$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: Jdlcfgx7O09lBUVhO5cvf09ixAEiQloTv3HNDn6uB0Y= Subject key identifier: A3:27:5C:71:9E:43:4F:3B:B0:9B:B5:98:75:58:3D:E6:4F:9F:CC:8F Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 141D Signing time: Tue 22 Jul 2025 17:04:15 +0000 Manifest this update: Tue 22 Jul 2025 17:04:14 +0000 Manifest next update: Tue 29 Jul 2025 17:04:14 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: Hqh1suqUBFDZ8J5qUnBX/WovMgW8ShW/itlXvx+BL+g=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5158 (0x1426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Jul 22 17:04:14 2025 GMT Not After : Jul 29 17:04:14 2025 GMT Subject: CN=687fc48f-772e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5d:a5:65:a0:4c:0e:c3:0c:7f:0f:7b:03:06: 29:03:ce:3a:1f:6d:a6:9e:b9:6e:d0:50:5b:f9:41: 5e:1d:f0:30:0d:98:6d:2e:1e:9f:64:55:99:1c:14: 70:72:89:87:54:7e:0f:26:ba:14:44:b4:73:c4:26: 5b:cd:c4:eb:44:3f:08:0f:e9:7e:86:17:e8:6c:da: ed:d8:66:dc:44:af:97:79:fc:c2:46:68:7c:bc:ba: 4b:ce:42:e1:88:ef:c5:a0:4d:94:6a:8c:1e:0a:3c: aa:5d:a9:57:11:91:f7:f2:e2:ed:ba:b2:41:8d:3f: e4:c4:e4:78:1c:c4:15:db:37:18:37:0f:0a:21:f2: 6a:53:ad:49:86:77:ed:34:b0:65:8a:21:99:b5:3c: 2f:e0:07:78:e3:68:6e:27:ce:03:f4:1e:21:94:3e: 54:aa:b2:28:a2:e3:b4:0e:f4:4f:8e:51:3f:c8:53: 69:67:4f:c1:07:c7:bb:59:cc:36:9a:37:51:a9:a6: ef:45:df:99:ab:4f:76:f5:5f:f8:b6:83:c8:8b:2e: dd:35:e9:5f:18:ab:5f:ba:90:70:b2:ca:9f:5b:87: 70:bf:50:74:67:49:75:4a:3f:5a:78:3b:9c:93:6d: 60:b0:55:c6:0f:82:b8:a2:4e:3c:c5:e0:04:00:6f: 70:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:27:5C:71:9E:43:4F:3B:B0:9B:B5:98:75:58:3D:E6:4F:9F:CC:8F X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:6b:77:f0:e5:10:64:f2:20:ae:6c:84:6c:ef:18:69:e3:0b: 3e:8e:7e:29:f8:ca:c8:13:d3:0c:1a:69:16:a6:3f:d9:26:0b: 0e:58:51:52:a2:d0:b0:b4:c7:3b:8b:48:fd:d2:17:08:d4:d4: 4e:67:30:0a:c2:2c:15:c5:58:68:cf:cc:62:8a:7e:5c:fe:11: 37:ea:3d:14:3b:01:be:23:dd:ab:63:c7:05:ba:3a:fd:08:4d: 37:c7:9b:f0:bd:4c:5f:f7:c0:26:fd:b4:cd:0d:37:37:67:e5: 32:d2:75:4d:9b:c3:50:6d:e6:ae:6c:6a:67:19:68:55:30:41: d3:ca:89:e4:9b:7f:c5:50:3c:a3:88:30:fb:41:03:24:3b:88: fd:c9:d7:db:80:dd:21:88:ba:45:b5:7c:e6:18:03:b2:91:62: 4e:96:58:ce:13:ce:61:e1:0f:63:6d:dd:fb:34:d9:bf:09:7d: 81:cc:7a:60:d4:bd:05:48:90:73:5e:06:23:94:32:98:4f:c1: e0:5d:35:d4:08:21:46:e2:71:53:38:cf:2b:7e:78:0d:a4:b5: b3:9f:2e:ac:1a:5c:37:d1:07:b9:8b:11:75:3d:be:bd:0d:0d: 6f:00:2c:83:44:33:de:df:d6:8e:6f:2f:53:7c:37:d3:02:c7: 9b:bc:2a:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwNzIyMTcwNDE0WhcNMjUwNzI5MTcwNDE0WjAYMRYwFAYD VQQDEw02ODdmYzQ4Zi03NzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F2lZaBMDsMMfw97AwYpA846H22mnrlu0FBb+UFeHfAwDZhtLh6fZFWZHBRw comHVH4PJroURLRzxCZbzcTrRD8ID+l+hhfobNrt2GbcRK+XefzCRmh8vLpLzkLh iO/FoE2UaoweCjyqXalXEZH38uLturJBjT/kxOR4HMQV2zcYNw8KIfJqU61Jhnft NLBliiGZtTwv4Ad442huJ84D9B4hlD5UqrIoouO0DvRPjlE/yFNpZ0/BB8e7Wcw2 mjdRqabvRd+Zq0929V/4toPIiy7dNelfGKtfupBwssqfW4dwv1B0Z0l1Sj9aeDuc k21gsFXGD4K4ok48xeAEAG9wsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMnXHGe Q087sJu1mHVYPeZPn8yPMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBra3fw5RBk8iCubIRs7xhp4ws+jn4p+MrIE9MMGmkWpj/ZJgsOWFFS otCwtMc7i0j90hcI1NROZzAKwiwVxVhoz8xiin5c/hE36j0UOwG+I92rY8cFujr9 CE03x5vwvUxf98Am/bTNDTc3Z+Uy0nVNm8NQbeaubGpnGWhVMEHTyonkm3/FUDyj iDD7QQMkO4j9ydfbgN0hiLpFtXzmGAOykWJOlljOE85h4Q9jbd37NNm/CX2BzHpg 1L0FSJBzXgYjlDKYT8HgXTXUCCFG4nFTOM8rfngNpLWzny6sGlw30Qe5ixF1Pb69 DQ1vACyDRDPe39aOby9TfDfTAsebvCq1 -----END CERTIFICATE-----Generated at Wed Jul 23 06:27:49 2025 by rpki-client