$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: hAWwAYYFfQf4vc5td2pxJgiQUte3/1LWnk5hiwtEBZM= Subject key identifier: 7F:D2:43:39:48:0E:A9:9E:34:BE:BB:19:40:43:4E:D3:F3:21:E2:BB Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 08 Signing time: Sat 07 Jun 2025 07:39:29 +0000 Manifest this update: Sat 07 Jun 2025 07:39:28 +0000 Manifest next update: Sat 14 Jun 2025 07:39:28 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: kUwWyWKvxlZFyuVh300JUWx4brOfJ6b8yK+DhK1Xvfs=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Jun 7 07:39:28 2025 GMT Not After : Jun 14 07:39:28 2025 GMT Subject: CN=6843ecb0-3aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7b:e7:40:1f:cb:92:9c:9c:a7:d9:fb:7e:5d: ee:9b:c1:73:cc:9d:14:f8:12:cd:2f:53:9d:2e:d8: cd:d2:01:1f:ea:cc:f4:32:ab:42:fe:69:13:49:12: 15:0e:17:dd:2c:49:5a:4e:79:9e:f3:f1:82:8a:89: c7:a1:08:00:03:a1:6f:6f:7c:b6:82:46:de:68:86: 85:1d:d5:39:e2:59:54:fd:9b:7c:96:36:fd:5e:4e: 9a:ca:d8:64:8b:7a:97:77:3b:eb:b6:69:8e:11:67: dc:82:4e:c7:dd:65:c0:40:06:cc:5e:7e:ab:08:6e: 33:8a:ad:10:27:5d:12:00:09:7a:df:a4:0e:59:4a: 77:43:de:e7:13:5e:bc:a6:3a:67:48:20:20:ff:80: bf:99:9c:db:19:0b:96:87:30:14:a2:5c:5a:b8:53: 6a:ea:40:38:3e:79:55:49:15:14:f3:19:0a:32:b8: 38:d0:47:b2:dd:d2:45:b2:03:47:88:f1:11:ed:31: 22:4a:fd:2e:9d:24:16:e2:af:45:a0:fd:c2:43:bc: 2c:a3:27:f4:f7:87:32:84:09:e0:39:57:25:4c:e4: d4:84:59:e5:d9:bc:a8:db:43:bb:75:1e:0e:c9:45: 24:b3:76:cd:dc:0d:76:a9:7e:a3:2c:4c:4f:d2:cb: d2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D2:43:39:48:0E:A9:9E:34:BE:BB:19:40:43:4E:D3:F3:21:E2:BB X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:13:e3:45:af:21:c5:ad:ef:6e:5d:36:d6:b8:cf:a0:de:f6: 41:22:f6:ce:a4:86:a8:91:e3:3c:d9:32:a9:aa:54:ec:5b:7e: 40:b6:85:67:10:f0:99:3b:6c:42:7a:67:59:d6:61:35:60:26: a8:fe:d5:a2:ac:f1:12:3b:5f:34:da:70:63:6d:0c:1f:30:a1: 9c:0c:13:40:93:2f:59:f2:d4:da:79:1d:ba:f9:ec:0b:a5:98: 31:1c:85:74:c8:bb:f9:5d:75:05:ea:87:8a:1c:19:82:b7:76: 54:18:8c:38:fb:34:3d:91:3e:0b:56:27:5c:ef:b6:24:98:8c: 22:28:ae:ab:ac:10:dd:d8:16:6e:b3:40:78:64:c9:27:54:28: ca:c9:5c:53:49:21:7f:2e:12:57:6a:30:47:23:2b:cb:46:e9: a4:8d:87:b5:84:99:7d:7f:a8:75:ea:20:19:e8:95:c5:58:76: 7d:9e:c3:77:2b:13:ba:51:bd:56:51:19:bc:b4:10:21:19:5d: 17:e3:5c:2c:d2:0f:33:b1:e4:6c:45:cc:c2:fd:5e:cf:f9:37: 0d:20:1c:3a:f5:64:0a:a8:1c:5d:84:6a:59:ff:22:b6:d0:51: b9:44:10:7b:90:e7:53:e2:75:d7:88:73:bf:76:2e:f1:b6:0b: 33:a2:29:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTA2MDcwNzM5MjhaFw0yNTA2MTQwNzM5MjhaMBgxFjAUBgNV BAMTDTY4NDNlY2IwLTNhY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZe+dAH8uSnJyn2ft+Xe6bwXPMnRT4Es0vU50u2M3SAR/qzPQyq0L+aRNJEhUO F90sSVpOeZ7z8YKKicehCAADoW9vfLaCRt5ohoUd1TniWVT9m3yWNv1eTprK2GSL epd3O+u2aY4RZ9yCTsfdZcBABsxefqsIbjOKrRAnXRIACXrfpA5ZSndD3ucTXrym OmdIICD/gL+ZnNsZC5aHMBSiXFq4U2rqQDg+eVVJFRTzGQoyuDjQR7Ld0kWyA0eI 8RHtMSJK/S6dJBbir0Wg/cJDvCyjJ/T3hzKECeA5VyVM5NSEWeXZvKjbQ7t1Hg7J RSSzds3cDXapfqMsTE/Sy9LdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf9JDOUgO qZ40vrsZQENO0/Mh4rswHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIoT40WvIcWt725dNta4z6De9kEi9s6khqiR4zzZMqmqVOxbfkC2hWcQ 8Jk7bEJ6Z1nWYTVgJqj+1aKs8RI7XzTacGNtDB8woZwME0CTL1ny1Np5Hbr57Aul mDEchXTIu/lddQXqh4ocGYK3dlQYjDj7ND2RPgtWJ1zvtiSYjCIorqusEN3YFm6z QHhkySdUKMrJXFNJIX8uEldqMEcjK8tG6aSNh7WEmX1/qHXqIBnolcVYdn2ew3cr E7pRvVZRGby0ECEZXRfjXCzSDzOx5GxFzML9Xs/5Nw0gHDr1ZAqoHF2Ealn/IrbQ UblEEHuQ51PiddeIc792LvG2CzOiKZI= -----END CERTIFICATE-----Generated at Sat Jun 7 12:54:43 2025 by rpki-client