$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: I/lBq76MHkCRxM3k3ehNelSkNRhht0GR2VwluNPNDHI= Subject key identifier: 6F:DC:F4:0C:09:C3:8B:55:90:96:FB:38:C3:3E:18:32:A6:72:71:2B Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 090A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0904 Signing time: Thu 18 Sep 2025 20:34:32 +0000 Manifest this update: Thu 18 Sep 2025 20:34:32 +0000 Manifest next update: Thu 25 Sep 2025 20:34:32 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: vBnQGKSfmPQkp6B8oNZgTYK5uhLiqtNGK3YbsaRWWKg=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Sep 18 20:34:32 2025 GMT Not After : Sep 25 20:34:32 2025 GMT Subject: CN=68cc6cd8-62ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:3d:8e:f8:fc:9c:3f:bc:ac:10:67:6d:c6: 6b:3a:f7:f8:57:65:e6:92:ed:d6:65:77:de:9f:60: f8:f8:69:ef:41:aa:88:9e:b7:61:56:22:ae:69:f3: 91:03:f2:d8:d8:f5:fe:95:c3:23:41:87:2b:74:f4: ff:9a:75:c7:65:24:ad:d8:b0:c0:7c:c2:88:52:35: 71:37:b1:b9:6a:25:7f:88:45:6d:77:5d:fb:51:ba: df:8f:8d:3b:c1:31:ed:07:2b:a7:7e:88:61:51:85: d2:c5:f9:b5:b2:f0:78:4d:82:6a:98:2c:6f:10:e1: 1a:74:b6:c9:3e:01:aa:4e:85:77:58:9e:6d:99:d5: 7e:bd:8b:1d:ca:ec:6c:67:c2:8d:04:a5:ec:6a:f4: 7d:1a:5d:e0:eb:e7:cf:f5:24:c8:f7:ab:a8:bd:1c: ff:f3:9f:b2:a8:71:7b:32:59:68:3d:a5:1b:d9:06: 48:02:7b:b6:f6:c5:5a:ab:9d:eb:f9:28:27:30:71: 41:d7:18:03:71:15:83:b6:28:55:b6:b7:87:94:2d: d4:f8:11:04:d6:1a:6a:ef:38:9a:a5:ac:c4:8a:4b: f6:60:60:08:31:64:b3:e6:e8:08:86:9f:b4:79:62: e4:84:ff:97:1a:16:a4:56:77:d3:eb:ab:8b:63:77: cd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:DC:F4:0C:09:C3:8B:55:90:96:FB:38:C3:3E:18:32:A6:72:71:2B X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:07:7b:57:65:0e:84:3b:8a:8a:89:ca:77:82:84:b3:b8:3a: 7b:f2:a0:8a:ce:09:17:0a:5c:e3:e3:88:64:4a:f8:3e:f6:6b: 38:fd:5d:27:e1:76:b7:d6:7a:9f:f3:ea:bd:0f:d4:33:ff:f4: 9a:c2:81:18:03:3d:0d:3d:9d:4f:41:25:34:94:21:d2:82:97: 22:7e:b3:e1:e5:be:30:2f:31:36:9a:fc:b8:bc:4a:99:d9:7f: b4:91:db:4f:05:0b:5d:14:ae:8d:4c:97:9e:ab:eb:f4:88:ed: 89:af:ec:2b:4f:69:47:ad:73:15:57:39:43:15:d8:f8:b5:76: 11:3e:60:eb:85:10:c6:0d:59:0d:ac:d2:17:5d:2f:0d:06:a2: 1a:0e:6e:4e:c8:2e:8b:2c:4b:24:48:cc:c5:97:d1:8f:44:42: 05:99:44:9a:cf:f0:dc:98:ea:ba:00:de:79:5f:a7:83:15:44: 2b:06:45:d8:ac:ee:5a:92:23:99:08:1d:51:e2:45:f7:07:cd: c3:93:2c:aa:cd:eb:ed:43:d1:ac:67:03:54:95:3e:d7:d9:18: b7:1c:81:7d:4f:0b:ed:6f:15:42:3e:d0:43:c5:f4:80:a7:b7: 10:67:7d:58:09:17:f4:24:4c:c6:36:8c:df:8e:e0:87:17:58: 07:04:dc:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwOTE4MjAzNDMyWhcNMjUwOTI1MjAzNDMyWjAYMRYwFAYD VQQDEw02OGNjNmNkOC02MmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ig9jvj8nD+8rBBnbcZrOvf4V2Xmku3WZXfen2D4+GnvQaqInrdhViKuafOR A/LY2PX+lcMjQYcrdPT/mnXHZSSt2LDAfMKIUjVxN7G5aiV/iEVtd137Ubrfj407 wTHtByunfohhUYXSxfm1svB4TYJqmCxvEOEadLbJPgGqToV3WJ5tmdV+vYsdyuxs Z8KNBKXsavR9Gl3g6+fP9STI96uovRz/85+yqHF7MlloPaUb2QZIAnu29sVaq53r +SgnMHFB1xgDcRWDtihVtreHlC3U+BEE1hpq7ziapazEikv2YGAIMWSz5ugIhp+0 eWLkhP+XGhakVnfT66uLY3fNJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/c9AwJ w4tVkJb7OMM+GDKmcnErMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5B3tXZQ6EO4qKicp3goSzuDp78qCKzgkXClzj44hkSvg+9ms4/V0n 4Xa31nqf8+q9D9Qz//SawoEYAz0NPZ1PQSU0lCHSgpcifrPh5b4wLzE2mvy4vEqZ 2X+0kdtPBQtdFK6NTJeeq+v0iO2Jr+wrT2lHrXMVVzlDFdj4tXYRPmDrhRDGDVkN rNIXXS8NBqIaDm5OyC6LLEskSMzFl9GPREIFmUSaz/DcmOq6AN55X6eDFUQrBkXY rO5akiOZCB1R4kX3B83DkyyqzevtQ9GsZwNUlT7X2Ri3HIF9TwvtbxVCPtBDxfSA p7cQZ31YCRf0JEzGNozfjuCHF1gHBNwA -----END CERTIFICATE-----Generated at Thu Sep 18 22:15:59 2025 by rpki-client