$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft File: HVvjkVLqbW3wn52ErGmpYbfIOG4.mft (raw, json) Hash identifier: tZ2rnFc/cicQN6hE5QHkoF+QKKtsnKpQV9TKBhGiaBU= Subject key identifier: 8F:E0:D1:18:35:DA:66:05:7C:48:AA:C8:9F:76:DB:78:C0:35:30:D1 Authority key identifier: 1D:5B:E3:91:52:EA:6D:6D:F0:9F:9D:84:AC:69:A9:61:B7:C8:38:6E Certificate issuer: /CN=A91F43F2/serialNumber=1D5BE39152EA6D6DF09F9D84AC69A961B7C8386E Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft Manifest number: 04 Signing time: Sat 19 Jul 2025 08:29:09 +0000 Manifest this update: Sat 19 Jul 2025 08:29:08 +0000 Manifest next update: Sat 26 Jul 2025 08:29:08 +0000 Files and hashes: 1: HVvjkVLqbW3wn52ErGmpYbfIOG4.crl (hash: qqzfqdeYugy61L4OWRGrlEdrx+MsE9nP+pxqvTHEewI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=1D5BE39152EA6D6DF09F9D84AC69A961B7C8386E Validity Not Before: Jul 19 08:29:08 2025 GMT Not After : Jul 26 08:29:08 2025 GMT Subject: CN=687b5754-99ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:bf:47:c0:e6:28:4d:61:14:ca:74:b9:c7: 1c:df:b0:9e:5b:d5:3a:54:12:20:78:e9:ed:0a:9c: 49:f0:05:41:c5:af:38:7b:ab:c3:4f:f6:42:7c:9f: 98:69:40:b1:87:e6:5f:70:14:e7:42:f3:4e:ec:e2: 76:fa:dc:6d:be:3b:52:88:04:62:c8:83:f6:33:f5: 7d:d8:31:f8:e9:7e:ab:e8:55:04:7f:b6:54:5b:f4: 9b:c5:0c:b9:78:50:09:ce:cc:88:6c:59:83:24:f3: 00:9e:f3:f6:0e:63:8f:5c:f5:1e:01:98:94:b5:5e: a7:52:55:75:7e:14:ff:8c:0d:02:0e:39:52:8f:0a: 70:c1:6e:fb:94:39:27:01:33:58:0d:7b:2b:42:90: 48:49:3a:10:a9:c5:68:ad:79:64:fd:48:25:90:cf: a1:7a:e3:10:65:4f:70:0f:e1:69:db:15:04:12:09: 7f:9d:90:39:9f:1f:86:96:68:f5:d9:3c:25:f4:a6: 65:d5:27:eb:00:14:cc:f5:ba:0c:e9:9f:0d:a4:6f: d6:82:b9:6b:93:a7:e2:c9:35:24:62:99:b0:66:a4: cf:88:7e:e0:91:08:21:55:15:9f:6e:60:1c:37:b9: 60:a9:59:9d:ad:ce:37:2e:18:07:d5:3c:a7:c7:e5: 08:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E0:D1:18:35:DA:66:05:7C:48:AA:C8:9F:76:DB:78:C0:35:30:D1 X509v3 Authority Key Identifier: keyid:1D:5B:E3:91:52:EA:6D:6D:F0:9F:9D:84:AC:69:A9:61:B7:C8:38:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVvjkVLqbW3wn52ErGmpYbfIOG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4C04F06A60C011F0AFB4572BC4F9AE02/HVvjkVLqbW3wn52ErGmpYbfIOG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:59:5c:65:02:41:45:37:ee:be:f0:0e:20:bf:12:52:8c:90: 