$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: HNcwijM3SajigDjeF8D778AuLCO3ZdnE6pC0rRwQiMo= Subject key identifier: DB:9A:F2:3A:84:FF:62:C8:39:A7:72:AA:8F:39:D0:60:77:83:40:B3 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 349E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 349B Signing time: Fri 18 Jul 2025 14:26:44 +0000 Manifest this update: Fri 18 Jul 2025 14:26:44 +0000 Manifest next update: Fri 25 Jul 2025 14:26:44 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: TiVwAIBtbVI4iSYKNH+50qCt9MuQZJ5sJNfsullXIms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13470 (0x349e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Jul 18 14:26:44 2025 GMT Not After : Jul 25 14:26:44 2025 GMT Subject: CN=687a59a4-e12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:b7:d1:05:0a:7a:bd:5f:44:b7:7a:0e:2c: 43:18:99:77:33:89:8e:9b:1b:6f:c4:22:f7:2a:46: b2:1c:ba:f4:47:13:2c:b7:36:bc:ef:84:e4:68:d0: 20:c4:9c:71:b7:68:a1:b6:9f:60:c2:ec:01:ee:aa: 81:25:93:51:e2:ca:f6:ac:98:38:3b:5a:54:32:40: 16:c5:8a:58:4a:b8:eb:51:44:ac:f8:0a:88:0f:36: e9:69:a9:e3:78:5f:d6:d6:91:20:9f:7c:13:dc:23: a5:96:90:64:b9:40:85:88:79:1e:ee:49:18:34:e2: 20:e3:41:48:de:b5:4d:e0:84:0a:61:1e:27:e5:f5: fb:d6:a4:55:36:9b:d4:e5:fe:dd:44:50:4e:71:e6: 97:16:52:79:fd:ac:bd:ea:cd:f0:2b:0d:c2:54:2a: 31:39:91:fc:d5:bc:38:9f:d9:2b:a9:1d:db:ba:5d: 44:85:b7:8d:9b:72:a3:3c:70:ed:dd:81:a3:5e:19: 51:26:8d:58:98:2d:bc:04:3d:3b:91:60:7a:96:cd: c8:63:6a:d8:6f:84:41:c5:1f:61:63:0b:a2:c6:77: c1:9b:d5:bc:87:2e:45:80:c8:f6:53:c6:70:ab:39: 28:e0:f2:20:34:62:89:3b:47:9c:e3:d1:d6:95:b6: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9A:F2:3A:84:FF:62:C8:39:A7:72:AA:8F:39:D0:60:77:83:40:B3 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:6b:a2:57:e9:98:50:2f:69:2b:85:4c:92:8a:6f:98:86:05: ab:6f:1f:f9:e6:71:1c:50:ba:6d:e3:ad:39:b8:64:08:fe:d5: 02:fc:80:52:78:4f:d6:8b:04:11:ba:00:38:1e:5a:64:39:df: 11:48:f5:ae:1d:23:53:d0:65:5b:9d:70:b1:0d:59:3c:30:46: 13:ce:3c:e8:66:49:27:35:77:47:4c:3f:1a:80:a7:08:31:bd: 79:3f:2b:a4:df:e5:f7:a2:f3:39:2f:0f:62:2f:fe:49:0e:4e: 72:98:31:6a:7a:a0:6f:b0:03:74:ed:23:e0:78:0a:b3:5f:75: 95:c6:5b:3a:a2:dd:22:e2:a0:f6:b4:ea:a1:b0:8c:c5:71:a6: fc:64:a7:3b:c0:be:ba:82:bf:cd:f3:b7:a2:90:74:f6:eb:2a: 5d:43:0e:ad:a8:e6:87:13:12:58:91:4b:9f:34:79:89:e4:2a: a5:4e:d3:d3:2b:30:0c:45:f9:fb:a3:83:94:9a:5f:7c:20:8b: 73:db:ce:07:b2:d1:7b:76:f6:09:f4:1b:e0:f4:8b:ee:62:25: 2a:02:6a:68:e4:67:da:21:74:1c:ef:36:1c:66:ff:c9:58:1b: e4:63:39:bf:c9:42:34:1a:35:e5:95:9f:2c:ea:7c:c4:bf:88: e1:b0:ac:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUwNzE4MTQyNjQ0WhcNMjUwNzI1MTQyNjQ0WjAYMRYwFAYD VQQDEw02ODdhNTlhNC1lMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvK30QUKer1fRLd6DixDGJl3M4mOmxtvxCL3KkayHLr0RxMstza874TkaNAg xJxxt2ihtp9gwuwB7qqBJZNR4sr2rJg4O1pUMkAWxYpYSrjrUUSs+AqIDzbpaanj eF/W1pEgn3wT3COllpBkuUCFiHke7kkYNOIg40FI3rVN4IQKYR4n5fX71qRVNpvU 5f7dRFBOceaXFlJ5/ay96s3wKw3CVCoxOZH81bw4n9krqR3bul1EhbeNm3KjPHDt 3YGjXhlRJo1YmC28BD07kWB6ls3IY2rYb4RBxR9hYwuixnfBm9W8hy5FgMj2U8Zw qzko4PIgNGKJO0ec49HWlban6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNua8jqE /2LIOadyqo850GB3g0CzMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8a6JX6ZhQL2krhUySim+YhgWrbx/55nEcULpt4605uGQI/tUC/IBS eE/WiwQRugA4HlpkOd8RSPWuHSNT0GVbnXCxDVk8MEYTzjzoZkknNXdHTD8agKcI Mb15Pyuk3+X3ovM5Lw9iL/5JDk5ymDFqeqBvsAN07SPgeAqzX3WVxls6ot0i4qD2 tOqhsIzFcab8ZKc7wL66gr/N87eikHT26ypdQw6tqOaHExJYkUufNHmJ5CqlTtPT KzAMRfn7o4OUml98IItz284HstF7dvYJ9Bvg9IvuYiUqAmpo5GfaIXQc7zYcZv/J WBvkYzm/yUI0GjXllZ8s6nzEv4jhsKyu -----END CERTIFICATE-----Generated at Sun Jul 20 03:15:11 2025 by rpki-client