$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: UVVnp71prtpm8gNcUA4UWMXGvC9v8x1PH6bSNqoipbA= Subject key identifier: 55:41:E0:FA:53:60:05:01:E1:12:E4:83:11:A5:F9:E2:6F:FB:F8:F4 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 8F Signing time: Tue 17 Jun 2025 05:25:08 +0000 Manifest this update: Tue 17 Jun 2025 05:25:08 +0000 Manifest next update: Tue 24 Jun 2025 05:25:08 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: YZ5EJDEAG5RqbvXigBKd2ga7wNZPqJk48XXhXBF1QwY=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Jun 17 05:25:08 2025 GMT Not After : Jun 24 05:25:08 2025 GMT Subject: CN=6850fc34-f97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:45:65:c3:25:fc:67:ee:28:c7:15:b1:c9:7f: 86:cf:0f:3d:de:4a:9b:bd:f9:94:6c:75:21:50:fd: 31:c8:29:22:1b:83:01:6f:fb:8b:a9:0b:db:ef:28: 66:eb:82:59:de:c7:1e:52:32:d5:2d:7c:a8:70:f7: d2:f4:40:40:f5:c1:99:ca:1e:75:8b:6a:a6:c8:42: 4e:aa:0e:9b:d0:53:10:d4:66:35:69:c5:b6:bc:e0: ab:aa:52:22:a5:20:8f:49:cb:fe:dd:5c:49:f0:c5: e4:8d:fa:3a:da:2c:f5:61:62:f9:bf:99:c0:3a:04: 89:25:bc:7d:fd:2b:5d:bc:fd:a7:72:d9:06:83:15: 2d:16:98:60:81:6b:c7:8a:a2:8b:9b:da:73:8a:63: fe:21:1f:c7:b3:7d:1f:78:af:00:0c:96:33:d5:75: 2f:6b:db:34:ed:99:6d:b1:e7:87:b2:93:b1:4b:a3: a0:2e:8f:77:fe:e3:39:92:0e:da:0a:d5:36:d7:f2: df:7b:94:f9:0a:31:a2:e5:ea:03:80:fe:a3:a6:7d: 52:b3:14:0e:46:40:4d:14:3a:bf:a2:97:ca:13:a6: 8e:8b:d3:06:c0:0a:ff:16:5c:ae:7e:7a:01:26:4d: 4c:54:75:1f:57:78:a6:92:b3:2a:f7:00:d3:81:ed: 77:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:41:E0:FA:53:60:05:01:E1:12:E4:83:11:A5:F9:E2:6F:FB:F8:F4 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:72:a8:0f:e0:99:67:78:3f:f0:e0:78:01:46:d0:26:19:c1: 3e:74:34:a7:08:ed:28:68:e0:1f:43:4f:9b:9e:13:d4:19:01: 38:83:3d:4a:79:1b:93:5e:24:66:18:42:1f:42:3a:a9:51:bf: f2:36:06:3f:f8:2a:2b:1d:b8:f6:ff:18:89:81:1a:fb:e4:2a: 7b:39:b9:a6:e9:50:46:01:61:f3:5b:8d:56:90:e7:56:d2:05: c5:ad:d8:b8:fd:ba:75:7c:01:43:3b:c5:60:3c:ce:ad:37:4c: 8c:55:82:66:4a:56:8c:d3:6f:52:32:b0:8d:c5:e0:9e:74:eb: 80:8a:cd:ee:29:b9:7b:3b:82:b3:02:84:63:67:a7:38:82:63: 48:21:62:e5:8c:a4:6d:5e:fd:57:48:da:36:c8:4f:59:20:27: 8b:0e:d8:30:fd:28:b7:e4:80:2a:b9:31:89:60:e1:ae:9e:31: a4:fd:05:f8:c4:05:12:78:24:33:b5:e5:4b:35:b5:83:75:28: 6d:75:14:de:58:2e:9e:a6:66:ed:1a:6b:32:c0:29:08:12:61: e2:3e:51:d7:59:32:48:57:83:a5:11:2f:76:cd:1f:b9:c2:e5: 39:ec:e0:70:5a:14:a4:d9:7f:98:01:9a:dc:19:d4:a7:26:16: 86:5c:44:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUwNjE3MDUyNTA4WhcNMjUwNjI0MDUyNTA4WjAYMRYwFAYD VQQDEw02ODUwZmMzNC1mOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0VlwyX8Z+4oxxWxyX+Gzw893kqbvfmUbHUhUP0xyCkiG4MBb/uLqQvb7yhm 64JZ3sceUjLVLXyocPfS9EBA9cGZyh51i2qmyEJOqg6b0FMQ1GY1acW2vOCrqlIi pSCPScv+3VxJ8MXkjfo62iz1YWL5v5nAOgSJJbx9/StdvP2nctkGgxUtFphggWvH iqKLm9pzimP+IR/Hs30feK8ADJYz1XUva9s07ZltseeHspOxS6OgLo93/uM5kg7a CtU21/Lfe5T5CjGi5eoDgP6jpn1SsxQORkBNFDq/opfKE6aOi9MGwAr/FlyufnoB Jk1MVHUfV3imkrMq9wDTge139QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVB4PpT YAUB4RLkgxGl+eJv+/j0MB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXcqgP4JlneD/w4HgBRtAmGcE+dDSnCO0oaOAfQ0+bnhPUGQE4gz1K eRuTXiRmGEIfQjqpUb/yNgY/+CorHbj2/xiJgRr75Cp7Obmm6VBGAWHzW41WkOdW 0gXFrdi4/bp1fAFDO8VgPM6tN0yMVYJmSlaM029SMrCNxeCedOuAis3uKbl7O4Kz AoRjZ6c4gmNIIWLljKRtXv1XSNo2yE9ZICeLDtgw/Si35IAquTGJYOGunjGk/QX4 xAUSeCQzteVLNbWDdShtdRTeWC6epmbtGmsywCkIEmHiPlHXWTJIV4OlES92zR+5 wuU57OBwWhSk2X+YAZrcGdSnJhaGXESl -----END CERTIFICATE-----Generated at Wed Jun 18 01:45:34 2025 by rpki-client