$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft File: HVb-TaQriGb-lqKX93LugLUYpAo.mft (raw, json) Hash identifier: x/LfqMpb8gyd3dwPl8wAWXCPaGyrDAhmnZqijizjSco= Subject key identifier: 50:FB:16:5B:50:51:6D:52:47:5A:CD:5E:EC:85:5E:D0:55:F8:C3:45 Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft Manifest number: 1C29 Signing time: Thu 04 Sep 2025 16:18:43 +0000 Manifest this update: Thu 04 Sep 2025 16:18:43 +0000 Manifest next update: Thu 11 Sep 2025 16:18:43 +0000 Files and hashes: 1: HVb-TaQriGb-lqKX93LugLUYpAo.crl (hash: vGQPv0QIg/cCRlNrexXHNpUjRrJG6YthMc5812jCvWg=) 2: 9B315A5E46A011E7B9BAF254C4F9AE02.roa (hash: o1l069BBsd3WUVBocCxI6g5VIW+fD/556imvKUhlYKw=) 3: 9933B21049D411E7AA790315C4F9AE02.roa (hash: wmOw2BuoGCJIUHvVuaRQLG+5/JheVX4qLMgdMvPjXZ4=) 4: 619B0B285AE611E781C33D7CC4F9AE02.roa (hash: zpxaNitqt84GE0AA0tEhFnXbQQVqt2sfIOkbeduHylA=) 5: 486F81CE4B4B11E79F2FF37BC4F9AE02.roa (hash: M+9/KccsjuKXSA6aFLKg/aVWmUin9oczPRD+MRgWtTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7252 (0x1c54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9, serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Sep 4 16:18:43 2025 GMT Not After : Sep 11 16:18:43 2025 GMT Subject: CN=68b9bbe3-b025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:69:10:f2:b2:91:79:2e:3b:96:1f:87:8c: fa:17:7c:fc:ee:bc:8b:f0:8e:2d:6a:b1:58:bf:57: 76:a1:32:76:7d:66:d5:8f:e4:84:79:73:e3:80:6d: 35:86:65:45:d2:5e:b8:9d:04:13:5e:22:4c:c6:9f: c3:c9:d8:c0:8a:43:e5:ad:4c:1d:da:2c:4b:37:ed: c3:30:7a:4d:cd:a8:3b:f5:21:00:2f:a2:69:94:eb: 26:a3:76:9b:05:08:65:a8:b8:98:35:61:0f:9b:d9: 4e:3c:30:34:ea:e4:e8:de:19:aa:44:3f:95:89:e9: d0:bb:ec:b4:c6:4f:4a:5a:2f:2d:b7:d5:d0:77:80: 13:7e:52:5e:ba:56:23:d9:5f:e9:3c:1d:a9:e3:5e: dd:b5:72:2f:a8:0b:63:19:84:c6:0f:81:30:99:1c: 32:d2:10:a5:93:27:24:2a:92:b4:2e:09:ab:42:c8: 8f:35:1a:54:73:7a:3a:c9:11:bf:61:75:f4:e6:a0: 2d:80:27:d3:7a:ee:d7:3d:a5:4c:d0:90:13:17:79: 8b:0a:40:dc:82:41:a3:0b:a8:9d:08:fc:af:f8:69: 4a:47:05:d2:3b:07:91:a3:65:46:82:e7:86:93:97: 77:3b:28:25:91:1d:91:85:87:19:2e:d4:b5:b1:81: 6e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FB:16:5B:50:51:6D:52:47:5A:CD:5E:EC:85:5E:D0:55:F8:C3:45 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ed:6e:a1:46:85:56:22:d6:5f:f8:b1:74:75:af:81:6c:51: 03:6b:1f:94:bf:ab:f5:ed:57:0f:0a:fb:5d:61:f6:53:cb:6d: 05:50:e8:f8:19:4c:66:dc:25:89:b9:99:ef:ec:65:c9:61:c3: 1a:3c:13:95:3b:36:6c:0e:76:3d:ed:62:30:a3:b2:24:73:47: 9e:b1:0c:f7:1c:e6:00:c3:ca:25:ba:d7:17:f4:30:e5:a5:da: c6:a2:86:78:25:72:f5:10:32:d3:80:74:63:f5:f5:a1:1a:3e: 6d:b8:90:e8:6f:e5:85:ca:b0:56:f7:b3:7b:bd:a5:9e:3d:72: 77:d7:d4:33:57:7d:59:a2:1f:8d:11:cb:5d:88:63:ef:57:8b: 88:f4:bc:6e:dd:cc:2f:78:b9:e1:e1:b2:5d:15:5f:3a:ba:6d: 7f:76:2c:96:6d:75:5f:96:4c:b1:a6:f5:a7:11:93:3a:2a:50: 64:07:b0:d7:02:3f:93:94:21:fc:40:4a:f9:be:5b:82:b0:59: 87:43:9a:e0:86:4d:13:7d:16:3c:de:b6:a7:7c:db:f7:1b:67: b6:89:f6:9b:29:18:20:6d:3a:f4:e8:53:da:3f:4c:44:d5:42: 1d:df:0d:f9:b7:fa:ff:67:31:ef:74:0a:e3:38:62:fd:b7:56: bd:9c:bd:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjUwOTA0MTYxODQzWhcNMjUwOTExMTYxODQzWjAYMRYwFAYD VQQDEw02OGI5YmJlMy1iMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybhpEPKykXkuO5Yfh4z6F3z87ryL8I4tarFYv1d2oTJ2fWbVj+SEeXPjgG01 hmVF0l64nQQTXiJMxp/DydjAikPlrUwd2ixLN+3DMHpNzag79SEAL6JplOsmo3ab BQhlqLiYNWEPm9lOPDA06uTo3hmqRD+VienQu+y0xk9KWi8tt9XQd4ATflJeulYj 2V/pPB2p417dtXIvqAtjGYTGD4EwmRwy0hClkyckKpK0LgmrQsiPNRpUc3o6yRG/ YXX05qAtgCfTeu7XPaVM0JATF3mLCkDcgkGjC6idCPyv+GlKRwXSOweRo2VGgueG k5d3OyglkR2RhYcZLtS1sYFuRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFD7FltQ UW1SR1rNXuyFXtBV+MNFMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FFOS8wOERBNjBDNkYxQjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlH Yi1scUtYOTNMdWdMVVlwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ7W6hRoVWItZf+LF0da+BbFEDax+Uv6v17VcPCvtdYfZTy20FUOj4 GUxm3CWJuZnv7GXJYcMaPBOVOzZsDnY97WIwo7Ikc0eesQz3HOYAw8olutcX9DDl pdrGooZ4JXL1EDLTgHRj9fWhGj5tuJDob+WFyrBW97N7vaWePXJ319QzV31Zoh+N EctdiGPvV4uI9Lxu3cwveLnh4bJdFV86um1/diyWbXVflkyxpvWnEZM6KlBkB7DX Aj+TlCH8QEr5vluCsFmHQ5rghk0TfRY83ranfNv3G2e2ifabKRggbTr06FPaP0xE 1UId3w35t/r/ZzHvdArjOGL9t1a9nL3k -----END CERTIFICATE-----Generated at Sat Sep 6 06:01:56 2025 by rpki-client