$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: C4PQ6J2QYIyPaJeHyP+7q84/JJ8WuJOZvPsggZytdOU= Subject key identifier: 96:B4:7D:20:28:05:CA:35:E2:C2:1F:8F:34:49:9E:3C:D9:73:FF:8A Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 54 Signing time: Sat 23 Aug 2025 07:30:21 +0000 Manifest this update: Sat 23 Aug 2025 07:30:20 +0000 Manifest next update: Sat 30 Aug 2025 07:30:20 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: 9OlJgaf+Rd5tOPLmscDreN38Zd66yruUDdOzLsknyfY=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Aug 23 07:30:20 2025 GMT Not After : Aug 30 07:30:20 2025 GMT Subject: CN=68a96e0c-8aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:52:94:76:21:10:0c:8b:29:32:fb:e5:4f:27: ef:26:48:7a:8e:e8:c3:7c:9b:0a:83:52:fb:88:5a: fe:0c:af:72:d4:0f:e0:b3:d6:0e:70:b4:fb:86:ed: 02:94:ad:9b:e0:29:df:b4:2d:76:0a:39:e4:53:ee: cf:a2:df:f1:ef:55:3f:f1:2d:a7:78:8a:a0:fc:f2: df:53:1f:f6:b3:e4:63:c0:2f:2f:87:75:0d:64:a5: ef:ce:c1:e0:17:37:a5:48:f9:62:29:ea:76:1f:a0: 3d:a5:1c:4f:f3:60:0b:28:65:57:e6:35:b6:71:a0: e3:79:02:22:65:f9:62:f7:b8:98:22:bd:44:7b:d6: fa:4d:ab:1b:ba:85:67:dd:19:72:2e:31:43:e5:f0: f2:10:c1:8a:39:1f:65:a2:1b:5a:1d:a8:39:ac:8b: 41:eb:62:7e:ac:b8:1f:6d:7b:f2:dc:1f:f2:fc:54: ee:54:8a:c5:f8:d5:dc:5f:5f:62:63:4f:11:b4:b1: 46:fc:f8:4d:ca:4a:97:08:ad:65:65:94:3e:a8:fb: 0e:0d:a8:d0:49:48:bd:71:58:01:7b:46:b3:68:31: cc:32:6f:26:06:34:32:f0:da:99:88:08:97:e5:1a: ba:3e:55:40:e0:0a:42:c8:66:2c:70:92:70:1c:0f: 62:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B4:7D:20:28:05:CA:35:E2:C2:1F:8F:34:49:9E:3C:D9:73:FF:8A X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:97:a0:77:8d:01:f6:52:6e:c5:cc:51:9e:14:96:0a:fc:0e: 13:7a:47:67:5f:e9:41:3b:2c:1f:d7:43:45:95:e3:7f:56:00: 92:4d:8f:eb:89:20:8a:4d:ce:4b:fa:19:1b:90:b0:2b:50:59: 33:27:c1:15:94:eb:0e:4c:a6:ba:37:e7:9d:21:0f:81:7d:1e: 33:6a:c2:ab:6a:3c:ab:dc:42:79:e0:2b:90:34:fd:10:e4:b1: 0e:9d:d0:40:96:2a:ac:42:38:75:63:29:11:02:bf:3a:15:f3: a9:c8:a8:ff:03:96:32:fb:f7:86:12:a0:dd:74:85:83:fd:72: 42:ad:b1:96:5d:e0:1f:ce:af:c8:ba:15:dd:ae:f5:7d:2f:bc: 0a:25:16:c2:15:1b:de:64:4d:cd:2c:2f:f6:5d:a4:a1:3d:16: ab:d1:dc:0d:df:4a:35:b6:2c:e0:0f:5c:18:58:d1:bf:9f:88: e5:d0:21:59:70:c1:77:f9:27:04:7f:48:84:15:db:fd:61:42: d1:5a:c3:0d:82:ee:70:05:ba:87:4e:25:1b:cb:86:a8:93:c1: df:dc:4c:57:f9:76:23:7e:27:5f:07:85:40:3e:ee:99:9b:58: ec:f0:3f:f2:c3:73:ac:7a:e9:82:cb:42:ee:2e:48:67:d0:53: 7f:94:e6:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA4MjMwNzMwMjBaFw0yNTA4MzAwNzMwMjBaMBgxFjAUBgNV BAMTDTY4YTk2ZTBjLThhYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYUpR2IRAMiyky++VPJ+8mSHqO6MN8mwqDUvuIWv4Mr3LUD+Cz1g5wtPuG7QKU rZvgKd+0LXYKOeRT7s+i3/HvVT/xLad4iqD88t9TH/az5GPALy+HdQ1kpe/OweAX N6VI+WIp6nYfoD2lHE/zYAsoZVfmNbZxoON5AiJl+WL3uJgivUR71vpNqxu6hWfd GXIuMUPl8PIQwYo5H2WiG1odqDmsi0HrYn6suB9te/LcH/L8VO5UisX41dxfX2Jj TxG0sUb8+E3KSpcIrWVllD6o+w4NqNBJSL1xWAF7RrNoMcwybyYGNDLw2pmICJfl Gro+VUDgCkLIZixwknAcD2IXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlrR9ICgF yjXiwh+PNEmePNlz/4owHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKiXoHeNAfZSbsXMUZ4Ulgr8DhN6R2df6UE7LB/XQ0WV439WAJJNj+uJ IIpNzkv6GRuQsCtQWTMnwRWU6w5Mpro3550hD4F9HjNqwqtqPKvcQnngK5A0/RDk sQ6d0ECWKqxCOHVjKRECvzoV86nIqP8DljL794YSoN10hYP9ckKtsZZd4B/Or8i6 Fd2u9X0vvAolFsIVG95kTc0sL/ZdpKE9FqvR3A3fSjW2LOAPXBhY0b+fiOXQIVlw wXf5JwR/SIQV2/1hQtFaww2C7nAFuodOJRvLhqiTwd/cTFf5diN+J18HhUA+7pmb WOzwP/LDc6x66YLLQu4uSGfQU3+U5qY= -----END CERTIFICATE-----Generated at Sun Aug 24 00:11:11 2025 by rpki-client