$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft File: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft (raw, json) Hash identifier: tdPnhMHhtngwMCS4Q4fdbI9CP0u6xeKM4FKZGF00ng4= Subject key identifier: 0E:43:B1:12:31:C2:8A:E5:07:44:31:FF:6E:C8:29:44:87:C5:C2:6D Authority key identifier: 1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 Certificate issuer: /CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Certificate serial: 0778 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft Manifest number: 0770 Signing time: Fri 18 Jul 2025 21:50:15 +0000 Manifest this update: Fri 18 Jul 2025 21:50:15 +0000 Manifest next update: Fri 25 Jul 2025 21:50:15 +0000 Files and hashes: 1: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl (hash: zBsFF1Ts/iTgQD3Hp20ywKSf6MwnPZPmuukmoIWPZ0w=) 2: D9BD904224B611EBAE734152C4F9AE02.roa (hash: KZro3pgOeUHIq7UlI8pVpaWLtUDP+zywuDR46T5LBrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD2C, serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Validity Not Before: Jul 18 21:50:15 2025 GMT Not After : Jul 25 21:50:15 2025 GMT Subject: CN=687ac197-f6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:75:94:f4:54:00:4f:af:67:c4:c5:9c:1c: e3:c1:95:5d:7b:ea:81:f4:b8:38:16:97:77:43:1e: fd:12:a6:98:1a:3f:01:21:ff:59:f6:38:fc:6e:17: 35:cd:93:45:b9:02:d6:87:ae:d3:8a:ee:92:0e:55: a4:32:ef:31:5d:62:8e:65:5a:ce:7c:5b:0a:3b:ee: 9f:e6:5a:53:76:56:de:12:18:e1:0f:1e:25:dd:46: 86:d2:69:fd:63:27:7c:c9:c2:96:3d:cb:af:f9:8a: 8a:b7:85:95:87:6c:01:52:15:77:ef:f9:c5:8d:ad: 25:99:99:96:6e:c1:dd:03:45:da:32:ce:53:30:53: 55:1a:ac:a7:81:fa:5c:8a:5f:0a:bd:1d:5e:b3:ed: 71:10:5e:5e:71:f7:74:c4:77:20:b0:cc:ac:e7:da: 7c:41:50:a1:10:db:8f:0b:dd:d4:20:88:c8:1c:11: fd:7b:78:35:32:ac:ad:69:6b:cd:1e:97:ad:66:a5: 3a:75:53:09:a5:cc:c4:4f:38:49:a8:83:e8:67:ba: fc:72:f8:67:63:67:e3:77:f0:08:c2:46:ee:b4:40: 17:75:9c:ee:4c:d0:15:e6:52:1b:10:83:75:3c:fc: 69:8b:95:14:42:fa:99:0c:91:2d:e5:7a:80:eb:31: 6e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:43:B1:12:31:C2:8A:E5:07:44:31:FF:6E:C8:29:44:87:C5:C2:6D X509v3 Authority Key Identifier: keyid:1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:78:53:0a:db:fa:8d:b3:bf:61:0e:b4:8c:84:a7:31:cc:f4: eb:56:a0:d4:fb:05:a9:0b:e0:bf:09:90:53:cd:d4:33:bf:a8: db:5a:e3:67:3d:4e:fa:b2:4c:27:27:88:a7:35:a7:f2:ee:78: d5:0c:59:ea:7b:bb:ba:b3:8b:de:a5:80:c0:43:89:08:2e:f9: ec:15:10:ce:ae:d6:56:28:7c:41:f9:4f:83:d1:31:5c:aa:b0: 3d:07:e8:c5:9a:fc:a6:62:89:80:b8:de:2c:4f:6c:f5:5a:26: 0e:50:70:af:ac:ad:de:ec:f3:d7:62:a1:e3:97:b6:fb:a0:2b: 47:6f:41:91:75:40:42:ec:4f:19:50:9d:23:92:e4:5c:ab:77: fa:2b:8a:9b:14:ab:3f:d0:8b:87:16:b4:ba:42:f2:11:56:bf: 70:32:fc:17:81:2c:f9:df:af:c9:33:c8:a8:51:61:84:1b:67: 43:6b:db:42:12:42:20:3e:82:ba:26:5a:f0:32:cc:e2:45:af: 9b:d0:e7:45:90:6f:a9:32:75:cb:86:71:90:1b:c1:4d:ba:34: 01:8e:96:26:19:3e:02:d7:a9:10:c0:b6:2d:77:cf:a6:e4:1d: ec:4c:f8:ba:b3:12:55:cc:96:c1:62:e9:ec:30:0e:8b:fc:af: 76:82:70:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkREMkMxMTAvBgNVBAUTKDFGMTJFQzJENDM5NUY5NUFBQ0M2MEM2MkVDREQ4Mjg1 N0VEMzA0MTIwHhcNMjUwNzE4MjE1MDE1WhcNMjUwNzI1MjE1MDE1WjAYMRYwFAYD VQQDEw02ODdhYzE5Ny1mNmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfd1lPRUAE+vZ8TFnBzjwZVde+qB9Lg4Fpd3Qx79EqaYGj8BIf9Z9jj8bhc1 zZNFuQLWh67Tiu6SDlWkMu8xXWKOZVrOfFsKO+6f5lpTdlbeEhjhDx4l3UaG0mn9 Yyd8ycKWPcuv+YqKt4WVh2wBUhV37/nFja0lmZmWbsHdA0XaMs5TMFNVGqyngfpc il8KvR1es+1xEF5ecfd0xHcgsMys59p8QVChENuPC93UIIjIHBH9e3g1MqytaWvN HpetZqU6dVMJpczETzhJqIPoZ7r8cvhnY2fjd/AIwkbutEAXdZzuTNAV5lIbEIN1 PPxpi5UUQvqZDJEt5XqA6zFu7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5DsRIx worlB0Qx/27IKUSHxcJtMB8GA1UdIwQYMBaAFB8S7C1DlflarMYMYuzdgoV+0wQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQyQy80OENFNTE2MjI0 QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1WcXN4Z3hpN04yQ2hYN1RC QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h4THNMVU9WLVZxc3hneGk3TjJDaFg3VEJCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQyQy80OENFNTE2MjI0QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1W cXN4Z3hpN04yQ2hYN1RCQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNeFMK2/qNs79hDrSMhKcxzPTrVqDU+wWpC+C/CZBTzdQzv6jbWuNn PU76skwnJ4inNafy7njVDFnqe7u6s4vepYDAQ4kILvnsFRDOrtZWKHxB+U+D0TFc qrA9B+jFmvymYomAuN4sT2z1WiYOUHCvrK3e7PPXYqHjl7b7oCtHb0GRdUBC7E8Z UJ0jkuRcq3f6K4qbFKs/0IuHFrS6QvIRVr9wMvwXgSz536/JM8ioUWGEG2dDa9tC EkIgPoK6JlrwMsziRa+b0OdFkG+pMnXLhnGQG8FNujQBjpYmGT4C16kQwLYtd8+m 5B3sTPi6sxJVzJbBYunsMA6L/K92gnCU -----END CERTIFICATE-----Generated at Sun Jul 20 02:57:18 2025 by rpki-client