3b:4a:0d:8f:b2:00:28:a8:16:0d:44:26:3e:4c:b0:29:f8:26: a0:4d:7e:aa:57:4a:a8:08:22:ab:44:40:3e:57:79:37:cb:d8: 2a:61:10:a0:d0:7d:1f:f0:87:f6:22:a1:99:82:d6:38:da:29: 46:54:75:c8:f9:22:b3:2c:44:44:87:a1:77:a3:82:7e:a2:41: a3:13:e7:c7:a8:1e:e9:ea:7f:9a:5c:45:13:07:8d:13:c0:f0: 48:5d:a0:3c:cd:c7:a7:dd:6c:df:af:f4:8a:34:a0:31:5a:ad: b2:47:97:56:16:59:22:05:cd:e6:5c:78:08:39:21:0b:93:ed: a8:d9:5e:78:14:46:60:0c:b5:f4:f2:8d:15:d3:80:15:02:8e: d3:52:a7:04:3e:18:a0:86:e8:7c:32:f2:48:f4:3f:97:dd:6b: ed:3f:95:ff:3a:29:b1:c4:6f:39:33:fd:3f:61:5e:d1:53:2c: 34:45:b4:fe:c5:1b:4f:bd:5c:92:e0:d4:bd:0c:dd:7c:cc:60: c0:3c:e2:f7:40:04:1e:f4:fc:9b:98:e0:09:61:70:f2:11:04: 78:70:78:28:52:39:0f:a4:e9:59:8c:f5:a2:10:17:13:0e:0b: 75:7d:3c:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoMUQ1QkUzOTE1MkVBNkQ2REYwOUY5RDg0QUM2OUE5NjFC N0M4Mzg2RTAeFw0yNTA3MTkwODI5MDhaFw0yNTA3MjYwODI5MDhaMBgxFjAUBgNV BAMTDTY4N2I1NzU0LTk5Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuIL9HwOYoTWEUynS5xxzfsJ5b1TpUEiB46e0KnEnwBUHFrzh7q8NP9kJ8n5hp QLGH5l9wFOdC807s4nb63G2+O1KIBGLIg/Yz9X3YMfjpfqvoVQR/tlRb9JvFDLl4 UAnOzIhsWYMk8wCe8/YOY49c9R4BmJS1XqdSVXV+FP+MDQIOOVKPCnDBbvuUOScB M1gNeytCkEhJOhCpxWiteWT9SCWQz6F64xBlT3AP4WnbFQQSCX+dkDmfH4aWaPXZ PCX0pmXVJ+sAFMz1ugzpnw2kb9aCuWuTp+LJNSRimbBmpM+IfuCRCCFVFZ9uYBw3 uWCpWZ2tzjcuGAfVPKfH5QibAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj+DRGDXa ZgV8SKrIn3bbeMA1MNEwHwYDVR0jBBgwFoAUHVvjkVLqbW3wn52ErGmpYbfIOG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzRDMDRGMDZBNjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL0hWdmprVkxxYlczd241MkVyR21wWWJmSU9H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFZ2amtWTHFiVzN3bjUyRXJHbXBZYmZJT0c0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzRDMDRGMDZBNjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL0hWdmprVkxxYlcz d241MkVyR21wWWJmSU9HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC9ZXGUCQUU37r7wDiC/ElKMkDtKDY+yACioFg1EJj5MsCn4JqBNfqpX SqgIIqtEQD5XeTfL2CphEKDQfR/wh/YioZmC1jjaKUZUdcj5IrMsRESHoXejgn6i QaMT58eoHunqf5pcRRMHjRPA8EhdoDzNx6fdbN+v9Io0oDFarbJHl1YWWSIFzeZc eAg5IQuT7ajZXngURmAMtfTyjRXTgBUCjtNSpwQ+GKCG6Hwy8kj0P5fda+0/lf86 KbHEbzkz/T9hXtFTLDRFtP7FG0+9XJLg1L0M3XzMYMA84vdABB70/JuY4AlhcPIR BHhweChSOQ+k6VmM9aIQFxMOC3V9PGU= -----END CERTIFICATE-----Generated at Sun Jul 20 06:13:38 2025 by rpki-client