$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: SefzHlUdNuXbmUIbTIaPLNUNbNVHLU47pElM7Qz62B0= Subject key identifier: DB:6F:8E:59:2A:29:76:1E:81:FF:C1:B7:17:20:4F:90:AF:10:1D:77 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 34AF Signing time: Sun 24 Aug 2025 14:55:15 +0000 Manifest this update: Sun 24 Aug 2025 14:55:14 +0000 Manifest next update: Sun 31 Aug 2025 14:55:14 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: W3JrbZSoyOl95d/4nnnwDHATmY82XRM02AkedwNNKhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Aug 24 14:55:14 2025 GMT Not After : Aug 31 14:55:14 2025 GMT Subject: CN=68ab27d2-cadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:a0:28:2d:9e:75:73:9d:2d:13:9f:a4:51: fa:c6:40:a0:28:bc:84:8d:33:9d:88:b5:8c:10:12: a2:fa:65:30:5d:56:7c:7c:b0:7b:7a:b9:7b:5b:bc: b4:50:34:3d:2f:f2:44:ea:59:6c:f5:eb:25:f1:aa: e4:b7:05:68:e0:bb:4a:29:ff:45:c7:7c:3b:be:e9: c8:a3:90:e4:16:06:90:cd:a1:46:bf:be:50:10:67: d5:58:79:af:1d:a6:31:f1:3e:bf:dd:50:5c:a1:50: 6d:d7:8e:6b:d2:c7:7e:4b:9a:98:f5:93:2d:4c:75: 62:60:eb:d7:36:cb:d0:ed:f7:56:bb:28:7a:99:2f: 1a:f1:1a:d7:af:a5:48:3a:f3:ce:1b:20:a9:dd:04: 70:94:b9:89:1b:b4:31:76:da:f2:5d:62:96:46:96: ec:85:18:e1:c6:4c:ec:6e:9f:2d:c4:7d:8c:43:28: 8c:19:d6:0d:ca:7b:f3:91:67:c0:25:07:9b:a2:93: e3:3b:37:06:dd:da:9c:f3:8b:67:d5:08:98:05:d1: 64:73:4d:96:07:4e:3d:c7:de:e4:fc:ca:15:0a:b9: d5:29:58:d5:ca:2b:9f:ed:31:58:f1:4b:5b:27:40: cd:1d:0c:56:dd:16:9a:ed:37:7f:38:2a:7a:94:af: 68:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6F:8E:59:2A:29:76:1E:81:FF:C1:B7:17:20:4F:90:AF:10:1D:77 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:2c:04:0d:38:27:90:c2:d0:9a:f0:49:18:fe:ac:d5:d3:9a: 30:0b:92:6c:50:48:eb:4e:e8:3a:a0:4a:de:1c:60:00:1a:b1: 8d:b9:9b:c3:d7:57:d0:09:ef:d4:16:7f:bf:db:67:e1:d9:ca: f8:aa:99:f7:c7:96:6a:d5:57:55:ad:7a:d3:1a:fc:b1:20:a8: 33:76:8a:c1:0a:b1:99:3c:f8:94:0c:73:55:eb:ab:04:af:b7: 2f:a2:a2:63:b3:ce:be:cf:26:9d:87:52:55:44:5c:ac:a9:ff: 7d:a2:20:37:e0:58:ab:8e:13:8e:d7:6a:9d:fe:fb:13:ca:ec: 2f:65:69:07:bc:41:88:33:99:d2:34:b2:de:b8:b0:fa:da:fe: 64:05:f0:2a:1b:52:d7:f1:25:9d:35:07:7c:13:c6:7b:0d:0c: f5:25:ca:ca:7a:e2:81:a1:78:85:9e:0e:95:76:13:af:09:9e: c2:c2:19:d8:74:e6:c4:e9:88:1f:77:de:96:71:bd:5d:4c:6b: c1:4d:9c:66:5e:dd:06:60:c1:35:03:d7:e7:7e:c2:7c:4c:3b: 72:c3:73:6a:a9:b0:e5:13:35:e4:56:0a:d9:ee:ed:f0:06:d9: b0:9c:9d:ee:8b:42:01:c8:0e:8f:ab:b5:13:1f:5d:0b:27:48: 07:21:a6:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjUwODI0MTQ1NTE0WhcNMjUwODMxMTQ1NTE0WjAYMRYwFAYD VQQDEw02OGFiMjdkMi1jYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveSgKC2edXOdLROfpFH6xkCgKLyEjTOdiLWMEBKi+mUwXVZ8fLB7erl7W7y0 UDQ9L/JE6lls9esl8arktwVo4LtKKf9Fx3w7vunIo5DkFgaQzaFGv75QEGfVWHmv HaYx8T6/3VBcoVBt145r0sd+S5qY9ZMtTHViYOvXNsvQ7fdWuyh6mS8a8RrXr6VI OvPOGyCp3QRwlLmJG7QxdtryXWKWRpbshRjhxkzsbp8txH2MQyiMGdYNynvzkWfA JQebopPjOzcG3dqc84tn1QiYBdFkc02WB049x97k/MoVCrnVKVjVyiuf7TFY8Utb J0DNHQxW3Raa7Td/OCp6lK9ovQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtvjlkq KXYegf/BtxcgT5CvEB13MB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5LAQNOCeQwtCa8EkY/qzV05owC5JsUEjrTug6oEreHGAAGrGNuZvD 11fQCe/UFn+/22fh2cr4qpn3x5Zq1VdVrXrTGvyxIKgzdorBCrGZPPiUDHNV66sE r7cvoqJjs86+zyadh1JVRFysqf99oiA34FirjhOO12qd/vsTyuwvZWkHvEGIM5nS NLLeuLD62v5kBfAqG1LX8SWdNQd8E8Z7DQz1JcrKeuKBoXiFng6VdhOvCZ7CwhnY dObE6Ygfd96Wcb1dTGvBTZxmXt0GYME1A9fnfsJ8TDtyw3NqqbDlEzXkVgrZ7u3w BtmwnJ3ui0IByA6Pq7UTH10LJ0gHIabh -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:16 2025 by rpki-client