$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: 4M+BmM9I46ltZYSO7SjLLwMHiB3atkmZXelrz4vC0F4= Subject key identifier: FA:25:96:AB:1F:35:5E:1F:40:59:2D:96:41:B0:51:DE:F9:4C:95:65 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 18 Signing time: Sat 23 Aug 2025 08:11:11 +0000 Manifest this update: Sat 23 Aug 2025 08:11:11 +0000 Manifest next update: Sat 30 Aug 2025 08:11:10 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: +LmgQLEroSf4h/2daLZKeorkTC3dQjukWvAxMFdBgyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Aug 23 08:11:11 2025 GMT Not After : Aug 30 08:11:10 2025 GMT Subject: CN=68a9779f-ea68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:10:da:9c:8b:65:4c:5b:b9:ce:cb:09:61: 78:4b:cb:e4:e4:90:87:c6:98:d8:b6:01:60:17:3c: 26:43:09:5b:64:b9:9f:99:5e:a3:b9:ff:5b:00:14: 83:6a:42:6b:b6:4c:52:43:dd:74:22:d6:5d:ca:d8: 8a:91:f0:f0:51:62:4d:ca:b4:f6:4f:74:1d:86:65: c7:bd:5b:c4:3a:57:8c:59:7a:75:16:b2:dd:1d:07: b8:d2:02:1c:09:ea:7c:5b:3b:ee:35:f4:04:8f:6d: 26:ea:a0:b8:4c:0a:30:d6:69:5e:9a:2c:a2:eb:6c: 2e:12:ba:f5:b5:5a:b8:82:85:80:a4:73:8c:81:0a: db:7b:db:af:da:f4:c6:1f:a8:0c:da:50:34:7a:16: bc:74:04:3b:92:b7:3a:2b:c5:b1:19:df:fc:86:40: 76:31:c6:f9:80:f9:74:9f:ec:b2:22:6b:b1:92:89: 6b:fd:c1:84:fc:be:be:b9:4c:c1:9c:f1:93:ef:94: 06:bb:f0:d8:b9:b8:6b:6a:72:9d:4e:bb:07:67:1c: 68:48:98:a6:48:21:3c:1d:88:f9:a2:ed:7a:6e:cb: cf:4f:bd:75:28:18:64:66:ab:35:46:dd:af:43:b7: 85:13:8a:77:0c:3f:fc:41:4f:48:63:60:ce:67:1d: 6e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:25:96:AB:1F:35:5E:1F:40:59:2D:96:41:B0:51:DE:F9:4C:95:65 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f0:61:bb:5d:ba:80:52:6b:59:38:5e:23:5b:7a:74:a6:70: c4:3c:6b:e3:e0:9c:6c:36:53:5b:0b:4c:c7:b0:94:87:2b:3c: 06:79:92:c2:86:69:2e:e8:ce:1b:69:b9:c3:30:aa:b7:39:6c: 2d:8c:f0:88:0c:df:db:97:14:e3:67:44:b5:bd:67:9c:52:22: 61:4d:40:42:0d:e7:39:14:6d:63:59:77:96:7b:21:14:13:aa: 66:a7:3a:e5:03:74:49:1a:7f:70:85:15:5b:90:f5:de:2a:a7: a6:be:ff:ff:e3:1b:1b:18:55:ec:4d:49:c4:68:9c:f7:a7:3c: fe:3d:94:85:4d:fe:13:0e:d3:03:6d:4e:a7:f9:a3:5d:19:7d: f6:76:fe:ec:03:b5:4f:4b:a8:62:5c:0c:c7:1e:f0:e4:87:e9: 35:3a:ad:57:f6:9e:7d:d8:a8:55:17:9b:25:b3:b1:55:27:f1: 3d:f2:47:4b:74:ba:9f:99:7c:2b:96:c1:e7:d0:88:24:ec:03: cd:49:4a:be:38:e9:7a:af:a4:1b:eb:3c:2f:b2:b4:62:bd:a6: af:ff:7a:43:6f:6b:55:27:2b:c0:1c:9b:ba:86:57:ff:03:06: 7f:a4:8a:07:14:d1:04:15:1e:e3:92:f7:c3:22:8b:8f:42:3f: d3:ca:22:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoODZEOTVGNDFFRDE5ODFGQThEMEI1OTA4RDY0NDQ2NTEw RTZFQUM3RDAeFw0yNTA4MjMwODExMTFaFw0yNTA4MzAwODExMTBaMBgxFjAUBgNV BAMTDTY4YTk3NzlmLWVhNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoTRDanItlTFu5zssJYXhLy+TkkIfGmNi2AWAXPCZDCVtkuZ+ZXqO5/1sAFINq Qmu2TFJD3XQi1l3K2IqR8PBRYk3KtPZPdB2GZce9W8Q6V4xZenUWst0dB7jSAhwJ 6nxbO+419ASPbSbqoLhMCjDWaV6aLKLrbC4SuvW1WriChYCkc4yBCtt726/a9MYf qAzaUDR6Frx0BDuStzorxbEZ3/yGQHYxxvmA+XSf7LIia7GSiWv9wYT8vr65TMGc 8ZPvlAa78Ni5uGtqcp1OuwdnHGhImKZIITwdiPmi7Xpuy89PvXUoGGRmqzVG3a9D t4UTincMP/xBT0hjYM5nHW5VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+iWWqx81 Xh9AWS2WQbBR3vlMlWUwHwYDVR0jBBgwFoAUhtlfQe0ZgfqNC1kI1kRGUQ5urH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1LzA2MDNFNUJFNURC QzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRsZlFlMFpnZnFOQzFrSTFrUkdVUTV1ckgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUM1LzA2MDNFNUJFNURCQzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2Zx TkMxa0kxa1JHVVE1dXJIMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHvwYbtduoBSa1k4XiNbenSmcMQ8a+PgnGw2U1sLTMewlIcrPAZ5ksKG aS7ozhtpucMwqrc5bC2M8IgM39uXFONnRLW9Z5xSImFNQEIN5zkUbWNZd5Z7IRQT qmanOuUDdEkaf3CFFVuQ9d4qp6a+///jGxsYVexNScRonPenPP49lIVN/hMO0wNt Tqf5o10ZffZ2/uwDtU9LqGJcDMce8OSH6TU6rVf2nn3YqFUXmyWzsVUn8T3yR0t0 up+ZfCuWwefQiCTsA81JSr446XqvpBvrPC+ytGK9pq//ekNva1UnK8Acm7qGV/8D Bn+kigcU0QQVHuOS98Mii49CP9PKIk8= -----END CERTIFICATE-----Generated at Sun Aug 24 08:49:59 2025 by rpki-client