$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: qSSPyR8AfHbanhscMihKvvuvs20iQW8YpU0jAz8rqyI= Subject key identifier: 82:6D:B2:4F:35:04:29:29:9A:BA:33:40:36:D9:17:F3:42:C0:C7:34 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A14 Signing time: Sun 10 Aug 2025 19:50:00 +0000 Manifest this update: Sun 10 Aug 2025 19:49:59 +0000 Manifest next update: Sun 17 Aug 2025 19:49:59 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: 1yOlh9B1kEf3x3/yWbjEoJs6+iWdXU1yURKPVBsa5KU=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2591 (0xa1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Aug 10 19:49:59 2025 GMT Not After : Aug 17 19:49:59 2025 GMT Subject: CN=6898f7e8-91e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:69:d9:40:0b:3c:7e:a0:e8:a8:fa:58:d1:bd: 9f:dd:a6:52:5a:94:6d:93:7b:12:14:37:31:d9:bb: 4f:4a:d7:b2:3c:0e:fc:5d:53:3f:ad:dc:47:9f:e2: 23:30:3e:56:d4:02:b9:dd:78:9a:27:f4:0f:9c:36: 00:dd:c4:e8:15:8c:b5:b0:52:72:02:98:be:17:97: 5c:e7:2a:4b:96:96:56:16:80:2e:22:4f:2d:95:28: fc:a0:b2:cd:51:f6:3e:71:8c:46:7c:d2:c4:d4:e2: 71:58:ad:b5:82:66:fb:f7:f6:87:29:91:b0:b4:41: 3c:88:f5:cd:da:aa:5e:b2:7d:06:c9:11:82:92:a8: a1:6a:c5:5d:47:af:8b:0a:71:b9:2b:2e:72:2a:02: a2:c1:e8:66:ab:b9:19:75:8c:06:d3:ee:a7:12:2c: e4:d8:e3:40:dc:06:fb:09:ec:7c:37:63:90:85:7d: 87:e0:e5:d9:4d:35:85:43:91:c1:d7:43:9e:67:59: 17:e5:4b:dc:9d:e7:16:95:9c:8a:6f:d8:2f:8d:18: 8d:05:b1:cb:2f:fe:c2:5b:03:9e:ee:2d:d4:a8:36: 69:4f:3a:3d:4c:4c:ec:c8:d9:56:e6:93:af:d4:97: 1e:9d:72:0b:e6:af:4a:ae:42:6a:e6:3e:77:e5:e1: 20:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6D:B2:4F:35:04:29:29:9A:BA:33:40:36:D9:17:F3:42:C0:C7:34 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:95:04:8e:70:a2:5f:f0:bf:3b:33:ed:85:f6:7d:3f:00:5b: c2:2c:b0:6f:72:ea:dc:33:7d:2b:f1:ec:b9:cc:7a:8e:9c:d8: 17:7c:02:e6:d3:57:55:c1:24:0e:e2:d3:ec:63:f4:7a:9b:da: c2:e1:3a:02:48:9f:3b:64:cd:72:bb:50:a0:ed:69:dd:5a:b7: 62:8e:c4:41:96:ee:32:29:87:0b:90:04:2d:82:58:36:d2:19: 27:58:ab:75:ab:17:f9:7b:e9:0f:fa:45:46:fe:f6:4e:0c:ae: c4:d0:1f:7e:f3:00:9a:02:67:ef:fd:f2:17:d5:fe:8e:4b:2a: 5c:49:ff:0f:be:3f:68:e4:36:91:33:9e:7e:17:b5:d2:45:86: 04:29:34:ab:25:f5:25:72:7f:44:80:93:b4:ac:f9:58:f2:c5: e0:2b:4a:e0:fc:cc:23:6a:87:24:da:6e:0b:6c:c1:27:87:35: 3c:59:72:e1:b6:b4:9e:fb:09:33:f7:f6:41:34:98:dc:c4:ae: cc:13:c9:28:c5:90:f1:fa:e0:60:1d:95:c0:c8:35:c5:16:9b: 8c:50:98:d0:f6:41:26:01:c8:29:da:fd:e0:e3:67:27:76:25: 53:ef:df:07:4b:cc:a9:11:b7:29:4d:a4:4a:c3:3f:9e:87:ae: 99:b6:7e:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUwODEwMTk0OTU5WhcNMjUwODE3MTk0OTU5WjAYMRYwFAYD VQQDEw02ODk4ZjdlOC05MWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02nZQAs8fqDoqPpY0b2f3aZSWpRtk3sSFDcx2btPSteyPA78XVM/rdxHn+Ij MD5W1AK53XiaJ/QPnDYA3cToFYy1sFJyApi+F5dc5ypLlpZWFoAuIk8tlSj8oLLN UfY+cYxGfNLE1OJxWK21gmb79/aHKZGwtEE8iPXN2qpesn0GyRGCkqihasVdR6+L CnG5Ky5yKgKiwehmq7kZdYwG0+6nEizk2ONA3Ab7Cex8N2OQhX2H4OXZTTWFQ5HB 10OeZ1kX5UvcnecWlZyKb9gvjRiNBbHLL/7CWwOe7i3UqDZpTzo9TEzsyNlW5pOv 1JcenXIL5q9KrkJq5j535eEglwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJtsk81 BCkpmrozQDbZF/NCwMc0MB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAClQSOcKJf8L87M+2F9n0/AFvCLLBvcurcM30r8ey5zHqOnNgXfALm 01dVwSQO4tPsY/R6m9rC4ToCSJ87ZM1yu1Cg7WndWrdijsRBlu4yKYcLkAQtglg2 0hknWKt1qxf5e+kP+kVG/vZODK7E0B9+8wCaAmfv/fIX1f6OSypcSf8Pvj9o5DaR M55+F7XSRYYEKTSrJfUlcn9EgJO0rPlY8sXgK0rg/Mwjaock2m4LbMEnhzU8WXLh trSe+wkz9/ZBNJjcxK7ME8koxZDx+uBgHZXAyDXFFpuMUJjQ9kEmAcgp2v3g42cn diVT798HS8ypEbcpTaRKwz+eh66Ztn61 -----END CERTIFICATE-----Generated at Mon Aug 11 02:07:03 2025 by rpki-client