$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: lBtA3TxQemOJehbMpBOhQ4f7qzA/otx7TpZwQUFfWQk= Subject key identifier: DB:9C:4B:32:B9:92:4A:7E:63:3C:0B:4C:77:A0:4A:6D:F7:38:42:79 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 34A5 Signing time: Mon 04 Aug 2025 14:26:43 +0000 Manifest this update: Mon 04 Aug 2025 14:26:43 +0000 Manifest next update: Mon 11 Aug 2025 14:26:43 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: 5trjzueFmP8bmOeqSwW663MVOH9TBzngfazOeJ+pDZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Aug 4 14:26:43 2025 GMT Not After : Aug 11 14:26:43 2025 GMT Subject: CN=6890c323-226e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:0c:1b:2c:5a:83:da:79:a9:b4:fa:2f:05: b9:a2:4f:ec:8b:8e:3d:84:89:c5:a9:3a:7f:3e:c4: a3:19:42:63:e5:4f:cd:99:a4:8c:9a:eb:4e:1f:8f: 22:7e:32:5e:6c:28:ee:22:51:52:39:21:07:73:f5: 64:14:cf:e5:40:2e:d6:58:5a:8e:a1:f7:f9:62:69: 1d:e7:d1:55:03:04:71:c3:4c:85:47:3c:0c:e8:0c: 1b:6e:d6:2a:83:59:82:a9:39:c4:79:fd:39:3e:eb: 6b:02:a7:a4:ea:40:a4:18:cc:b6:32:27:37:24:f0: 10:8d:00:41:47:cf:a3:64:65:85:13:de:74:86:d2: 3a:9c:a9:9a:c4:a5:fe:e6:83:2f:d3:5c:51:20:5f: fc:bd:e6:0a:d9:9c:4b:b4:29:8e:d2:f0:ce:3e:d8: 67:3c:99:a3:b2:00:8d:f4:7d:5e:ae:2a:d8:a9:3a: b8:91:b0:7b:cd:17:a6:bb:1b:4d:4e:32:e2:ee:74: 41:58:47:47:0a:b9:ad:c3:97:b5:47:c7:4d:09:aa: bd:ab:0b:4a:f5:6d:29:3f:dd:fd:3e:d0:d8:5b:11: aa:48:11:a1:05:56:5b:de:f1:c0:ea:f3:4c:59:e2: f5:35:a5:40:4f:0e:37:0a:15:40:3b:0b:60:2c:6e: 2a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9C:4B:32:B9:92:4A:7E:63:3C:0B:4C:77:A0:4A:6D:F7:38:42:79 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3c:59:63:28:0e:93:a4:8c:da:3b:bc:7e:ff:76:0b:01:7b: 9d:5e:4a:82:f4:d7:63:64:72:dd:87:b2:2f:b1:af:6c:0b:cb: 50:79:78:67:6b:0b:39:bc:2d:6a:5d:dc:fb:1d:84:4a:d8:0b: c9:31:37:6f:0e:43:00:41:fb:8f:31:e8:0a:cf:df:51:ed:e5: 38:9e:74:00:b0:b7:01:16:40:0f:fe:93:24:40:3f:b1:aa:6e: e1:c1:98:32:6b:1c:9d:fd:99:b4:d4:3d:9e:23:10:ae:08:17: 9d:3a:af:03:09:9f:ac:b6:4d:ee:51:41:0c:93:ee:83:00:17: 24:9a:8e:e9:9c:96:74:ac:79:37:63:5f:68:82:b6:c9:20:bc: ee:b9:8b:96:a8:e7:3d:86:51:18:9e:cd:8c:b8:c1:bf:36:d0: a8:b3:46:1c:22:55:2c:9e:f1:71:bc:41:c6:77:74:71:51:89: b8:95:88:00:fe:fc:f9:8f:e1:aa:5e:58:ab:ad:da:e2:1b:85: 9d:2e:81:91:e0:7f:11:c7:01:1a:03:22:5c:d0:ab:28:5a:b9: a2:c8:92:97:63:4c:66:ac:00:0c:74:fd:7d:7b:9c:bd:b9:26: ce:7d:dc:01:24:84:3d:16:ac:50:04:1c:86:e4:a6:b2:6b:5d: be:41:a1:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUwODA0MTQyNjQzWhcNMjUwODExMTQyNjQzWjAYMRYwFAYD VQQDEw02ODkwYzMyMy0yMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+AMGyxag9p5qbT6LwW5ok/si449hInFqTp/PsSjGUJj5U/NmaSMmutOH48i fjJebCjuIlFSOSEHc/VkFM/lQC7WWFqOoff5Ymkd59FVAwRxw0yFRzwM6AwbbtYq g1mCqTnEef05PutrAqek6kCkGMy2Mic3JPAQjQBBR8+jZGWFE950htI6nKmaxKX+ 5oMv01xRIF/8veYK2ZxLtCmO0vDOPthnPJmjsgCN9H1erirYqTq4kbB7zRemuxtN TjLi7nRBWEdHCrmtw5e1R8dNCaq9qwtK9W0pP939PtDYWxGqSBGhBVZb3vHA6vNM WeL1NaVATw43ChVAOwtgLG4q5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNucSzK5 kkp+YzwLTHegSm33OEJ5MB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSPFljKA6TpIzaO7x+/3YLAXudXkqC9NdjZHLdh7Ivsa9sC8tQeXhn aws5vC1qXdz7HYRK2AvJMTdvDkMAQfuPMegKz99R7eU4nnQAsLcBFkAP/pMkQD+x qm7hwZgyaxyd/Zm01D2eIxCuCBedOq8DCZ+stk3uUUEMk+6DABckmo7pnJZ0rHk3 Y19ogrbJILzuuYuWqOc9hlEYns2MuMG/NtCos0YcIlUsnvFxvEHGd3RxUYm4lYgA /vz5j+GqXlirrdriG4WdLoGR4H8RxwEaAyJc0KsoWrmiyJKXY0xmrAAMdP19e5y9 uSbOfdwBJIQ9FqxQBByG5Kaya12+QaEi -----END CERTIFICATE-----Generated at Tue Aug 5 17:19:55 2025 by rpki-client