$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: hPeCgonbQm43AWB4MxMeEDNS75wTkVB/UHRZWhEdAF8= Subject key identifier: 96:04:8D:89:F9:5F:DA:8F:B3:68:7C:F6:19:B7:BA:0B:BB:95:C2:B5 Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 35 Signing time: Sat 23 Aug 2025 07:52:57 +0000 Manifest this update: Sat 23 Aug 2025 07:52:57 +0000 Manifest next update: Sat 30 Aug 2025 07:52:57 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: R9zRfHZsFjDETz7UWldurkblcG5bqKUu05JMRZiBpkA=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: Rm2y9XYNOuLaJLPo5EgOIcrmYm6wYWaPwijgwTBKrVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Aug 23 07:52:57 2025 GMT Not After : Aug 30 07:52:57 2025 GMT Subject: CN=68a97359-6ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:27:cc:06:4f:9f:33:d4:da:94:9c:c8:d6:a8: 49:ac:96:0d:dc:b9:b8:f2:03:78:f0:2c:fe:b4:85: 38:90:d0:b8:d6:aa:96:de:d0:5c:2d:a7:4e:96:26: 75:25:96:2e:e0:b5:a5:fb:25:16:da:11:be:e2:19: 60:7a:a8:96:00:67:86:25:f3:71:02:c3:e6:1e:6e: 43:39:88:6a:dc:42:1c:9e:5b:b6:52:04:73:6f:14: 75:e3:5f:36:1c:3a:e1:64:20:5b:28:6b:27:da:e6: 98:9c:03:29:ca:89:b5:82:8e:c0:2b:2a:36:24:86: 11:85:90:c5:35:3e:70:7a:54:a2:c3:49:ce:f7:9b: 56:49:0a:93:48:a7:2f:04:5d:20:3e:eb:ca:fc:2b: 69:f7:d6:15:58:1a:ef:65:9c:bc:6a:be:b7:a5:33: f1:34:bb:b0:c2:11:09:09:92:c8:f7:45:28:bd:79: c2:0a:f4:d4:2e:1b:20:78:5f:26:21:64:ff:a9:36: d8:50:40:f5:05:25:55:8d:8e:40:14:17:db:ec:9d: 33:0c:ca:ef:a8:d0:b3:4a:9b:90:a6:ce:6a:ed:e2: 90:04:6a:1d:83:f2:28:7c:2c:53:ca:56:ea:8b:2c: e1:df:8f:92:59:e4:04:3d:65:8e:5c:4a:52:33:3a: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:04:8D:89:F9:5F:DA:8F:B3:68:7C:F6:19:B7:BA:0B:BB:95:C2:B5 X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b2:bd:3e:58:2f:11:0c:fd:8b:6d:7e:08:e6:2c:86:57:5c: 83:de:a9:22:67:e9:22:eb:bb:16:b3:3d:16:f6:8f:dc:83:2d: fa:f7:f7:ee:5d:30:9f:ce:49:a9:98:3a:dd:1d:31:6b:59:0e: 04:02:ca:9f:8c:f8:68:a9:b2:61:07:1f:d5:b6:8c:5b:03:66: b8:3f:8e:1b:b1:ca:5a:99:52:3c:88:65:bb:42:78:6e:58:25: 01:28:f0:0d:be:f9:11:78:fa:7c:d3:b2:dc:bd:12:cd:35:81: e7:36:24:21:39:36:8f:79:f7:f7:b2:6c:59:6f:cb:e3:51:05: ec:30:25:8a:24:94:5a:2c:25:c9:73:bc:42:01:9f:25:62:42: 43:cd:97:ab:11:79:50:90:c9:a9:2d:dc:13:a4:c0:fc:1e:cb: 74:17:4a:63:10:8d:1f:ce:43:e5:5c:41:ea:50:1d:52:0f:9c: b8:54:b5:3c:af:cf:7a:dc:cc:02:05:ae:09:a8:ba:9b:2e:f6: 1f:ed:46:73:34:9c:47:8b:7e:da:1f:8b:a2:ed:89:cc:d2:20: ef:06:bf:12:51:c1:a2:8b:b5:54:b1:18:d1:21:ef:ce:0e:bc: b8:d8:e0:27:5c:65:a0:15:54:26:20:75:e7:36:4b:be:88:68: 09:5f:33:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTA4MjMwNzUyNTdaFw0yNTA4MzAwNzUyNTdaMBgxFjAUBgNV BAMTDTY4YTk3MzU5LTZhZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzJ8wGT58z1NqUnMjWqEmslg3cubjyA3jwLP60hTiQ0LjWqpbe0Fwtp06WJnUl li7gtaX7JRbaEb7iGWB6qJYAZ4Yl83ECw+YebkM5iGrcQhyeW7ZSBHNvFHXjXzYc OuFkIFsoayfa5picAynKibWCjsArKjYkhhGFkMU1PnB6VKLDSc73m1ZJCpNIpy8E XSA+68r8K2n31hVYGu9lnLxqvrelM/E0u7DCEQkJksj3RSi9ecIK9NQuGyB4XyYh ZP+pNthQQPUFJVWNjkAUF9vsnTMMyu+o0LNKm5Cmzmrt4pAEah2D8ih8LFPKVuqL LOHfj5JZ5AQ9ZY5cSlIzOqaXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlgSNiflf 2o+zaHz2Gbe6C7uVwrUwHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACyyvT5YLxEM/YttfgjmLIZXXIPeqSJn6SLruxazPRb2j9yDLfr39+5d MJ/OSamYOt0dMWtZDgQCyp+M+GipsmEHH9W2jFsDZrg/jhuxylqZUjyIZbtCeG5Y JQEo8A2++RF4+nzTsty9Es01gec2JCE5No959/eybFlvy+NRBewwJYoklFosJclz vEIBnyViQkPNl6sReVCQyakt3BOkwPwey3QXSmMQjR/OQ+VcQepQHVIPnLhUtTyv z3rczAIFrgmoupsu9h/tRnM0nEeLftofi6LticzSIO8GvxJRwaKLtVSxGNEh784O vLjY4CdcZaAVVCYgdec2S76IaAlfM2o= -----END CERTIFICATE-----Generated at Sat Aug 23 20:42:24 2025 by rpki-client