$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: svFNaDHsdb7LqfKqhKBYg+/FEd3DigYMAXbPXyBsROY= Subject key identifier: A8:EA:91:46:C2:DF:3E:BF:1E:C6:CA:0E:B6:22:E0:64:9A:91:86:93 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 99 Signing time: Sat 09 Aug 2025 06:48:29 +0000 Manifest this update: Sat 09 Aug 2025 06:48:28 +0000 Manifest next update: Sat 16 Aug 2025 06:48:28 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: tK2Q3/Y/bJse2B0ETv4N2cli9mXBxMZCyPk2TtItKtQ=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Aug 9 06:48:28 2025 GMT Not After : Aug 16 06:48:28 2025 GMT Subject: CN=6896ef3c-c615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2d:66:cc:2c:86:42:d9:83:8f:aa:f6:b1:f6: 39:df:4b:57:d3:e6:41:e5:06:bc:65:85:f8:0a:6a: b0:6c:29:72:bd:e6:05:39:9d:4b:67:6e:04:38:cb: 73:f0:0d:bb:56:d7:68:33:20:12:81:36:a5:bb:b4: ca:8d:92:30:df:2c:0b:26:6d:13:e4:f5:a5:59:a6: 40:c2:3f:b3:54:45:28:3a:dc:77:70:8f:82:e2:56: fb:ad:75:6f:94:00:91:da:4c:6b:a5:5f:bc:27:a3: a8:f5:88:88:7b:c7:8d:b3:60:a3:88:eb:a5:98:55: 15:d6:79:69:95:8a:c2:b1:e1:48:31:52:06:47:60: 33:7b:9c:3a:56:34:d1:48:d5:65:c5:a8:96:2f:1c: 6e:fa:82:84:1d:a2:f7:d0:9a:33:46:47:c4:1f:87: 87:8b:8e:bb:46:7f:46:e6:9b:93:1d:53:a6:10:00: fe:3b:d2:79:38:f0:0f:ed:ce:4d:19:7b:7b:a3:07: ed:e6:16:5c:46:55:ab:43:f7:23:77:15:19:2c:5b: dc:3a:a7:76:f9:61:88:a3:42:32:5d:81:8e:ce:cb: fe:a4:7d:06:ee:df:d1:2b:91:71:a5:a8:45:34:75: 48:b6:42:d6:53:57:ce:90:5e:22:73:0c:f3:6f:f4: 4d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:EA:91:46:C2:DF:3E:BF:1E:C6:CA:0E:B6:22:E0:64:9A:91:86:93 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:99:49:77:31:8d:67:4c:4d:6a:64:0c:28:7e:6c:a8:6c:25: 85:d6:4a:51:e9:ce:d3:77:04:ca:95:3a:dc:43:f9:71:b6:a9: 88:8c:50:2c:1b:0d:bc:53:74:d6:6b:7a:c9:89:1f:3d:5a:1c: 3d:a0:8f:06:fc:af:26:84:95:b2:f2:59:30:a6:5a:40:f8:2e: ed:f8:18:d3:a3:98:46:1c:7d:a4:86:95:78:1b:85:e4:ad:fd: 19:11:a9:86:d8:1a:a2:58:be:00:24:c0:b7:4b:c9:81:ab:84: 84:74:dd:23:7c:6e:9c:89:c7:86:7d:24:9c:04:3a:dc:f4:5c: 83:b9:d6:8f:56:a1:1d:ad:0f:08:82:93:91:7c:e5:d4:ba:15: 1a:c5:9b:aa:2c:51:8c:c9:41:d0:f3:58:97:85:7b:08:ba:87: 7b:6f:e4:60:5f:21:3e:76:77:e3:4f:c3:ba:5b:16:99:22:de: 1a:56:68:08:fe:a1:45:47:87:87:43:63:c7:36:9f:ef:7a:3c: 54:45:35:ee:1b:c9:59:f4:2a:cc:3b:cd:a8:8e:a2:b1:ee:ef: 09:dc:fb:5d:a7:00:6f:51:96:eb:4f:27:2e:79:32:07:de:3f: c6:fa:9f:c2:6d:27:9b:47:1a:b6:bd:ea:21:90:79:ed:0f:2d: d2:54:0f:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMTkxMTAvBgNVBAUTKDFERDMzQTY4QkMwQjVDOTMxMEZGRjUyQUQ3Mzk0MTIw RDEwMkE2MjcwHhcNMjUwODA5MDY0ODI4WhcNMjUwODE2MDY0ODI4WjAYMRYwFAYD VQQDEw02ODk2ZWYzYy1jNjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAri1mzCyGQtmDj6r2sfY530tX0+ZB5Qa8ZYX4CmqwbClyveYFOZ1LZ24EOMtz 8A27VtdoMyASgTalu7TKjZIw3ywLJm0T5PWlWaZAwj+zVEUoOtx3cI+C4lb7rXVv lACR2kxrpV+8J6Oo9YiIe8eNs2CjiOulmFUV1nlplYrCseFIMVIGR2Aze5w6VjTR SNVlxaiWLxxu+oKEHaL30JozRkfEH4eHi467Rn9G5puTHVOmEAD+O9J5OPAP7c5N GXt7owft5hZcRlWrQ/cjdxUZLFvcOqd2+WGIo0IyXYGOzsv+pH0G7t/RK5FxpahF NHVItkLWU1fOkF4icwzzb/RNTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjqkUbC 3z6/HsbKDrYi4GSakYaTMB8GA1UdIwQYMBaAFB3TOmi8C1yTEP/1Ktc5QSDRAqYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMxOS9GOTRENDFDODhD MkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhKTVFfX1VxMXpsQklORUNw aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3BpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMxOS9GOTRENDFDODhDMkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhK TVFfX1VxMXpsQklORUNwaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWmUl3MY1nTE1qZAwofmyobCWF1kpR6c7TdwTKlTrcQ/lxtqmIjFAs Gw28U3TWa3rJiR89Whw9oI8G/K8mhJWy8lkwplpA+C7t+BjTo5hGHH2khpV4G4Xk rf0ZEamG2BqiWL4AJMC3S8mBq4SEdN0jfG6ciceGfSScBDrc9FyDudaPVqEdrQ8I gpORfOXUuhUaxZuqLFGMyUHQ81iXhXsIuod7b+RgXyE+dnfjT8O6WxaZIt4aVmgI /qFFR4eHQ2PHNp/vejxURTXuG8lZ9CrMO82ojqKx7u8J3PtdpwBvUZbrTycueTIH 3j/G+p/CbSebRxq2veohkHntDy3SVA8O -----END CERTIFICATE-----Generated at Sun Aug 10 10:37:21 2025 by rpki-client