$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: pU/fWYHODBf1VDvMx0QS7qejrqGOvssrvqXd/ocuwhc= Subject key identifier: 5E:B8:D4:92:95:D5:59:34:F3:D1:72:DD:89:9A:50:0F:14:AD:99:A5 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A16 Signing time: Fri 22 Aug 2025 19:56:08 +0000 Manifest this update: Fri 22 Aug 2025 19:56:08 +0000 Manifest next update: Fri 29 Aug 2025 19:56:08 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: py97RGMzKUKX7ous8dhUTQHjFFn8WZIjtRdcTxpSIW4=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Aug 22 19:56:08 2025 GMT Not After : Aug 29 19:56:08 2025 GMT Subject: CN=68a8cb58-f284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:bc:44:e0:14:35:9d:bb:54:8a:af:18:45: a9:77:9b:54:f9:1c:93:03:e8:a9:20:0d:75:b6:28: 27:c9:48:11:a3:68:b3:c5:6e:a4:36:15:59:c4:06: cd:59:ef:4f:01:08:fc:8a:3d:d5:83:96:5a:ca:9a: fd:67:c3:71:32:78:3a:fb:ad:27:d8:47:95:67:51: 34:07:54:3d:14:cd:81:ae:66:7c:aa:53:f8:05:2f: 85:d3:3d:a6:e4:18:b0:4f:33:2b:5e:31:76:c4:18: 01:0c:d4:0f:f5:64:88:5e:4a:3e:24:87:f5:f0:9a: 52:27:79:d3:fc:7b:37:21:46:49:c0:e9:7d:b1:35: ef:b5:f8:35:53:8c:49:3b:0f:da:cb:0e:7c:c6:7e: 0c:7a:ef:c0:8a:97:25:94:af:06:a1:bf:75:40:e2: 7b:a5:07:77:fb:3b:06:f3:3a:b8:f1:6b:dc:42:b3: f6:65:16:f4:8a:97:fb:a9:04:13:61:6d:b7:38:d4: 48:9e:6a:6c:fd:a5:92:6d:71:31:b4:81:d0:82:4b: 0d:10:c3:04:cb:bc:e3:d5:5a:3d:42:80:5d:11:49: 9c:af:9b:39:d5:00:37:71:55:b3:87:14:ea:1d:8e: 15:31:e3:19:63:5f:15:67:49:ec:0b:7f:05:63:35: da:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B8:D4:92:95:D5:59:34:F3:D1:72:DD:89:9A:50:0F:14:AD:99:A5 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:0a:0e:ee:de:40:f0:27:73:09:ed:d5:69:d9:e8:57:06:dc: 41:e3:44:e6:91:31:c9:33:90:89:00:53:3d:99:39:d3:b6:71: a2:50:80:ef:28:dd:b6:25:cb:59:ab:ba:2e:8d:dc:4e:15:f5: 22:7e:c9:9c:7d:f3:89:09:1e:38:1f:46:9f:71:04:28:d2:7d: a9:1d:41:bd:af:2c:4d:a8:83:08:94:78:6e:fa:47:32:df:87: 5e:2b:0d:75:1a:18:2d:8f:6f:1e:a0:08:ab:87:35:d0:dd:63: 3c:d5:db:08:81:9c:de:22:8a:a9:6c:d5:0f:35:c4:f2:70:48: 25:3d:4a:6a:a0:54:7d:94:f0:e4:d5:8e:63:7e:e1:59:5a:cd: cc:b5:87:02:52:83:f9:75:fc:bc:45:05:3e:81:0c:40:2d:77: 43:a9:e9:b4:74:66:04:0c:50:ae:61:8f:62:f0:c3:5d:13:99: bf:fe:6c:1e:74:bc:92:03:63:89:9a:1f:68:e2:8c:5d:3d:cc: c2:14:a7:2d:a6:e9:9e:82:6e:ea:5d:e1:00:78:07:d1:2d:d9: 0d:08:a6:82:1b:e7:a1:49:61:43:1f:53:fe:95:bf:d9:3f:15: b0:98:e6:d1:94:0e:be:bf:bd:e3:08:42:c7:fd:3e:0b:d8:da: 35:de:8a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwODIyMTk1NjA4WhcNMjUwODI5MTk1NjA4WjAYMRYwFAYD VQQDEw02OGE4Y2I1OC1mMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8a8ROAUNZ27VIqvGEWpd5tU+RyTA+ipIA11tignyUgRo2izxW6kNhVZxAbN We9PAQj8ij3Vg5Zaypr9Z8NxMng6+60n2EeVZ1E0B1Q9FM2BrmZ8qlP4BS+F0z2m 5BiwTzMrXjF2xBgBDNQP9WSIXko+JIf18JpSJ3nT/Hs3IUZJwOl9sTXvtfg1U4xJ Ow/ayw58xn4Meu/AipcllK8Gob91QOJ7pQd3+zsG8zq48WvcQrP2ZRb0ipf7qQQT YW23ONRInmps/aWSbXExtIHQgksNEMMEy7zj1Vo9QoBdEUmcr5s51QA3cVWzhxTq HY4VMeMZY18VZ0nsC38FYzXa2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF641JKV 1Vk089Fy3YmaUA8UrZmlMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzCg7u3kDwJ3MJ7dVp2ehXBtxB40TmkTHJM5CJAFM9mTnTtnGiUIDv KN22JctZq7oujdxOFfUifsmcffOJCR44H0afcQQo0n2pHUG9ryxNqIMIlHhu+kcy 34deKw11Ghgtj28eoAirhzXQ3WM81dsIgZzeIoqpbNUPNcTycEglPUpqoFR9lPDk 1Y5jfuFZWs3MtYcCUoP5dfy8RQU+gQxALXdDqem0dGYEDFCuYY9i8MNdE5m//mwe dLySA2OJmh9o4oxdPczCFKctpumegm7qXeEAeAfRLdkNCKaCG+ehSWFDH1P+lb/Z PxWwmObRlA6+v73jCELH/T4L2No13orB -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:13 2025 by rpki-client