$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: fCTiG2AZORbhq3icfqHghXCixbA6zO6VdhMjg2qc7SA= Subject key identifier: 09:B7:E2:EA:04:2B:20:F7:DC:A3:BD:6E:7F:4E:5D:52:B9:CF:91:CA Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 6F Signing time: Sat 23 Aug 2025 07:08:09 +0000 Manifest this update: Sat 23 Aug 2025 07:08:09 +0000 Manifest next update: Sat 30 Aug 2025 07:08:09 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: RBt/J26R3tXP0/3ileHRZ9ZaQglizM6jb7lkrfbr0lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Aug 23 07:08:09 2025 GMT Not After : Aug 30 07:08:09 2025 GMT Subject: CN=68a968d9-fae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fc:27:f7:69:32:24:35:74:22:0e:c0:e2:ea: 50:7e:f1:df:74:be:a2:56:69:1c:9b:89:e7:31:eb: c5:5e:4b:b3:a3:c8:79:02:a2:7e:3b:27:9f:43:ec: a2:e8:2d:7e:22:9d:36:8d:30:fb:c8:8e:06:bc:47: a9:5a:92:84:4f:7d:f5:c9:1b:34:31:e2:0c:c5:0d: a9:f1:15:45:7a:47:3b:20:61:bd:43:44:33:5b:14: 09:a5:d9:e1:67:f8:6b:e5:02:58:c7:66:d9:ef:ad: 03:f6:a6:73:0a:d4:bc:48:7f:47:93:2d:c9:80:bb: b8:46:1e:e8:9c:03:7e:36:39:1e:f6:d2:64:74:00: ab:c3:4a:47:77:65:36:0b:cd:9b:d9:05:c0:34:c8: 10:87:3d:f6:46:73:8f:ee:74:fe:44:57:be:c1:7a: 09:4f:e5:64:f0:8a:70:79:65:8b:c6:64:b4:63:dc: d9:4c:13:f8:0f:d3:71:ce:1e:f7:fc:57:b6:f7:ac: 5a:b7:a4:de:c7:f8:a6:5f:48:3d:f5:29:7b:44:1c: 11:78:19:7b:df:e5:85:9b:e9:90:0b:4a:8c:35:dd: f5:65:f2:a0:5d:ab:93:2a:2c:91:a7:63:25:d4:f6: 92:19:43:95:e4:dd:37:2c:63:89:c8:9a:df:0d:7c: 8e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B7:E2:EA:04:2B:20:F7:DC:A3:BD:6E:7F:4E:5D:52:B9:CF:91:CA X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f0:5f:19:c8:2e:9d:d8:f8:81:f3:e0:c4:44:c5:c3:87:76: 1a:ba:e3:fe:19:f9:02:69:d4:74:3f:29:60:54:ab:3e:47:1c: a7:40:4c:fe:d2:46:e4:87:15:aa:0f:79:0d:f3:25:1f:fd:71: 6d:c9:34:1c:89:e3:1e:43:09:c4:bd:53:d3:91:b9:3e:77:4d: 00:ff:99:8e:58:d4:98:08:18:6f:b9:5f:81:f1:74:54:be:ec: 07:60:ec:1c:b3:6c:ef:1d:53:f0:12:c6:62:0d:30:33:f0:14: 52:20:0d:e2:b4:73:c3:f1:8c:0e:f2:84:7d:a4:6d:89:2a:91: ef:e2:99:74:c0:38:44:07:4e:e3:2b:4a:2a:14:46:2e:f7:4f: 96:f8:82:0e:16:05:8d:a6:81:28:8c:ee:ae:a7:f7:30:19:fb: 6c:20:cd:c8:91:75:b2:a1:e4:62:a2:f4:e3:0d:4f:3b:01:56: f3:c8:42:24:9d:27:31:eb:e1:10:2a:d7:d4:b0:d9:23:f6:28: 23:58:a7:88:7c:d0:e0:9d:b5:e4:bb:1d:0a:2b:38:6b:9e:08: 3a:9e:46:91:01:0c:42:62:bb:85:38:05:91:8f:5d:c6:13:c5: 58:a4:ef:e5:35:32:70:a3:d9:c1:59:93:95:5d:cc:ca:7f:b0: 5f:4f:59:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoOTg3QTI0MDM1QzE1MzkxNzAyMEI2NTFEQjk4RjA5MUYw QUFBMzIyNzAeFw0yNTA4MjMwNzA4MDlaFw0yNTA4MzAwNzA4MDlaMBgxFjAUBgNV BAMTDTY4YTk2OGQ5LWZhZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB/Cf3aTIkNXQiDsDi6lB+8d90vqJWaRybiecx68VeS7OjyHkCon47J59D7KLo LX4inTaNMPvIjga8R6lakoRPffXJGzQx4gzFDanxFUV6RzsgYb1DRDNbFAml2eFn +GvlAljHZtnvrQP2pnMK1LxIf0eTLcmAu7hGHuicA342OR720mR0AKvDSkd3ZTYL zZvZBcA0yBCHPfZGc4/udP5EV77BeglP5WTwinB5ZYvGZLRj3NlME/gP03HOHvf8 V7b3rFq3pN7H+KZfSD31KXtEHBF4GXvf5YWb6ZALSow13fVl8qBdq5MqLJGnYyXU 9pIZQ5Xk3TcsY4nImt8NfI7XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCbfi6gQr IPfco71uf05dUrnPkcowHwYDVR0jBBgwFoAUmHokA1wVORcCC2UduY8JHwqqMicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0FGREVGRTU0RDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1p Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUhva0Exd1ZPUmNDQzJVZHVZOEpId3FxTWljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0FGREVGRTU0RDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1Jj Q0MyVWR1WThKSHdxcU1pYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAzwXxnILp3Y+IHz4MRExcOHdhq64/4Z+QJp1HQ/KWBUqz5HHKdATP7S RuSHFaoPeQ3zJR/9cW3JNByJ4x5DCcS9U9ORuT53TQD/mY5Y1JgIGG+5X4HxdFS+ 7Adg7ByzbO8dU/ASxmINMDPwFFIgDeK0c8PxjA7yhH2kbYkqke/imXTAOEQHTuMr SioURi73T5b4gg4WBY2mgSiM7q6n9zAZ+2wgzciRdbKh5GKi9OMNTzsBVvPIQiSd JzHr4RAq19Sw2SP2KCNYp4h80OCdteS7HQorOGueCDqeRpEBDEJiu4U4BZGPXcYT xVik7+U1MnCj2cFZk5VdzMp/sF9PWQQ= -----END CERTIFICATE-----Generated at Sat Aug 23 14:19:35 2025 by rpki-client