52:99: 43:bf:08:d1:20:bc:b4:ab:04:fa:1f:40:74:ae:59: ec:1d:76:49:2b:03:04:60:51:c2:6c:a4:14:6f:fa: a2:c6:32:41:3d:73:6a:45:23:67:bb:eb:4f:24:04: 9b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:45:94:2F:F7:8D:2C:C1:13:16:DB:4C:F8:27:B8:0F:0F:7D:52:CC X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f8:f6:dc:ba:cd:36:9b:6f:2e:21:a4:1c:e2:e5:5e:34:df: 4e:ca:5c:9e:75:af:b3:17:86:48:f6:15:34:ea:f0:09:54:ae: cd:85:f7:cc:c8:d3:05:48:66:d8:94:cc:14:14:21:c1:56:a7: 39:86:61:02:c1:b4:e9:b1:25:af:be:6f:42:d3:96:f2:e1:d2: 47:de:b9:9a:22:1d:a1:51:68:74:5e:ed:97:f6:5e:34:5c:cd: 15:8e:d4:bf:c1:83:25:0b:68:54:eb:91:fa:45:ad:85:8f:a9: 31:f6:b9:fd:d8:8f:35:d5:c8:9d:34:6a:34:8c:88:6e:c9:4a: 54:13:6d:9f:b0:45:6c:2a:1e:e8:95:d4:dc:35:71:23:68:bb: 81:c4:51:9c:ad:09:82:c5:0d:dd:80:c8:05:21:50:f5:a6:8d: 28:28:b6:42:f4:ce:30:1b:cf:76:87:8a:8d:48:3b:cc:61:c8: b2:10:ab:07:ae:ed:b9:e2:76:2b:c0:47:07:fd:b8:2a:86:b6: af:ec:b6:68:42:09:0e:5c:f1:94:39:88:5c:16:99:75:ee:e6: 34:62:95:84:71:75:1f:5c:aa:6f:9b:15:4b:76:ef:e7:88:ba: 09:e0:ff:0c:38:bf:4d:44:c9:19:5c:b0:48:9b:c2:26:24:05: 74:cb:a9:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA4MTEwNzA4NDJaFw0yNTA4MTgwNzA4NDJaMBgxFjAUBgNV BAMTDTY4OTk5NmZhLTAyMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDy+lpLHnsOjneavh9pXnihtDmJWuY7S8DZxS0HnHvWqcGcO+RrdLQvjoeClBGX Q+c1t808aWKA5i56CvA5fK6QtRytGQwFFW7tFtHneO94dJHlR4T4EVvmGMcJ1Io/ BAVs9v3aPfCCRGLwwOViKoSC/sdE8taUygM0V62mLtNvS8/0S+XAcTfe7mCx+fyv MEsElVQUVYd4/BMuDn91G4I3ZxujRpNm03W08VfpsQfuzszHBItWJ2rbyO+a0NrP N/QdkhsED5Usm6sTR7r2nKBSmUO/CNEgvLSrBPofQHSuWewddkkrAwRgUcJspBRv +qLGMkE9c2pFI2e7608kBJslAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9kWUL/eN LMETFttM+Ce4Dw99UswwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEf49ty6zTabby4hpBzi5V40307KXJ51r7MXhkj2FTTq8AlUrs2F98zI 0wVIZtiUzBQUIcFWpzmGYQLBtOmxJa++b0LTlvLh0kfeuZoiHaFRaHRe7Zf2XjRc zRWO1L/BgyULaFTrkfpFrYWPqTH2uf3YjzXVyJ00ajSMiG7JSlQTbZ+wRWwqHuiV 1Nw1cSNou4HEUZytCYLFDd2AyAUhUPWmjSgotkL0zjAbz3aHio1IO8xhyLIQqweu 7bnidivARwf9uCqGtq/stmhCCQ5c8ZQ5iFwWmXXu5jRilYRxdR9cqm+bFUt27+eI ugng/ww4v01EyRlcsEibwiYkBXTLqWM= -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:58 2025 by rpki-client