$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: 51GQH6mSCNhaC0Caxz9aZJs5hEIKhHpy5QzpKl3CIMo= Subject key identifier: BA:C2:6B:5F:F4:02:69:92:F9:04:0C:CA:B8:41:46:EE:B2:FB:F8:AA Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 3547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3503 Signing time: Wed 20 Aug 2025 14:16:03 +0000 Manifest this update: Wed 20 Aug 2025 14:16:03 +0000 Manifest next update: Wed 27 Aug 2025 14:16:03 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: IQRHnq6VcwhbWUPirRhOKxfCs+dd8c4zVys5mFHO5Uk=) 2: 3D6EDF86EDA711ED91155885C4F9AE02.roa (hash: mXb8AscVsTwHQGsL7M6XAxSIWwOh5epna0XlBQIQUOY=) 3: D3DAACB2507E11EF91EDBA52C4F9AE02.roa (hash: Whq1SIyvQYa1mALpVqGVZuuCi11KV+H9HrjJKdS2dN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 14:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13639 (0x3547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Aug 20 14:16:03 2025 GMT Not After : Aug 27 14:16:03 2025 GMT Subject: CN=68a5d8a3-3a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:03:5e:3c:c6:a8:b2:76:c5:ee:e4:20:d8:ba: 3a:17:c7:8d:d7:e6:07:ae:29:9d:2f:56:6b:0e:97: ed:67:25:d4:d0:23:0a:04:9b:56:3f:62:34:86:a3: 21:f9:22:90:5b:b9:dd:14:51:54:6d:56:44:52:17: 96:f7:4a:99:3e:64:d2:1a:c6:95:42:07:82:08:a5: 08:4f:98:60:cf:5c:72:52:1b:46:70:a5:74:43:1e: 1d:76:f2:cf:a2:d4:31:e5:e3:19:cb:82:02:d0:89: f6:72:85:4c:c5:c5:5c:17:79:1a:f6:9a:50:94:de: 3b:7a:c5:f0:c2:7a:96:57:4a:de:bc:d4:13:60:c4: 1b:07:4e:bb:c0:ab:21:01:b1:a1:99:78:91:fd:17: eb:44:44:f0:71:d6:3e:37:39:e5:98:79:c6:9c:78: a4:3b:52:a1:bc:0b:f9:c6:73:a3:28:0d:ec:0b:bb: 11:56:1f:f8:af:a2:4d:75:97:15:bd:aa:df:38:d9: 8f:85:e4:e6:e7:7f:96:28:43:aa:85:0a:3f:d6:21: d0:6d:dd:d5:cc:5f:96:43:9e:4b:34:7d:0f:3a:d6: a8:b8:3b:c8:31:55:16:00:6c:9f:67:29:47:26:d8: 95:11:f1:66:f9:36:bc:b5:ef:62:94:da:eb:ec:eb: 2b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C2:6B:5F:F4:02:69:92:F9:04:0C:CA:B8:41:46:EE:B2:FB:F8:AA X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:c5:79:20:36:99:2b:2a:3d:0b:59:e4:a4:a1:ed:0e:50:c9: 14:fb:e9:9a:04:d9:79:0f:3e:5b:40:e8:c8:09:6d:81:10:a3: d0:ae:c5:5d:68:ec:f5:4c:76:1a:bf:99:9b:86:be:ff:ba:4e: 78:da:ff:36:27:72:ab:2b:16:a2:fd:8d:7b:b7:f9:23:50:b9: 9d:6d:9c:9f:f7:fd:35:58:c1:80:ff:31:d7:21:2a:f5:b7:82: df:a5:8b:24:f6:fb:4b:e7:77:b9:18:85:de:51:3a:de:df:93: 08:b8:d7:0c:0e:5d:19:bd:7f:7d:88:e6:5a:ca:e4:06:c8:f7: 58:c8:01:ad:55:4e:6b:2d:58:78:bf:a3:52:58:4f:fb:85:53: fa:c3:5f:c1:4d:3c:9d:d7:0d:25:cf:fe:ca:9a:5a:c5:1f:65: e7:3a:a8:9a:98:3a:d5:af:2f:b9:01:e6:75:e3:dc:34:49:9c: 3a:f6:fc:77:5b:9c:7b:53:11:1b:f7:98:fc:37:e0:0d:bb:0f: e2:32:17:26:48:f3:ae:40:49:52:70:bc:17:a6:23:ff:8e:72: 9c:a9:e6:b9:4b:c5:8f:2e:3c:5e:c6:2a:6f:ec:2a:89:92:c5: d2:44:1a:fc:4b:5c:2b:80:da:76:c5:82:03:10:f4:58:30:d2: ca:59:19:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUwODIwMTQxNjAzWhcNMjUwODI3MTQxNjAzWjAYMRYwFAYD VQQDEw02OGE1ZDhhMy0zYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzANePMaosnbF7uQg2Lo6F8eN1+YHrimdL1ZrDpftZyXU0CMKBJtWP2I0hqMh +SKQW7ndFFFUbVZEUheW90qZPmTSGsaVQgeCCKUIT5hgz1xyUhtGcKV0Qx4ddvLP otQx5eMZy4IC0In2coVMxcVcF3ka9ppQlN47esXwwnqWV0revNQTYMQbB067wKsh AbGhmXiR/RfrRETwcdY+NznlmHnGnHikO1KhvAv5xnOjKA3sC7sRVh/4r6JNdZcV varfONmPheTm53+WKEOqhQo/1iHQbd3VzF+WQ55LNH0POtaouDvIMVUWAGyfZylH JtiVEfFm+Ta8te9ilNrr7OsrKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrCa1/0 AmmS+QQMyrhBRu6y+/iqMB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRxXkgNpkrKj0LWeSkoe0OUMkU++maBNl5Dz5bQOjICW2BEKPQrsVd aOz1THYav5mbhr7/uk542v82J3KrKxai/Y17t/kjULmdbZyf9/01WMGA/zHXISr1 t4LfpYsk9vtL53e5GIXeUTre35MIuNcMDl0ZvX99iOZayuQGyPdYyAGtVU5rLVh4 v6NSWE/7hVP6w1/BTTyd1w0lz/7KmlrFH2XnOqiamDrVry+5AeZ149w0SZw69vx3 W5x7UxEb95j8N+ANuw/iMhcmSPOuQElScLwXpiP/jnKcqea5S8WPLjxexipv7CqJ ksXSRBr8S1wrgNp2xYIDEPRYMNLKWRno -----END CERTIFICATE-----Generated at Thu Aug 21 16:01:51 2025 by rpki-client