$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: sg3g+Rnw2hO0sJOSl+zK98tNN6EjKXTlqPjqZkRQxlc= Subject key identifier: F8:61:32:BB:61:9D:AF:18:45:42:6D:FD:4C:B3:C2:A0:3D:F6:9C:A5 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 03D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 03C4 Signing time: Sat 23 Aug 2025 00:59:21 +0000 Manifest this update: Sat 23 Aug 2025 00:59:20 +0000 Manifest next update: Sat 30 Aug 2025 00:59:20 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: ciYwQNotaw2wsdsux0zu+sgcLOmwPQBdzhVUkbeF2rA=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 982 (0x3d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Aug 23 00:59:20 2025 GMT Not After : Aug 30 00:59:20 2025 GMT Subject: CN=68a91269-07eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:6f:83:5e:e6:a3:57:88:c0:5e:e8:5e:46: 40:0a:c4:93:4a:40:62:f5:3f:3d:2a:59:d9:f0:5d: 0a:7e:68:0d:12:ed:81:61:42:7c:e2:37:ae:a0:5c: 6b:90:c4:85:4e:95:ad:18:4e:b6:14:82:45:d0:d3: 03:72:a6:0c:3d:4b:77:34:9a:ac:d9:10:d1:f9:95: f1:08:95:e9:be:64:2f:1d:1f:43:6b:ff:e0:2f:ee: 04:61:5c:2d:b6:29:b1:1f:11:40:1b:3b:f5:9b:70: 70:91:94:29:18:1f:df:09:aa:a4:18:16:f4:e2:f5: 76:05:8c:3f:8f:f4:ca:03:11:09:6e:03:48:63:e5: cb:fb:cb:56:a9:35:cb:7b:f3:ab:82:91:e0:e5:ce: 49:a4:0b:63:7e:63:69:1a:ce:f6:a4:f1:cb:70:36: 7b:93:ef:4f:f4:e6:48:7b:28:9a:88:d7:68:24:54: c5:70:9c:03:49:a1:49:45:79:86:d6:ae:4e:c5:3a: a9:8b:d2:01:66:bf:f9:94:af:0c:8c:14:18:05:43: b6:12:ae:0a:ba:5c:86:0e:d0:11:66:f6:f3:58:33: d9:9b:8f:46:c9:0f:6b:0f:df:ed:3e:e8:87:b1:7e: 37:04:42:3d:b2:7d:c4:18:bd:eb:6d:f6:71:f1:ba: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:61:32:BB:61:9D:AF:18:45:42:6D:FD:4C:B3:C2:A0:3D:F6:9C:A5 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:96:a6:c4:4b:aa:9f:2c:63:d4:b9:34:82:5c:f1:0f:a7:c0: 8d:4b:81:b2:2b:20:4b:d3:a8:d1:cc:4e:93:3e:bf:06:3e:f1: d3:cc:74:35:01:74:65:67:57:a7:10:c9:88:88:fd:76:68:b7: bc:1c:e9:ff:2d:38:8f:b4:a1:2f:6a:31:d3:ec:91:aa:9a:6c: 91:13:d4:84:b5:32:3f:39:70:b2:93:f1:dd:ce:37:08:99:69: e2:86:8e:8e:69:fe:58:81:38:96:ef:a9:a3:1c:b8:d7:82:02: 0d:56:18:d8:dc:ed:30:63:4a:e7:85:66:4e:6b:e6:16:48:b7: 42:0b:dc:9e:99:49:36:95:d4:9c:58:db:1b:88:84:17:18:7c: e1:7a:37:73:dd:c2:5c:f5:24:7f:27:62:ee:e1:31:e5:90:07: 2f:db:22:c1:a4:33:98:96:d6:bb:6b:b0:4b:35:80:c5:10:f2: fe:3d:46:8b:5c:eb:be:5d:f7:4a:9b:b1:cc:e7:ba:25:f1:07: 8e:53:a3:7c:a4:41:4f:42:18:db:18:02:07:e4:0c:9f:2c:80: e0:c6:c8:74:44:3e:23:3f:c3:af:ef:a3:bb:08:cf:8f:26:cd: 30:99:98:04:30:9f:25:d5:78:ac:fb:b8:0b:39:27:17:57:aa: 2d:c3:96:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUwODIzMDA1OTIwWhcNMjUwODMwMDA1OTIwWjAYMRYwFAYD VQQDEw02OGE5MTI2OS0wN2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDVvg17mo1eIwF7oXkZACsSTSkBi9T89KlnZ8F0KfmgNEu2BYUJ84jeuoFxr kMSFTpWtGE62FIJF0NMDcqYMPUt3NJqs2RDR+ZXxCJXpvmQvHR9Da//gL+4EYVwt timxHxFAGzv1m3BwkZQpGB/fCaqkGBb04vV2BYw/j/TKAxEJbgNIY+XL+8tWqTXL e/OrgpHg5c5JpAtjfmNpGs72pPHLcDZ7k+9P9OZIeyiaiNdoJFTFcJwDSaFJRXmG 1q5OxTqpi9IBZr/5lK8MjBQYBUO2Eq4KulyGDtARZvbzWDPZm49GyQ9rD9/tPuiH sX43BEI9sn3EGL3rbfZx8brDlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhhMrth na8YRUJt/UyzwqA99pylMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2lqbES6qfLGPUuTSCXPEPp8CNS4GyKyBL06jRzE6TPr8GPvHTzHQ1 AXRlZ1enEMmIiP12aLe8HOn/LTiPtKEvajHT7JGqmmyRE9SEtTI/OXCyk/HdzjcI mWniho6Oaf5YgTiW76mjHLjXggINVhjY3O0wY0rnhWZOa+YWSLdCC9yemUk2ldSc WNsbiIQXGHzhejdz3cJc9SR/J2Lu4THlkAcv2yLBpDOYlta7a7BLNYDFEPL+PUaL XOu+XfdKm7HM57ol8QeOU6N8pEFPQhjbGAIH5AyfLIDgxsh0RD4jP8Ov76O7CM+P Js0wmZgEMJ8l1Xis+7gLOScXV6otw5bs -----END CERTIFICATE-----Generated at Sat Aug 23 17:02:32 2025 by rpki-client