$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: dgh07EuEuufCctlKclHr23hUPn3+qtO1jpO9Lp1itAY= Subject key identifier: BA:49:93:E2:F9:BC:2E:0D:5E:00:5D:25:26:67:0D:A9:01:4E:12:C9 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 0262 Signing time: Thu 21 Aug 2025 01:56:34 +0000 Manifest this update: Thu 21 Aug 2025 01:56:34 +0000 Manifest next update: Thu 28 Aug 2025 01:56:34 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: rcXFt4gLaXYA/GCB5P0QQ2rUg3eUPGYZV1q7HOVidZo=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: hGQixG8nIJXVA0JQORYC8z0pOj4UbTutn+kvPqmH25s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Aug 21 01:56:34 2025 GMT Not After : Aug 28 01:56:34 2025 GMT Subject: CN=68a67cd2-ce36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0f:ef:c8:fa:b5:ad:a3:15:ca:e6:2e:f0:1c: 9b:fd:c2:fe:59:8a:ac:90:fb:a5:fb:68:65:75:6d: fd:4b:da:81:0b:d2:21:58:89:38:c5:10:ca:7b:7d: a1:29:9a:e8:08:1a:7f:ff:90:aa:0d:8f:f1:a7:87: 13:bb:24:74:89:13:3d:d2:3d:6f:52:8b:82:6c:8c: d1:82:9a:48:b0:1b:15:ec:d3:20:d7:08:85:41:35: b7:d8:e4:1d:c3:ff:67:bc:3a:6b:a4:12:ca:bf:ad: 32:22:1d:6a:5b:1e:c3:c7:fc:8a:6f:1c:d4:65:4d: 5f:81:f4:db:e0:0c:1b:bc:ad:36:41:db:ab:56:70: c2:73:2e:27:57:f4:9c:4b:63:01:d1:7e:bf:10:91: 86:b0:8c:71:ee:e8:ff:9f:16:65:df:98:6b:b9:e6: 2d:eb:6a:03:0a:d5:49:0c:db:12:b1:36:e6:a1:f6: e1:e0:40:f4:9b:4e:4a:df:30:bc:4f:bd:e8:45:3a: e0:fa:0a:e2:57:d4:e9:d4:50:e6:2f:d6:13:5f:61: 8e:9e:d7:53:cf:3f:de:9f:05:f8:4a:b0:30:f2:cd: 72:de:40:b1:59:e8:6f:9b:f4:b2:4e:01:c9:fb:13: 99:a4:96:98:b9:e3:90:7b:61:de:fb:0b:db:c6:7b: d3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:49:93:E2:F9:BC:2E:0D:5E:00:5D:25:26:67:0D:A9:01:4E:12:C9 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:da:c1:48:b2:9b:48:45:f2:3b:40:57:f6:c3:a9:d1:34:ec: fd:8b:4c:7e:4b:d3:50:7a:a9:17:f4:7b:26:7c:23:0f:82:d9: ff:66:7f:1c:04:66:8a:bf:82:3b:5b:68:5e:f7:b3:25:7e:ed: 5c:a5:9d:c0:21:e1:fd:c9:16:c2:a8:0a:21:9b:c3:cf:13:33: 9f:95:34:f3:5f:73:99:93:d0:8c:3d:84:02:25:5b:16:67:d1: 30:09:b1:62:22:1b:af:0b:c8:db:3d:21:1c:a7:e8:1b:55:3f: fe:cb:e2:0e:fb:18:8f:15:11:c7:f6:50:9c:83:9c:9e:dc:40: cf:d1:dd:e4:d3:9a:f2:c1:2c:09:74:ac:2b:56:04:2d:df:6a: 38:c2:b2:97:6d:24:36:28:88:78:e4:b2:eb:b4:09:4d:68:a8: c5:26:e2:2c:05:ee:8a:90:36:3e:60:4a:7d:5b:37:5b:58:c7: cc:88:2a:4b:6b:75:3d:d1:89:a9:21:fd:99:19:2e:92:7c:ef: dc:d1:74:4f:9b:76:a1:1d:ec:7a:3a:a0:d6:f7:45:c0:39:78: 55:aa:57:c0:ee:3a:65:9d:d1:5c:82:4b:15:f0:ac:97:63:55: 47:14:53:03:c0:07:29:46:a7:84:83:e3:57:9f:fe:49:d8:f2: e9:1a:ee:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUwODIxMDE1NjM0WhcNMjUwODI4MDE1NjM0WjAYMRYwFAYD VQQDEw02OGE2N2NkMi1jZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2A/vyPq1raMVyuYu8Byb/cL+WYqskPul+2hldW39S9qBC9IhWIk4xRDKe32h KZroCBp//5CqDY/xp4cTuyR0iRM90j1vUouCbIzRgppIsBsV7NMg1wiFQTW32OQd w/9nvDprpBLKv60yIh1qWx7Dx/yKbxzUZU1fgfTb4AwbvK02QdurVnDCcy4nV/Sc S2MB0X6/EJGGsIxx7uj/nxZl35hrueYt62oDCtVJDNsSsTbmofbh4ED0m05K3zC8 T73oRTrg+griV9Tp1FDmL9YTX2GOntdTzz/enwX4SrAw8s1y3kCxWehvm/SyTgHJ +xOZpJaYueOQe2He+wvbxnvTwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpJk+L5 vC4NXgBdJSZnDakBThLJMB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi2sFIsptIRfI7QFf2w6nRNOz9i0x+S9NQeqkX9HsmfCMPgtn/Zn8c BGaKv4I7W2he97Mlfu1cpZ3AIeH9yRbCqAohm8PPEzOflTTzX3OZk9CMPYQCJVsW Z9EwCbFiIhuvC8jbPSEcp+gbVT/+y+IO+xiPFRHH9lCcg5ye3EDP0d3k05rywSwJ dKwrVgQt32o4wrKXbSQ2KIh45LLrtAlNaKjFJuIsBe6KkDY+YEp9WzdbWMfMiCpL a3U90YmpIf2ZGS6SfO/c0XRPm3ahHex6OqDW90XAOXhVqlfA7jplndFcgksV8KyX Y1VHFFMDwAcpRqeEg+NXn/5J2PLpGu6S -----END CERTIFICATE-----Generated at Fri Aug 22 16:23:02 2025 by rpki-client