$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: m1SF7OWxhzhpWw/ZCvmd1aizQ23QDD4bvypq6ETmOXc= Subject key identifier: 6E:3D:AF:9D:E1:E0:07:E6:51:4E:F2:25:71:E3:60:C0:32:9D:15:98 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0859 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 0853 Signing time: Fri 22 Aug 2025 20:49:41 +0000 Manifest this update: Fri 22 Aug 2025 20:49:40 +0000 Manifest next update: Fri 29 Aug 2025 20:49:40 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: mhfCLOZjhLVkEppxJW+Yu7cdzXGdIfAIW6PPcOp8Grk=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: B+Mru32S1aXG9w3Uo0R4mgvVrJKNsa0zvQvSg+Djl+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Aug 22 20:49:40 2025 GMT Not After : Aug 29 20:49:40 2025 GMT Subject: CN=68a8d7e4-76e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c7:31:27:1a:ea:6e:95:6f:11:c3:34:43:d7: 6a:dc:3e:28:68:bf:6c:7f:1a:5a:83:72:9e:2a:b3: 73:23:af:8b:ee:ab:c3:2d:08:a6:33:42:d0:4c:e5: 1f:00:b3:a9:86:85:e0:66:49:62:9b:4d:15:27:c3: a7:af:f0:92:91:af:cd:15:24:d9:fe:2e:41:33:bf: 7d:8e:02:f9:47:74:79:8e:17:85:10:5c:f0:a6:8f: 32:1b:8e:25:07:85:ef:9e:82:58:17:27:1f:d5:5b: c3:16:c0:28:7a:f8:60:2e:47:24:76:75:69:d0:be: 40:2d:33:b5:43:29:c7:d3:6a:ad:a3:89:c0:4b:01: 66:ac:14:a7:b5:94:db:65:2a:9e:6f:4c:10:a7:73: ef:1e:39:6e:77:67:2c:15:b1:19:7e:25:cd:87:74: 28:b8:a0:fc:37:dd:b4:6e:10:07:1b:12:50:d4:79: 9d:03:f3:ba:54:8f:6f:39:b9:6f:35:56:9f:76:ad: 67:e0:b0:fb:d2:32:56:7f:a9:52:f6:25:a5:57:58: 26:8c:ad:8d:19:55:4b:15:18:9f:e2:d1:1c:53:e4: 91:c4:db:3c:ec:f2:ca:18:56:3f:4e:2e:69:51:88: 8c:c6:14:ef:20:6c:0d:ed:e2:75:63:48:d4:79:cd: 3e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3D:AF:9D:E1:E0:07:E6:51:4E:F2:25:71:E3:60:C0:32:9D:15:98 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:1b:ba:99:76:ca:68:6e:7e:b6:57:6c:0d:1f:13:19:e7:a9: 65:b8:de:dd:e4:8f:d4:74:ac:83:54:e6:c7:ab:18:c7:9e:b6: f4:4e:99:1a:7b:59:8c:56:a0:ed:3d:a7:92:60:44:54:a9:6f: 82:cc:33:1f:63:6c:80:45:2a:84:91:8d:b8:90:b0:af:8c:81: 7f:20:59:84:8b:2d:8a:c5:b9:17:d8:59:cf:ad:f7:b9:34:43: b4:88:52:38:e3:01:4c:95:4f:d4:1a:8a:f1:6b:3a:00:3c:33: b8:53:c5:46:8c:c1:0d:80:23:08:6b:9d:65:c3:23:b9:c6:47: 93:d6:41:44:1a:b9:5a:ce:c9:bb:ea:2c:fa:10:fa:ef:43:94: 37:71:a0:a5:c8:5b:21:25:2f:15:c5:44:14:31:a9:f1:ec:e6: 1b:da:89:48:6b:51:5d:8c:12:e9:6c:f0:d0:62:63:ae:f3:f3: 51:5c:e6:69:6a:a8:5a:e7:ea:88:13:54:2b:2d:0a:ee:f3:9c: d1:f3:fc:8a:dc:b6:63:74:ff:1d:3d:2c:c7:71:15:f9:33:a2: 59:d1:80:bc:0f:26:e4:1d:de:81:be:ee:ff:55:06:0a:78:c6: 04:85:29:f0:21:03:f0:9d:bc:c9:16:41:c3:c0:d7:a9:c8:6c: 87:73:48:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwODIyMjA0OTQwWhcNMjUwODI5MjA0OTQwWjAYMRYwFAYD VQQDEw02OGE4ZDdlNC03NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68cxJxrqbpVvEcM0Q9dq3D4oaL9sfxpag3KeKrNzI6+L7qvDLQimM0LQTOUf ALOphoXgZklim00VJ8Onr/CSka/NFSTZ/i5BM799jgL5R3R5jheFEFzwpo8yG44l B4XvnoJYFycf1VvDFsAoevhgLkckdnVp0L5ALTO1QynH02qto4nASwFmrBSntZTb ZSqeb0wQp3PvHjlud2csFbEZfiXNh3QouKD8N920bhAHGxJQ1HmdA/O6VI9vOblv NVafdq1n4LD70jJWf6lS9iWlV1gmjK2NGVVLFRif4tEcU+SRxNs87PLKGFY/Ti5p UYiMxhTvIGwN7eJ1Y0jUec0+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG49r53h 4AfmUU7yJXHjYMAynRWYMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIG7qZdspobn62V2wNHxMZ56lluN7d5I/UdKyDVObHqxjHnrb0Tpka e1mMVqDtPaeSYERUqW+CzDMfY2yARSqEkY24kLCvjIF/IFmEiy2KxbkX2FnPrfe5 NEO0iFI44wFMlU/UGorxazoAPDO4U8VGjMENgCMIa51lwyO5xkeT1kFEGrlazsm7 6iz6EPrvQ5Q3caClyFshJS8VxUQUManx7OYb2olIa1FdjBLpbPDQYmOu8/NRXOZp aqha5+qIE1QrLQru85zR8/yK3LZjdP8dPSzHcRX5M6JZ0YC8DybkHd6Bvu7/VQYK eMYEhSnwIQPwnbzJFkHDwNepyGyHc0gM -----END CERTIFICATE-----Generated at Sat Aug 23 03:25:08 2025 by rpki-client