$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: 0cYhslbB2FwQq7A08q74F8p/wfOVRYhc8xFdhwaNh6s= Subject key identifier: 80:8C:F5:D2:E6:2D:10:DF:20:EA:16:59:2D:D3:0C:BF:2C:6C:71:89 Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 73 Signing time: Thu 21 Aug 2025 07:02:11 +0000 Manifest this update: Thu 21 Aug 2025 07:02:10 +0000 Manifest next update: Thu 28 Aug 2025 07:02:10 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: kCqxZ4T1jyUcZSC9qVvYXXcJpv88H2CAFBSKBgfRRL8=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Aug 21 07:02:10 2025 GMT Not After : Aug 28 07:02:10 2025 GMT Subject: CN=68a6c473-de18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b5:00:8c:73:8d:cd:9a:93:2b:31:90:dc:26: 02:a5:40:88:13:c9:e4:c3:44:90:4d:66:78:57:a8: 50:7d:1f:8d:e9:e2:71:7c:61:82:7b:79:c1:a1:53: fd:57:f8:27:f3:c4:71:85:28:7d:8a:8d:1d:f9:2f: da:3f:f1:64:75:d9:d0:84:d4:60:c4:9a:1a:c9:5c: b4:71:03:3b:1d:63:ff:c9:b2:e7:63:fd:49:5b:a3: 2b:94:f5:3a:de:45:42:1f:55:73:fd:99:ed:3d:75: 60:24:44:16:bc:79:73:af:3e:2b:a4:1a:b5:1a:9b: 54:22:7c:bb:a5:7e:e5:b3:af:59:b3:9b:ec:7a:e5: e7:39:26:70:28:93:7c:2d:4a:4b:b2:e8:23:52:f8: fd:3e:a5:bf:b6:ac:74:16:c5:5f:3f:1c:f8:87:14: fd:67:73:62:df:bf:d7:a7:a2:62:aa:98:b5:91:ac: 8e:75:8c:d6:8b:ea:db:fc:c6:21:e7:e7:71:ea:31: 0f:9a:07:ee:8e:a8:c9:46:1c:70:3e:f1:b9:67:7a: 6c:e5:24:86:c0:ad:6e:bf:d6:bc:f4:40:6e:59:da: 79:5a:09:07:92:e9:f2:1a:d5:63:7b:27:8b:ef:94: 26:ac:86:2e:01:8a:5a:f7:d2:f0:f7:5b:29:c8:21: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8C:F5:D2:E6:2D:10:DF:20:EA:16:59:2D:D3:0C:BF:2C:6C:71:89 X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2c:3c:31:cd:38:01:b8:55:f3:2a:f5:ac:76:52:46:7c:83: 75:8d:22:d1:9f:07:2e:ec:95:ea:18:63:64:99:8d:5d:bf:aa: bb:a1:dc:ba:9e:86:b3:fc:dd:b1:b8:48:cf:15:78:ab:c5:f3: aa:3c:a2:87:3f:68:aa:68:12:18:12:09:b3:4e:1d:fa:5f:85: 91:97:41:21:5a:a4:50:08:8b:b4:ae:8f:7f:8f:c2:25:9b:70: 3e:ce:46:e0:84:e0:a5:25:59:ed:7f:44:0e:a4:03:78:c2:02: d9:dc:0e:e2:5c:7e:ef:26:b1:c8:ec:c6:c9:3c:f1:9d:af:50: e4:bd:76:ed:f3:b7:6e:fe:ed:09:38:ac:27:18:f9:eb:e8:24: 1c:51:a3:6b:10:86:a3:59:69:b4:e3:44:83:d2:34:e2:c6:9c: 2f:21:6b:c2:cc:2d:a6:64:45:7f:e4:d6:df:00:d6:d0:8c:dd: fc:ed:d2:c3:3a:11:c1:42:e6:4c:d5:2f:d6:64:7a:00:0f:71: d9:7d:09:a8:e3:7d:f5:b1:96:b1:70:6c:14:d3:57:57:27:79: 48:2b:36:1a:02:3a:f1:7e:c0:6e:f9:9d:3b:28:b0:13:43:e3: 23:1c:76:de:84:42:8a:bb:44:d4:5b:1a:e7:bd:e5:b9:37:ef: 6b:df:0e:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA4MjEwNzAyMTBaFw0yNTA4MjgwNzAyMTBaMBgxFjAUBgNV BAMTDTY4YTZjNDczLWRlMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgtQCMc43NmpMrMZDcJgKlQIgTyeTDRJBNZnhXqFB9H43p4nF8YYJ7ecGhU/1X +CfzxHGFKH2KjR35L9o/8WR12dCE1GDEmhrJXLRxAzsdY//Jsudj/UlboyuU9Tre RUIfVXP9me09dWAkRBa8eXOvPiukGrUam1QifLulfuWzr1mzm+x65ec5JnAok3wt Skuy6CNS+P0+pb+2rHQWxV8/HPiHFP1nc2Lfv9enomKqmLWRrI51jNaL6tv8xiHn 53HqMQ+aB+6OqMlGHHA+8blnemzlJIbArW6/1rz0QG5Z2nlaCQeS6fIa1WN7J4vv lCashi4Bilr30vD3WynIIcHdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgIz10uYt EN8g6hZZLdMMvyxscYkwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACEsPDHNOAG4VfMq9ax2UkZ8g3WNItGfBy7sleoYY2SZjV2/qruh3Lqe hrP83bG4SM8VeKvF86o8ooc/aKpoEhgSCbNOHfpfhZGXQSFapFAIi7Suj3+PwiWb cD7ORuCE4KUlWe1/RA6kA3jCAtncDuJcfu8mscjsxsk88Z2vUOS9du3zt27+7Qk4 rCcY+evoJBxRo2sQhqNZabTjRIPSNOLGnC8ha8LMLaZkRX/k1t8A1tCM3fzt0sM6 EcFC5kzVL9ZkegAPcdl9CajjffWxlrFwbBTTV1cneUgrNhoCOvF+wG75nTsosBND 4yMcdt6EQoq7RNRbGue95bk372vfDjk= -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:38 2025 by rpki-client