$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft File: HVvjkVLqbW3wn52ErGmpYbfIOG4.mft (raw, json) Hash identifier: Ek7dU47OlZx5f5avsUegN1edzJC5FmIutJTQryiVokk= Subject key identifier: F2:5A:19:F4:B0:82:D8:2C:09:F1:1D:00:2F:99:5F:6A:BB:73:07:46 Authority key identifier: 1D:5B:E3:91:52:EA:6D:6D:F0:9F:9D:84:AC:69:A9:61:B7:C8:38:6E Certificate issuer: /CN=A91F43F2/serialNumber=1D5BE39152EA6D6DF09F9D84AC69A961B7C8386E Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft Manifest number: 0D Signing time: Tue 05 Aug 2025 08:46:56 +0000 Manifest this update: Tue 05 Aug 2025 08:46:56 +0000 Manifest next update: Tue 12 Aug 2025 08:46:56 +0000 Files and hashes: 1: HVvjkVLqbW3wn52ErGmpYbfIOG4.crl (hash: 1yloQ0tJRuJWtwtoR6HHoV0aPWQXWJBtQ/VfHxe3ESU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=1D5BE39152EA6D6DF09F9D84AC69A961B7C8386E Validity Not Before: Aug 5 08:46:56 2025 GMT Not After : Aug 12 08:46:56 2025 GMT Subject: CN=6891c500-1c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:1d:10:e4:9d:bb:5e:2b:42:54:20:3d:04: 8a:7a:d4:73:f7:3e:5c:cb:9e:7b:fe:27:4e:0a:08: 01:2d:8e:04:32:c4:8c:2f:50:d4:31:f7:56:79:7d: 26:ea:0b:da:ec:92:72:43:3c:65:54:be:61:8d:fc: 93:06:ca:ce:03:37:81:d6:17:68:79:65:5a:9a:eb: 9c:55:99:7b:e7:ba:54:0a:b1:c2:6b:8f:7e:dd:3f: 81:ca:71:93:b4:98:cc:29:97:0f:23:0f:49:dc:a8: 53:7e:91:c3:c9:75:59:d5:53:b2:fd:9d:8e:e9:a6: 99:ba:63:2a:3d:8e:08:3c:ac:0a:d9:01:72:e3:8b: 04:11:29:4e:84:8f:fe:e3:12:6d:af:5a:7d:d2:80: 8d:57:62:37:9d:6a:ff:a6:ae:9d:b5:a6:9c:c6:f1: 4c:31:7d:2d:c3:80:ae:17:78:13:24:ed:de:fb:2a: c0:54:9d:31:5c:f4:4b:03:56:ba:66:96:86:1e:39: d4:da:3d:5c:53:23:aa:ef:50:5f:14:32:bb:63:a5: 2c:d2:4e:de:27:27:0b:d8:25:0b:e9:63:43:bf:25: 45:49:3a:b1:d2:65:00:d0:88:14:76:39:54:97:ec: e1:0d:b5:8e:76:c5:01:bc:fe:16:00:dd:03:63:b6: c5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5A:19:F4:B0:82:D8:2C:09:F1:1D:00:2F:99:5F:6A:BB:73:07:46 X509v3 Authority Key Identifier: keyid:1D:5B:E3:91:52:EA:6D:6D:F0:9F:9D:84:AC:69:A9:61:B7:C8:38:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:93:70:78:94:ec:95:d5:de:cc:60:fa:7a:79:e4:bf:0f:10: 25:22:21:b6:82:1e:55:28:f4:c1:8f:74:01:be:bb:3c:14:e4: 41:e7:9a:be:6b:8a:26:a4:fa:f3:46:f3:7f:6c:86:b4:f5:5d: 93:0d:fd:c9:03:08:0f:db:3e:46:7c:64:9a:df:52:06:74:af: c0:f9:96:8e:c9:46:39:9c:59:df:4d:88:6e:dc:37:48:28:da: 3e:18:84:96:0b:3d:2c:c1:14:51:db:aa:ad:a8:5c:5e:8e:56: e5:55:4e:3a:96:76:13:f1:1b:2f:68:a4:ec:fd:31:38:ac:f4: 22:18:ed:ee:7b:05:e2:26:02:4c:60:f5:7a:55:14:13:48:8b: 82:08:85:9d:8b:bc:06:51:a2:56:c1:4c:d7:7b:e3:8c:f2:5b: 30:e5:68:aa:65:ec:a8:9d:c9:83:bc:cf:31:f8:91:89:77:5d: 0e:e1:cc:1c:d2:fc:a5:1b:16:53:f6:49:0e:55:e1:1a:e6:92: 90:ad:30:f9:dd:1c:26:9c:bd:c4:c4:b7:06:5a:13:8f:fd:2d: 66:b3:8d:37:b4:78:4a:75:fd:db:fc:1d:96:84:d8:21:bc:ca: 11:eb:0a:fe:16:a0:1e:09:93:a6:fa:ac:27:1f:78:91:c6:f5: cf:cb:5b:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoMUQ1QkUzOTE1MkVBNkQ2REYwOUY5RDg0QUM2OUE5NjFC N0M4Mzg2RTAeFw0yNTA4MDUwODQ2NTZaFw0yNTA4MTIwODQ2NTZaMBgxFjAUBgNV BAMTDTY4OTFjNTAwLTFjNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9ER0Q5J27XitCVCA9BIp61HP3PlzLnnv+J04KCAEtjgQyxIwvUNQx91Z5fSbq C9rsknJDPGVUvmGN/JMGys4DN4HWF2h5ZVqa65xVmXvnulQKscJrj37dP4HKcZO0 mMwplw8jD0ncqFN+kcPJdVnVU7L9nY7pppm6Yyo9jgg8rArZAXLjiwQRKU6Ej/7j Em2vWn3SgI1XYjedav+mrp21ppzG8UwxfS3DgK4XeBMk7d77KsBUnTFc9EsDVrpm loYeOdTaPVxTI6rvUF8UMrtjpSzSTt4nJwvYJQvpY0O/JUVJOrHSZQDQiBR2OVSX 7OENtY52xQG8/hYA3QNjtsVzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8loZ9LCC 2CwJ8R0AL5lfartzB0YwHwYDVR0jBBgwFoAUHVvjkVLqbW3wn52ErGmpYbfIOG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzRDMDRGMDZBNjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL0hWdmprVkxxYlczd241MkVyR21wWWJmSU9H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFZ2amtWTHFiVzN3bjUyRXJHbXBZYmZJT0c0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzRDMDRGMDZBNjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL0hWdmprVkxxYlcz d241MkVyR21wWWJmSU9HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHOTcHiU7JXV3sxg+np55L8PECUiIbaCHlUo9MGPdAG+uzwU5EHnmr5r iiak+vNG839shrT1XZMN/ckDCA/bPkZ8ZJrfUgZ0r8D5lo7JRjmcWd9NiG7cN0go 2j4YhJYLPSzBFFHbqq2oXF6OVuVVTjqWdhPxGy9opOz9MTis9CIY7e57BeImAkxg 9XpVFBNIi4IIhZ2LvAZRolbBTNd744zyWzDlaKpl7KidyYO8zzH4kYl3XQ7hzBzS /KUbFlP2SQ5V4RrmkpCtMPndHCacvcTEtwZaE4/9LWazjTe0eEp1/dv8HZaE2CG8 yhHrCv4WoB4Jk6b6rCcfeJHG9c/LW3E= -----END CERTIFICATE-----Generated at Wed Aug 6 11:06:01 2025 by rpki-client