$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft File: HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json) Hash identifier: gJck025rDCoLu1o9IsOZeyInktWoVd6Sj6zoBUOZLDE= Subject key identifier: 6F:6F:83:22:49:2F:B3:66:AA:20:AF:68:EC:F4:09:B7:D4:C3:21:F0 Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 34C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft Manifest number: 34B8 Signing time: Wed 06 Aug 2025 14:57:39 +0000 Manifest this update: Wed 06 Aug 2025 14:57:39 +0000 Manifest next update: Wed 13 Aug 2025 14:57:39 +0000 Files and hashes: 1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: ZdStthKt6As76O/9TG6u3Qz2Sp4BqIK4CHcGCEvHfDg=) 2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13507 (0x34c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Aug 6 14:57:39 2025 GMT Not After : Aug 13 14:57:39 2025 GMT Subject: CN=68936d63-ad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e8:f9:16:0d:30:b8:4b:2d:22:9f:5e:4a:2f: ac:c2:5a:51:c1:d0:98:5c:0e:d0:65:a8:f0:49:0e: 9e:c2:74:c4:9d:62:33:ff:64:d0:47:72:30:78:d9: 3a:1b:85:11:65:f3:ac:ea:7e:4c:73:a9:0e:80:41: 22:11:d3:a7:e9:a9:d9:07:c1:6b:64:59:b5:51:a4: f8:93:63:cf:f6:75:75:c7:9a:7a:08:d9:67:f7:58: 2a:46:64:94:bc:79:b7:82:1d:6e:bf:66:e3:82:38: 9f:3a:46:39:a1:ec:d1:f2:0c:1e:32:70:28:ad:2d: 13:ac:ce:e9:b3:f0:1c:21:0d:7b:90:4a:13:bc:95: 42:88:24:f2:30:ad:0a:5e:55:cf:42:c3:ac:e2:18: e9:d6:d5:47:50:37:f0:66:2e:b1:45:40:65:64:d7: 23:1c:41:a6:10:f7:d2:f8:50:47:ab:a6:2b:87:91: 0c:80:4e:07:0c:bd:a2:db:9d:f7:63:5c:ef:41:25: 1a:6e:84:78:4e:53:b2:96:a7:49:b2:74:72:3a:d3: 8b:d4:e0:25:da:73:f5:29:d7:7a:15:21:19:05:c7: aa:a5:4c:a0:2c:03:8d:f5:90:38:00:c4:f8:92:58: 4e:b1:cb:d2:a9:13:7f:79:d7:e4:74:16:7f:d2:48: d4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:6F:83:22:49:2F:B3:66:AA:20:AF:68:EC:F4:09:B7:D4:C3:21:F0 X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b2:f4:b9:6d:8d:64:2d:7a:96:58:59:b7:a4:ad:55:cc:e5: 76:42:92:4c:d5:74:89:e6:54:06:b4:2c:82:30:a8:4e:56:7b: f5:4c:73:35:b5:bc:8e:d7:03:d3:2c:de:73:f8:ab:71:0c:35: 6e:69:c5:5d:c1:b6:dd:46:ae:7a:6b:2b:73:c9:81:6a:de:ba: 09:eb:0a:23:7f:4f:f5:8a:89:65:d4:2e:b8:18:68:22:73:13: 32:fc:04:eb:5d:33:3d:00:28:bf:83:0a:ed:5b:9b:a9:67:b0: 82:fb:b6:7d:b3:64:9f:6d:c1:95:c0:db:d9:63:f0:f2:b6:0d: bb:17:d3:0b:4d:cc:96:1b:45:68:c7:f3:b1:e2:34:1e:97:cd: 77:34:9d:e5:4e:f2:18:f3:75:ac:7e:58:99:c7:b0:13:50:e7: 3e:d3:ad:af:94:3b:64:b7:10:15:e8:78:5f:e4:f0:48:9d:e3: c4:63:23:87:b3:cd:b5:14:26:cb:be:30:b1:01:06:09:5f:a3: 29:6b:03:a0:e9:95:c8:9f:14:2c:a3:71:aa:8b:6f:4d:95:92: 18:67:65:92:aa:d9:a9:02:aa:13:e6:78:fa:91:97:30:68:b0: 66:e7:fb:1e:6d:5c:45:80:bb:be:28:22:92:25:4b:fb:d6:ff: d4:51:f3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjUwODA2MTQ1NzM5WhcNMjUwODEzMTQ1NzM5WjAYMRYwFAYD VQQDEw02ODkzNmQ2My1hZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuj5Fg0wuEstIp9eSi+swlpRwdCYXA7QZajwSQ6ewnTEnWIz/2TQR3IweNk6 G4URZfOs6n5Mc6kOgEEiEdOn6anZB8FrZFm1UaT4k2PP9nV1x5p6CNln91gqRmSU vHm3gh1uv2bjgjifOkY5oezR8gweMnAorS0TrM7ps/AcIQ17kEoTvJVCiCTyMK0K XlXPQsOs4hjp1tVHUDfwZi6xRUBlZNcjHEGmEPfS+FBHq6Yrh5EMgE4HDL2i2533 Y1zvQSUaboR4TlOylqdJsnRyOtOL1OAl2nP1Kdd6FSEZBceqpUygLAON9ZA4AMT4 klhOscvSqRN/edfkdBZ/0kjULQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9vgyJJ L7NmqiCvaOz0CbfUwyHwMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNBOC84NzAzMjI1ODFEOUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpE OF9ZeVBTdVJCd3Z5UjlhR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAsvS5bY1kLXqWWFm3pK1VzOV2QpJM1XSJ5lQGtCyCMKhOVnv1THM1 tbyO1wPTLN5z+KtxDDVuacVdwbbdRq56aytzyYFq3roJ6wojf0/1ioll1C64GGgi cxMy/ATrXTM9ACi/gwrtW5upZ7CC+7Z9s2SfbcGVwNvZY/Dytg27F9MLTcyWG0Vo x/Ox4jQel813NJ3lTvIY83WsfliZx7ATUOc+062vlDtktxAV6Hhf5PBInePEYyOH s821FCbLvjCxAQYJX6MpawOg6ZXInxQso3Gqi29NlZIYZ2WSqtmpAqoT5nj6kZcw aLBm5/sebVxFgLu+KCKSJUv71v/UUfM0 -----END CERTIFICATE-----Generated at Wed Aug 6 19:37:25 2025 by rpki-client