$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: jfc0StuRUjdQvCLe7sYWq79+A5SVHTEAhztXLALyTxk= Subject key identifier: 73:60:21:88:0B:82:60:ED:09:53:41:2A:FB:E9:7C:85:83:2B:70:0A Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 0284 Signing time: Sat 09 Aug 2025 02:15:49 +0000 Manifest this update: Sat 09 Aug 2025 02:15:49 +0000 Manifest next update: Sat 16 Aug 2025 02:15:49 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: XMHkz2euDaIZvDOs/LsXU2cq8GczPy7sL3NvCEzjUbE=) 2: 9A59F7D670E411F0A8BFEE2AC4F9AE02.roa (hash: Pm7xX1vwf0DPPYIok3OlHUKVD8r7hcmVaxi8mGdbOm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Aug 9 02:15:49 2025 GMT Not After : Aug 16 02:15:49 2025 GMT Subject: CN=6896af55-d72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:16:0b:d0:4d:94:5d:e8:ef:5f:47:a9:3a:31: 5a:b6:6c:32:16:23:5a:0d:14:1d:8f:2d:a1:3e:33: b0:8e:bd:52:b8:40:6f:5a:f0:00:a6:f1:31:fb:bb: 13:18:87:6a:74:82:dd:e3:e2:f2:07:00:e0:5e:0d: e5:de:36:cc:80:53:05:0a:af:3d:72:dd:a7:74:d1: 90:27:b5:5d:bb:3e:93:5e:86:d0:d1:86:58:8d:27: 96:e0:4a:ab:32:81:1e:51:43:cf:3b:6f:34:d1:84: 4d:90:3b:a1:fe:ad:75:34:f0:0a:f5:a9:8c:39:82: 97:f6:44:34:78:61:f1:ec:d2:5c:32:40:98:3c:44: a9:6e:47:b2:b8:bd:c9:85:90:11:35:01:72:fa:2d: 59:b8:b7:87:52:98:ba:d8:0b:49:0e:c9:16:5e:5c: 46:d8:62:c9:b5:1a:58:32:15:b8:cd:67:0f:d5:c7: 92:0b:44:2d:bf:56:95:1f:71:11:49:2e:41:74:1a: b5:62:a1:3c:94:47:44:f0:09:b4:88:e6:6e:c7:76: b1:37:e4:09:7d:aa:4f:91:d7:db:d7:3c:04:43:af: 06:71:f3:1b:66:51:53:c7:12:2b:61:53:26:53:67: 28:e5:07:00:47:34:26:73:8d:b4:f0:6a:7c:98:95: db:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:60:21:88:0B:82:60:ED:09:53:41:2A:FB:E9:7C:85:83:2B:70:0A X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:58:f3:40:48:db:3e:08:7a:2f:51:5a:66:41:0c:82:54:f4: bf:08:97:c2:5a:89:cd:20:60:e5:48:77:86:0a:f1:bb:94:09: f0:36:bd:2f:d0:eb:c3:d7:31:2c:ca:71:d8:5d:74:bc:83:06: b1:ae:32:16:64:9c:5b:71:1e:c9:95:81:c9:2f:7d:eb:3a:83: 03:e4:36:c6:69:39:9d:a4:98:58:b1:54:a1:80:5b:85:73:8d: c2:1d:e5:1c:a6:2e:63:00:a5:b0:7d:a0:00:5e:11:eb:ad:12: 20:37:df:17:bb:20:9e:da:46:bc:ec:8a:38:27:51:dd:af:ad: b0:69:6c:ae:99:da:04:d5:b3:c3:81:a2:46:74:b2:48:9f:08: 54:e4:89:c0:4f:3a:4f:4f:99:e1:bf:e9:09:65:00:21:61:98: ab:cf:d0:5c:08:4e:91:84:db:a5:80:6e:76:63:d1:93:04:54: e4:3d:b8:69:83:61:cb:b1:40:d2:ec:5c:3b:63:07:a1:b4:3b: e0:03:b4:54:a8:66:09:bd:41:30:7c:e8:3a:67:0f:ee:6c:04: 6f:2d:4f:b3:03:1a:36:46:7b:ca:86:59:40:4b:ef:6b:ec:aa: 16:5a:fb:f6:1e:9d:f9:77:bb:0f:bc:3c:cb:c3:3d:26:7a:34: 81:2f:92:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwODA5MDIxNTQ5WhcNMjUwODE2MDIxNTQ5WjAYMRYwFAYD VQQDEw02ODk2YWY1NS1kNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxYL0E2UXejvX0epOjFatmwyFiNaDRQdjy2hPjOwjr1SuEBvWvAApvEx+7sT GIdqdILd4+LyBwDgXg3l3jbMgFMFCq89ct2ndNGQJ7Vduz6TXobQ0YZYjSeW4Eqr MoEeUUPPO2800YRNkDuh/q11NPAK9amMOYKX9kQ0eGHx7NJcMkCYPESpbkeyuL3J hZARNQFy+i1ZuLeHUpi62AtJDskWXlxG2GLJtRpYMhW4zWcP1ceSC0Qtv1aVH3ER SS5BdBq1YqE8lEdE8Am0iOZux3axN+QJfapPkdfb1zwEQ68GcfMbZlFTxxIrYVMm U2co5QcARzQmc4208Gp8mJXbxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNgIYgL gmDtCVNBKvvpfIWDK3AKMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIWPNASNs+CHovUVpmQQyCVPS/CJfCWonNIGDlSHeGCvG7lAnwNr0v 0OvD1zEsynHYXXS8gwaxrjIWZJxbcR7JlYHJL33rOoMD5DbGaTmdpJhYsVShgFuF c43CHeUcpi5jAKWwfaAAXhHrrRIgN98XuyCe2ka87Io4J1Hdr62waWyumdoE1bPD gaJGdLJInwhU5InATzpPT5nhv+kJZQAhYZirz9BcCE6RhNulgG52Y9GTBFTkPbhp g2HLsUDS7Fw7YwehtDvgA7RUqGYJvUEwfOg6Zw/ubARvLU+zAxo2RnvKhllAS+9r 7KoWWvv2Hp35d7sPvDzLwz0mejSBL5Jy -----END CERTIFICATE-----Generated at Sun Aug 10 18:26:37 2025 by rpki-client