$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: GAR+ydEUJ2BVFFsEJ/wCCuD0zywTNRKo3c51MV2DXrY= Subject key identifier: 27:19:A3:98:22:7E:C0:C7:1E:27:D9:3B:9A:96:41:B2:14:EF:03:18 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 29 Signing time: Mon 11 Aug 2025 08:05:01 +0000 Manifest this update: Mon 11 Aug 2025 08:05:01 +0000 Manifest next update: Mon 18 Aug 2025 08:05:01 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: Wq2YHaePjMYUndyrl6OvA92Tuy+ZnKnjZs7dA2XuyEs=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Aug 11 08:05:01 2025 GMT Not After : Aug 18 08:05:01 2025 GMT Subject: CN=6899a42d-a943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:d3:db:8e:aa:82:e3:9c:d1:cb:a3:1c:0b: 62:b2:17:04:4d:ea:62:c1:68:77:97:78:c4:51:3c: 69:64:42:ef:12:89:40:77:02:bc:20:57:97:1a:1a: 34:cc:41:ee:da:06:05:fc:8d:f5:1d:6e:c5:e9:95: c2:15:cf:a7:e3:3e:1d:41:d7:df:3d:53:a9:20:70: d2:bb:ee:92:53:bd:27:89:42:dc:e0:a8:a0:fa:4d: 0d:ea:b3:fb:aa:98:f3:f6:23:27:3d:d9:12:26:03: e8:43:7d:cf:0b:c4:19:e5:b2:6f:b4:bc:f3:89:0e: 4a:0e:38:df:65:38:ee:20:28:1a:6f:b8:a5:d4:b2: 63:0d:09:fd:77:3f:f4:34:c1:f6:57:84:fb:9a:82: 47:3c:4c:97:f6:23:b1:e2:de:a9:c2:73:18:b1:97: 7d:d7:a2:ce:4c:1b:42:9e:b1:b5:45:40:81:16:a3: 14:fd:96:86:ee:30:54:2b:59:a6:19:e2:d5:fc:98: c3:06:8f:8e:d2:93:48:17:04:37:64:34:81:d2:d8: ff:5e:94:11:91:1b:8b:bf:7e:28:6e:2b:0b:b4:62: 28:8e:43:68:16:8d:80:e3:fe:66:49:70:21:71:7f: 2f:58:e7:1f:9c:5c:4d:63:2b:29:73:41:c8:81:a0: e2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:19:A3:98:22:7E:C0:C7:1E:27:D9:3B:9A:96:41:B2:14:EF:03:18 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:c3:c0:e2:fc:2f:38:fc:1d:4e:90:60:84:28:03:a9:83:46: 13:f6:be:47:a7:39:e1:b6:7c:f0:cd:f1:0d:1e:83:3d:9f:11: b9:e5:9a:44:56:90:9b:fd:df:f5:ab:f2:cd:da:11:57:05:82: 64:52:ed:81:1f:07:a0:01:a4:1c:5d:fe:42:95:8b:42:df:20: 28:e6:df:68:c1:9a:bb:18:36:08:82:09:d5:2b:61:f2:49:ee: f0:a7:43:95:eb:34:58:7c:ac:a2:70:a7:3b:32:33:97:60:4e: 09:76:45:b6:99:55:7d:67:61:df:c5:62:36:a3:ec:78:cb:d0: 0b:9b:b9:4d:4c:f9:41:a4:e0:e8:57:a5:ae:f0:09:d6:5a:be: 2b:86:70:c6:68:d5:4e:a1:ff:12:32:b0:14:00:ed:c3:8d:50: 37:4c:91:ca:2f:e7:a2:fe:5f:f7:3c:39:a3:df:c3:af:11:53: c8:85:6d:a5:72:4d:92:dd:7e:01:96:94:62:03:17:87:12:2d: bb:f0:f8:a6:d5:8e:72:42:63:3b:6e:9a:f4:98:2f:a3:77:f9: 27:a0:8e:65:03:e3:1a:91:66:bb:14:38:00:5f:07:ef:7a:79: a4:e5:19:8a:5f:7b:27:38:f7:96:62:1e:37:1b:22:1e:09:f3: f8:da:05:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA4MTEwODA1MDFaFw0yNTA4MTgwODA1MDFaMBgxFjAUBgNV BAMTDTY4OTlhNDJkLWE5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgIdPbjqqC45zRy6McC2KyFwRN6mLBaHeXeMRRPGlkQu8SiUB3ArwgV5caGjTM Qe7aBgX8jfUdbsXplcIVz6fjPh1B1989U6kgcNK77pJTvSeJQtzgqKD6TQ3qs/uq mPP2Iyc92RImA+hDfc8LxBnlsm+0vPOJDkoOON9lOO4gKBpvuKXUsmMNCf13P/Q0 wfZXhPuagkc8TJf2I7Hi3qnCcxixl33Xos5MG0KesbVFQIEWoxT9lobuMFQrWaYZ 4tX8mMMGj47Sk0gXBDdkNIHS2P9elBGRG4u/fihuKwu0YiiOQ2gWjYDj/mZJcCFx fy9Y5x+cXE1jKylzQciBoOKJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJxmjmCJ+ wMceJ9k7mpZBshTvAxgwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMvDwOL8Lzj8HU6QYIQoA6mDRhP2vkenOeG2fPDN8Q0egz2fEbnlmkRW kJv93/Wr8s3aEVcFgmRS7YEfB6ABpBxd/kKVi0LfICjm32jBmrsYNgiCCdUrYfJJ 7vCnQ5XrNFh8rKJwpzsyM5dgTgl2RbaZVX1nYd/FYjaj7HjL0AubuU1M+UGk4OhX pa7wCdZaviuGcMZo1U6h/xIysBQA7cONUDdMkcov56L+X/c8OaPfw68RU8iFbaVy TZLdfgGWlGIDF4cSLbvw+KbVjnJCYztumvSYL6N3+SegjmUD4xqRZrsUOABfB+96 eaTlGYpfeyc495ZiHjcbIh4J8/jaBe0= -----END CERTIFICATE-----Generated at Tue Aug 12 04:16:55 2025 by rpki-client