$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: +KJbUMQwTf1aOA+1qh0j4ng8e6m9QWeEYezo3yv0UwM= Subject key identifier: 63:A1:88:3C:E9:9B:75:06:C6:DE:48:00:91:0C:8A:69:15:D3:9F:B4 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 263A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2626 Signing time: Fri 22 Aug 2025 15:45:07 +0000 Manifest this update: Fri 22 Aug 2025 15:45:07 +0000 Manifest next update: Fri 29 Aug 2025 15:45:07 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: NSbGYjw6jReAPdmKvQ9E/2h2V+NnsxDQUyxc7Ms+5GE=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9786 (0x263a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Aug 22 15:45:07 2025 GMT Not After : Aug 29 15:45:07 2025 GMT Subject: CN=68a89083-1973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:8d:30:40:77:4c:d8:11:ae:8a:a5:f9:23: e0:1a:3f:8d:34:ab:ff:50:64:e2:5a:7b:c7:b4:4d: 4d:da:3b:bd:95:f0:9c:c9:ac:d0:99:26:e0:c4:b3: 39:0a:21:46:0d:79:6a:86:c6:f0:28:b2:20:3a:a2: 23:5b:b0:26:f1:7b:a7:4b:f7:6e:53:8e:3f:66:53: 57:f2:7b:be:83:8d:64:63:94:10:63:f2:88:8b:95: cb:d7:b5:df:d0:6b:c5:5c:53:f2:54:b4:69:69:e9: 4a:59:3b:0e:06:0b:0e:91:fb:b6:d3:84:d8:ed:26: 9f:cc:e4:cd:1b:1e:36:8b:a8:b3:39:ec:24:71:e3: 75:65:87:6f:01:c6:7c:9c:09:f5:d7:55:97:b3:bd: a6:26:ff:96:0d:c3:76:cd:57:f4:82:be:43:5b:eb: c1:de:be:e9:89:f8:19:79:a8:19:ba:5d:bd:94:d8: 17:24:9a:3b:94:57:ba:d8:67:34:47:cf:3f:ba:1b: 6f:4c:f0:a3:19:ff:ff:91:d3:46:43:67:a1:b8:cd: 39:98:0b:a9:d4:ef:49:40:c0:be:b1:7b:01:aa:92: 92:0c:ab:e9:26:26:30:8d:db:20:b8:51:c4:c4:32: b2:e8:13:40:8b:d3:34:82:f6:e0:b3:65:0d:08:ae: eb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A1:88:3C:E9:9B:75:06:C6:DE:48:00:91:0C:8A:69:15:D3:9F:B4 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ba:00:12:aa:c6:69:2c:ea:b2:29:da:eb:48:41:46:96:7f: a4:17:a7:50:09:75:f9:c4:57:2b:4a:a8:d0:eb:8a:d0:2e:c1: 0d:a0:93:a2:bc:15:90:b1:49:95:aa:7a:22:02:77:68:e2:6c: 72:3b:35:da:fe:77:1e:38:d8:08:fe:b8:cb:2b:2b:fb:fc:8f: 1b:e0:55:b7:35:0d:37:5d:b7:79:bb:a3:df:b8:94:28:a0:90: b6:b6:7f:4e:09:3d:d8:83:89:d3:ac:26:d3:a3:40:65:e6:c8: 69:0d:9d:d4:98:11:69:e8:86:c0:3a:ca:f8:73:97:1d:5b:59: ad:c2:85:c8:45:6b:a0:3a:d9:c9:ac:9b:f5:56:91:6d:fb:44: 16:b8:2d:f7:4c:a0:e2:09:c0:a5:5e:78:e8:32:56:49:86:23: 18:49:e9:35:7e:db:6b:fd:87:30:0f:27:28:0e:61:b8:03:7c: 88:30:a3:e9:14:2a:77:0d:62:8f:ff:3d:9e:0f:bc:29:51:94: cb:63:c9:1f:40:d7:50:8f:16:96:ce:ce:97:fb:55:04:fd:c0: a9:9d:30:ad:92:3d:1b:57:7f:eb:7b:b5:20:3c:f2:53:73:07: a8:86:2f:6f:93:22:51:e6:93:d3:4e:2f:8e:3d:66:cf:17:df: cd:8b:34:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwODIyMTU0NTA3WhcNMjUwODI5MTU0NTA3WjAYMRYwFAYD VQQDEw02OGE4OTA4My0xOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcyNMEB3TNgRroql+SPgGj+NNKv/UGTiWnvHtE1N2ju9lfCcyazQmSbgxLM5 CiFGDXlqhsbwKLIgOqIjW7Am8XunS/duU44/ZlNX8nu+g41kY5QQY/KIi5XL17Xf 0GvFXFPyVLRpaelKWTsOBgsOkfu204TY7SafzOTNGx42i6izOewkceN1ZYdvAcZ8 nAn111WXs72mJv+WDcN2zVf0gr5DW+vB3r7pifgZeagZul29lNgXJJo7lFe62Gc0 R88/uhtvTPCjGf//kdNGQ2ehuM05mAup1O9JQMC+sXsBqpKSDKvpJiYwjdsguFHE xDKy6BNAi9M0gvbgs2UNCK7rmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOhiDzp m3UGxt5IAJEMimkV05+0MB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeugASqsZpLOqyKdrrSEFGln+kF6dQCXX5xFcrSqjQ64rQLsENoJOi vBWQsUmVqnoiAndo4mxyOzXa/nceONgI/rjLKyv7/I8b4FW3NQ03Xbd5u6PfuJQo oJC2tn9OCT3Yg4nTrCbTo0Bl5shpDZ3UmBFp6IbAOsr4c5cdW1mtwoXIRWugOtnJ rJv1VpFt+0QWuC33TKDiCcClXnjoMlZJhiMYSek1fttr/YcwDycoDmG4A3yIMKPp FCp3DWKP/z2eD7wpUZTLY8kfQNdQjxaWzs6X+1UE/cCpnTCtkj0bV3/re7UgPPJT cweohi9vkyJR5pPTTi+OPWbPF9/NizT9 -----END CERTIFICATE-----Generated at Sat Aug 23 17:04:39 2025 by rpki-client