$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: vUgd9bpATFDVZBTKgcJ+KPkHECaY72o/shpGyGNk3rw= Subject key identifier: 70:B5:E0:55:7F:8E:22:C1:AF:15:91:27:6E:E9:9C:99:11:DF:2E:9F Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 0409 Signing time: Mon 11 Aug 2025 00:36:09 +0000 Manifest this update: Mon 11 Aug 2025 00:36:08 +0000 Manifest next update: Mon 18 Aug 2025 00:36:08 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: 4CUD9a/tYj70Sw2A2hqygGq2eOyEaE1R+kGadHCEWlE=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Aug 11 00:36:08 2025 GMT Not After : Aug 18 00:36:08 2025 GMT Subject: CN=68993af9-8a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1f:61:24:62:39:f4:49:95:69:ce:25:47:5d: 5c:c6:0e:a8:03:5a:34:43:8c:d6:fc:5f:44:fc:5d: 09:6d:92:d4:0e:30:4c:64:fd:c9:d8:1c:fe:3c:bd: 47:e0:fe:e4:fc:e2:c8:b9:2c:6e:c2:dc:eb:1e:90: cf:73:ca:c1:4c:a2:e7:c6:30:36:7e:94:1f:95:c2: ca:55:41:b8:c5:2f:05:a3:4e:10:68:53:99:9e:33: 0d:2b:fd:9a:dc:f0:9c:09:fd:71:47:a4:62:c8:fa: 97:d7:f2:fc:1e:e6:82:3f:31:90:1c:93:30:eb:4c: 7c:bd:e5:ef:1c:d5:47:ac:3f:5c:02:88:61:21:3c: 61:8b:c3:d7:78:ce:b5:e4:bd:9b:71:42:9a:5e:8d: e6:bd:f5:f7:c2:11:74:1c:21:51:6e:ce:73:17:a7: 84:95:0a:7a:da:3e:87:a0:57:07:f0:b0:44:39:ac: 15:e6:6e:f3:f8:bb:ba:e0:2d:81:3e:aa:c7:ac:98: 44:26:f6:7e:63:7d:b3:29:05:90:9c:07:81:30:8f: 94:95:13:85:8d:4a:cb:96:97:93:35:e5:b3:fc:72: b4:07:0e:a4:03:61:0a:ec:c7:4c:47:a5:22:77:e2: 8e:6b:61:30:b6:97:f2:4b:cc:d1:ee:fa:8e:86:80: 6d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:E0:55:7F:8E:22:C1:AF:15:91:27:6E:E9:9C:99:11:DF:2E:9F X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e5:bb:e7:06:8f:b5:4b:e8:f8:b1:c8:11:e6:d5:86:db:22: df:c3:f2:61:d8:5b:95:f6:5e:81:51:57:12:e9:09:33:4c:87: 17:bf:ae:f5:00:ff:67:df:62:54:e6:9f:b4:c6:3a:fd:c9:21: ae:41:cf:49:b5:00:11:90:55:30:4e:ac:a7:66:a2:a2:ea:03: e6:76:f5:ba:7e:2a:36:30:1c:7d:09:33:1f:52:fa:46:dd:13: 21:d4:11:9a:78:02:da:fb:bb:6d:bf:9b:20:c7:36:c8:de:a6: 04:c5:e1:e9:3f:2c:0d:a0:79:95:e0:80:b5:fb:dc:9d:81:b5: 49:3e:f2:d0:ec:01:fb:23:a3:dc:e3:3d:6e:b5:ce:b3:1f:b7: eb:ab:1c:55:32:a3:73:ed:52:b8:bc:0b:4e:80:85:ed:36:3e: 0a:76:63:19:cc:4b:8f:ea:7c:6e:e2:bc:9f:49:60:8f:c8:f1: a2:68:7f:cf:68:da:06:0d:2a:0d:17:4e:af:e4:39:4c:29:69: a9:f0:a0:0e:67:2c:6b:68:0f:bf:df:95:e4:c5:a8:f1:64:07: 1f:18:05:1d:7d:50:4e:5c:84:f8:14:ab:4f:d0:aa:86:ba:12: 61:28:40:4c:5c:be:e6:5a:35:1d:3a:4b:15:4b:25:27:d9:a4: 7d:ff:25:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwODExMDAzNjA4WhcNMjUwODE4MDAzNjA4WjAYMRYwFAYD VQQDEw02ODk5M2FmOS04YTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4x9hJGI59EmVac4lR11cxg6oA1o0Q4zW/F9E/F0JbZLUDjBMZP3J2Bz+PL1H 4P7k/OLIuSxuwtzrHpDPc8rBTKLnxjA2fpQflcLKVUG4xS8Fo04QaFOZnjMNK/2a 3PCcCf1xR6RiyPqX1/L8HuaCPzGQHJMw60x8veXvHNVHrD9cAohhITxhi8PXeM61 5L2bcUKaXo3mvfX3whF0HCFRbs5zF6eElQp62j6HoFcH8LBEOawV5m7z+Lu64C2B PqrHrJhEJvZ+Y32zKQWQnAeBMI+UlROFjUrLlpeTNeWz/HK0Bw6kA2EK7MdMR6Ui d+KOa2EwtpfyS8zR7vqOhoBtaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHC14FV/ jiLBrxWRJ27pnJkR3y6fMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB35bvnBo+1S+j4scgR5tWG2yLfw/Jh2FuV9l6BUVcS6QkzTIcXv671 AP9n32JU5p+0xjr9ySGuQc9JtQARkFUwTqynZqKi6gPmdvW6fio2MBx9CTMfUvpG 3RMh1BGaeALa+7ttv5sgxzbI3qYExeHpPywNoHmV4IC1+9ydgbVJPvLQ7AH7I6Pc 4z1utc6zH7frqxxVMqNz7VK4vAtOgIXtNj4KdmMZzEuP6nxu4ryfSWCPyPGiaH/P aNoGDSoNF06v5DlMKWmp8KAOZyxraA+/35XkxajxZAcfGAUdfVBOXIT4FKtP0KqG uhJhKEBMXL7mWjUdOksVSyUn2aR9/yUF -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:02 2025 by rpki-client