$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: ayRBuHF4HRtGz4XdlVuIMeTxCJQZAD2khDA+O4417/A= Subject key identifier: 16:1D:9A:AF:50:BD:10:21:C2:67:16:63:7C:5A:A3:06:73:7B:A7:D4 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 080C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 07F3 Signing time: Sun 10 Aug 2025 21:09:46 +0000 Manifest this update: Sun 10 Aug 2025 21:09:46 +0000 Manifest next update: Sun 17 Aug 2025 21:09:46 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: QL0wKwpO9h3aQuSt0Mai8TGzkyapuu0zZp/sGeHRPto=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Aug 10 21:09:46 2025 GMT Not After : Aug 17 21:09:46 2025 GMT Subject: CN=68990a9a-9132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:77:23:62:2d:ce:87:45:1b:18:0c:d7:a4:79: fc:2f:10:91:69:a6:d8:21:a8:5a:75:fd:43:d4:51: 4b:49:27:59:2e:0a:9c:1f:aa:7f:7b:d7:40:8c:2f: 03:77:51:0d:13:87:e9:3f:c0:1a:ca:3e:67:f2:df: 0a:11:34:d7:2f:de:2f:d2:8c:e3:e2:6c:a4:77:f6: cb:26:c4:ee:0c:73:cd:cf:62:c5:09:94:15:13:5c: 66:97:23:2f:bd:d4:87:41:27:1a:0e:04:b9:2c:93: f4:0f:c4:b9:8e:fa:50:2e:f3:58:e8:7f:d9:17:d9: 3b:79:61:14:b4:49:bd:95:24:67:20:cf:b9:b0:85: 67:ac:ae:55:98:41:b6:e8:a3:a7:96:aa:66:01:97: d2:5e:2c:0c:6e:74:d0:31:83:27:1e:0b:b7:cb:1b: 4f:ea:a5:34:62:53:f0:97:8d:f1:bf:d4:e9:dc:4b: 01:28:d0:c2:23:68:93:35:78:c7:3d:12:f2:94:7b: 1a:7c:64:6c:90:5d:0c:f3:74:e1:27:88:d4:4a:d2: 4b:3b:56:98:b6:bb:ae:ef:b0:36:ff:12:61:97:3c: c0:ee:77:2f:46:6a:5c:f7:46:d3:f9:f1:1a:9d:0a: e4:e7:d3:ce:ce:cd:8b:4a:ff:50:bc:e8:b4:c4:98: 4d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1D:9A:AF:50:BD:10:21:C2:67:16:63:7C:5A:A3:06:73:7B:A7:D4 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:32:20:75:35:a6:79:6e:44:42:a3:28:8b:c8:4c:0b:29:f0: 8c:b1:c2:d2:81:e7:15:83:a8:a9:8d:bc:48:3e:20:d4:2b:87: 0f:b2:2b:10:e0:23:3d:cb:d8:a2:6f:2b:74:b8:49:aa:e8:af: 45:76:5b:d5:f9:ce:86:99:12:e0:4f:1a:eb:82:0e:a7:bf:66: 27:f7:d2:08:f3:a6:45:5f:12:39:37:36:17:96:f7:73:26:fb: 28:c7:78:aa:57:38:47:3f:a7:7a:18:a5:1f:71:5d:cc:3c:41: 40:0e:a5:69:39:f9:c1:af:45:5b:cc:86:9b:56:51:93:31:e6: 6f:f7:09:9d:25:bd:5e:40:f2:2b:8d:06:ea:c3:0e:6d:42:3c: bf:86:f1:0a:1b:60:e2:13:3e:1a:43:e2:64:43:cf:93:05:1a: 21:62:ae:cf:2d:4d:21:df:ec:74:65:9d:6b:db:1f:ec:1a:85: f4:04:7a:42:70:8b:a4:4c:a9:6b:d7:da:90:ac:4d:ab:01:42: ef:eb:28:ac:51:2b:9e:fe:56:1b:fe:83:ee:1d:cf:c8:e5:3b: 8a:f9:70:d8:e3:6d:e6:40:e4:a7:42:4d:32:6e:a7:71:c2:9d: 79:09:cb:68:87:91:f4:0c:65:46:74:47:5f:5e:77:e8:0b:e9: 3e:38:fc:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUwODEwMjEwOTQ2WhcNMjUwODE3MjEwOTQ2WjAYMRYwFAYD VQQDEw02ODk5MGE5YS05MTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqncjYi3Oh0UbGAzXpHn8LxCRaabYIahadf1D1FFLSSdZLgqcH6p/e9dAjC8D d1ENE4fpP8Aayj5n8t8KETTXL94v0ozj4mykd/bLJsTuDHPNz2LFCZQVE1xmlyMv vdSHQScaDgS5LJP0D8S5jvpQLvNY6H/ZF9k7eWEUtEm9lSRnIM+5sIVnrK5VmEG2 6KOnlqpmAZfSXiwMbnTQMYMnHgu3yxtP6qU0YlPwl43xv9Tp3EsBKNDCI2iTNXjH PRLylHsafGRskF0M83ThJ4jUStJLO1aYtruu77A2/xJhlzzA7ncvRmpc90bT+fEa nQrk59POzs2LSv9QvOi0xJhNswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYdmq9Q vRAhwmcWY3xaowZze6fUMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8MiB1NaZ5bkRCoyiLyEwLKfCMscLSgecVg6ipjbxIPiDUK4cPsisQ 4CM9y9iibyt0uEmq6K9FdlvV+c6GmRLgTxrrgg6nv2Yn99II86ZFXxI5NzYXlvdz Jvsox3iqVzhHP6d6GKUfcV3MPEFADqVpOfnBr0VbzIabVlGTMeZv9wmdJb1eQPIr jQbqww5tQjy/hvEKG2DiEz4aQ+JkQ8+TBRohYq7PLU0h3+x0ZZ1r2x/sGoX0BHpC cIukTKlr19qQrE2rAULv6yisUSue/lYb/oPuHc/I5TuK+XDY423mQOSnQk0ybqdx wp15Cctoh5H0DGVGdEdfXnfoC+k+OPyv -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:40 2025 by rpki-client