$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: 6N50rErpbCUKMWY5MdGYlSgUy872hsgFmDEMPSFfJbk= Subject key identifier: 95:12:19:D7:0C:57:AD:0F:40:89:B5:E6:12:5E:96:97:C5:93:9D:99 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 34C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 34BE Signing time: Fri 22 Aug 2025 14:51:41 +0000 Manifest this update: Fri 22 Aug 2025 14:51:40 +0000 Manifest next update: Fri 29 Aug 2025 14:51:40 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: 6GBs6oQ5iKPmHNbVgGWIlDKPuf2PnmX8nHabLSRT3zE=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13511 (0x34c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Aug 22 14:51:40 2025 GMT Not After : Aug 29 14:51:40 2025 GMT Subject: CN=68a883fc-e433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:69:39:18:54:e3:f5:a0:b0:09:d2:b2:47:dd: ee:53:6a:31:1e:3a:10:ea:c0:fa:0a:34:ca:29:82: 6a:c1:a2:93:87:6a:1c:45:bf:8d:64:d0:8c:4c:74: 6c:de:8a:28:54:fd:dc:7f:e1:26:9c:f9:c4:1d:ad: f9:c6:be:50:fd:cb:0e:64:49:5a:70:48:08:da:1b: d1:00:61:db:1f:5a:7b:73:2d:39:24:33:98:cc:c1: 56:d5:a9:12:2f:49:de:25:a8:e8:8b:d8:e3:d4:85: 44:31:da:a1:7c:98:d3:6b:3e:c0:eb:db:18:26:cc: 34:87:70:1b:69:1b:c4:dd:a8:2e:a7:14:a4:ac:04: 26:78:c1:0f:aa:49:a6:d3:ed:be:50:13:da:5b:a4: 9a:be:be:52:9a:ea:7e:a0:0f:6d:bf:44:ad:4d:72: 2c:75:5c:86:c0:b3:b5:0a:0e:39:00:1c:33:a0:e3: 26:9d:85:0d:7d:1e:8b:f5:fa:23:5c:49:c5:86:6f: 28:2e:6b:b1:1d:51:ef:8b:4b:1f:e1:06:d1:d2:e8: c9:23:e6:41:47:52:44:f4:80:52:3e:94:a0:ab:06: 52:cb:a1:ec:5b:6c:42:c5:97:72:9f:8e:aa:f7:a5: 32:5e:63:43:4a:6d:53:67:d5:cc:46:ea:54:a7:80: 38:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:19:D7:0C:57:AD:0F:40:89:B5:E6:12:5E:96:97:C5:93:9D:99 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2f:6e:cc:2e:93:ac:03:9e:e4:bc:4f:ae:87:0e:15:41:d1: 7d:d0:6a:32:b4:17:9d:dc:cc:87:1c:06:08:09:a5:68:a6:23: 56:94:d9:d3:4f:d4:36:d3:a2:32:12:78:68:2f:22:4c:19:f4: 6e:e4:52:3b:78:58:7b:49:6a:71:df:79:34:b3:2d:6a:07:18: 0f:44:19:63:88:df:bc:5e:1b:04:ca:c3:a3:de:17:a2:1b:d1: 7d:34:42:bc:b3:c7:8f:e7:92:12:f7:11:4c:fc:45:59:39:ab: 04:76:b8:12:7b:3f:6e:7e:cd:11:59:2d:d6:6b:06:87:95:96: 8d:4e:04:00:a2:fb:cb:69:bc:fb:77:06:3e:51:4e:8d:71:a9: 80:b0:89:9c:a8:01:e6:21:7b:46:6f:a7:a5:91:02:f7:10:2d: c4:09:7a:43:c0:69:df:fb:72:f5:55:31:07:4b:7c:29:ac:52: 23:5e:4a:6e:3f:11:b5:62:df:37:b0:87:a2:d5:ff:99:2b:dd: 9d:70:d9:e1:50:5d:81:f5:75:6c:f0:eb:b7:21:77:31:3c:a4: 18:ed:86:58:94:8c:7d:1e:8d:49:4f:f8:f9:90:7e:46:06:16: b7:33:d8:03:7e:54:5f:c8:d7:6d:16:27:0f:64:1c:b7:b8:58: 67:78:43:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUwODIyMTQ1MTQwWhcNMjUwODI5MTQ1MTQwWjAYMRYwFAYD VQQDEw02OGE4ODNmYy1lNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2k5GFTj9aCwCdKyR93uU2oxHjoQ6sD6CjTKKYJqwaKTh2ocRb+NZNCMTHRs 3oooVP3cf+EmnPnEHa35xr5Q/csOZElacEgI2hvRAGHbH1p7cy05JDOYzMFW1akS L0neJajoi9jj1IVEMdqhfJjTaz7A69sYJsw0h3AbaRvE3agupxSkrAQmeMEPqkmm 0+2+UBPaW6Savr5Smup+oA9tv0StTXIsdVyGwLO1Cg45ABwzoOMmnYUNfR6L9foj XEnFhm8oLmuxHVHvi0sf4QbR0ujJI+ZBR1JE9IBSPpSgqwZSy6HsW2xCxZdyn46q 96UyXmNDSm1TZ9XMRupUp4A4NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUSGdcM V60PQIm15hJelpfFk52ZMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhL27MLpOsA57kvE+uhw4VQdF90GoytBed3MyHHAYICaVopiNWlNnT T9Q206IyEnhoLyJMGfRu5FI7eFh7SWpx33k0sy1qBxgPRBljiN+8XhsEysOj3hei G9F9NEK8s8eP55IS9xFM/EVZOasEdrgSez9ufs0RWS3WawaHlZaNTgQAovvLabz7 dwY+UU6NcamAsImcqAHmIXtGb6elkQL3EC3ECXpDwGnf+3L1VTEHS3wprFIjXkpu PxG1Yt83sIei1f+ZK92dcNnhUF2B9XVs8Ou3IXcxPKQY7YZYlIx9Ho1JT/j5kH5G Bha3M9gDflRfyNdtFicPZBy3uFhneENj -----END CERTIFICATE-----Generated at Sun Aug 24 03:10:20 2025 by rpki-client