$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: x3AOwT2sabeKp+SD3EMtylBQ7OMbAkg8xLdTDQTqWKE= Subject key identifier: 84:66:F4:FF:30:CA:F1:DC:5A:39:88:6E:31:D4:B1:08:01:A3:21:27 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 0D Signing time: Tue 17 Jun 2025 06:59:20 +0000 Manifest this update: Tue 17 Jun 2025 06:59:20 +0000 Manifest next update: Tue 24 Jun 2025 06:59:20 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: nfB29+ykfCjsXcCnymaKJlFG0beejM5EqAYISuu4TDw=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Jun 17 06:59:20 2025 GMT Not After : Jun 24 06:59:20 2025 GMT Subject: CN=68511248-4d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3e:17:92:fd:36:2f:9f:59:4a:f3:d8:b2:4e: 73:ac:f7:79:d2:ea:b7:47:70:2a:ee:16:01:bd:ac: 4f:72:51:47:0b:22:a2:64:3b:ba:97:6e:a8:e6:49: d0:6c:14:a2:0c:d4:8d:ec:7c:22:db:31:85:51:d6: 1b:92:1b:0a:a5:5f:da:91:fa:1b:07:88:96:96:de: 1a:55:9c:30:ef:d1:bf:9e:a6:95:8a:50:99:ef:71: 00:20:2c:33:e9:9b:da:0a:37:a6:ad:09:eb:24:73: cd:86:66:1f:3f:e8:d5:19:08:3d:32:d2:d5:8e:01: 23:20:0c:80:b7:3c:f7:01:b5:78:79:80:13:35:8f: 9b:dc:77:dd:0d:d0:41:0e:70:06:9f:96:cf:50:93: 10:6b:a5:2e:51:10:18:ea:18:5f:b7:bd:46:59:1c: 2c:99:d3:00:8e:1b:60:55:f0:a2:74:d0:30:a8:9b: 6a:5a:0c:d9:3c:ea:24:fc:a8:c0:a6:90:51:1d:d8: c4:cd:26:3d:53:37:f5:93:1c:6d:43:08:f8:1a:65: 45:c4:d2:24:8b:9d:9f:ee:cb:9f:82:8a:7b:c9:6f: 32:1d:57:f6:6d:8a:0a:6b:4b:aa:f5:25:c0:e9:6c: 16:c5:2b:93:62:c1:cd:e0:61:e1:11:df:16:00:c3: ce:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:66:F4:FF:30:CA:F1:DC:5A:39:88:6E:31:D4:B1:08:01:A3:21:27 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:ab:b7:b5:00:e6:05:33:1a:d5:c2:7c:c2:3b:36:77:04:40: f9:cb:1c:d0:2e:73:5c:b7:96:aa:62:78:23:51:f0:06:f0:2f: 78:2a:f4:da:1d:df:79:5f:98:5c:36:89:88:a8:6e:c8:bf:e0: c0:71:22:76:4c:bc:10:eb:ad:cf:64:5f:c3:e4:2a:54:62:6d: 12:3b:20:f4:1f:f1:8e:ed:d9:f7:f5:3b:e2:3d:d9:84:08:80: f3:5b:fe:27:bd:63:a1:a2:5a:15:50:0d:d9:b6:00:c0:41:c5: 19:ed:55:59:90:27:59:9a:20:b5:3b:84:a1:71:17:0c:d8:45: e9:b0:c3:0e:84:e2:f6:2a:67:87:ad:dd:25:50:ac:ec:98:2b: 58:11:ee:70:a7:1f:21:95:36:44:ae:4b:ee:1b:10:51:b9:7d: 9d:28:6b:1f:c8:32:a9:5d:54:b6:71:d7:25:62:41:dd:6a:97: ae:bd:58:47:da:62:a2:d7:d4:01:d4:ad:27:40:20:e3:f6:8b: 2e:1b:f5:2a:eb:21:da:1f:d5:72:49:42:45:67:3e:84:66:3e: 10:22:c8:0e:74:31:ba:e5:32:85:5b:c7:1d:3d:54:ce:b2:2a: 08:f4:d7:69:de:72:c7:52:23:d7:09:dd:1e:a4:5b:cd:51:df: 03:ca:79:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA2MTcwNjU5MjBaFw0yNTA2MjQwNjU5MjBaMBgxFjAUBgNV BAMTDTY4NTExMjQ4LTRkMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTPheS/TYvn1lK89iyTnOs93nS6rdHcCruFgG9rE9yUUcLIqJkO7qXbqjmSdBs FKIM1I3sfCLbMYVR1huSGwqlX9qR+hsHiJaW3hpVnDDv0b+eppWKUJnvcQAgLDPp m9oKN6atCeskc82GZh8/6NUZCD0y0tWOASMgDIC3PPcBtXh5gBM1j5vcd90N0EEO cAafls9QkxBrpS5REBjqGF+3vUZZHCyZ0wCOG2BV8KJ00DCom2paDNk86iT8qMCm kFEd2MTNJj1TN/WTHG1DCPgaZUXE0iSLnZ/uy5+CinvJbzIdV/ZtigprS6r1JcDp bBbFK5Niwc3gYeER3xYAw84tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhGb0/zDK 8dxaOYhuMdSxCAGjIScwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAert7UA5gUzGtXCfMI7NncEQPnLHNAuc1y3lqpieCNR8AbwL3gq9Nod 33lfmFw2iYiobsi/4MBxInZMvBDrrc9kX8PkKlRibRI7IPQf8Y7t2ff1O+I92YQI gPNb/ie9Y6GiWhVQDdm2AMBBxRntVVmQJ1maILU7hKFxFwzYRemwww6E4vYqZ4et 3SVQrOyYK1gR7nCnHyGVNkSuS+4bEFG5fZ0oax/IMqldVLZx1yViQd1ql669WEfa YqLX1AHUrSdAIOP2iy4b9SrrIdof1XJJQkVnPoRmPhAiyA50MbrlMoVbxx09VM6y Kgj012necsdSI9cJ3R6kW81R3wPKefk= -----END CERTIFICATE-----Generated at Wed Jun 18 16:26:24 2025 by rpki-client