$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: SevH4pxpTyGfWg0pMct9CNxqjtcCd/SxTpKgXDGGysY= Subject key identifier: 3E:79:2B:73:2A:BB:D7:67:7A:98:C5:D9:12:3B:F4:58:35:DF:67:38 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 75 Signing time: Sat 23 Aug 2025 07:02:19 +0000 Manifest this update: Sat 23 Aug 2025 07:02:18 +0000 Manifest next update: Sat 30 Aug 2025 07:02:18 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: oI1DOaIn42nSQC7pnJSxlIOkMAzEnk6qUueEctDMZa8=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Aug 23 07:02:18 2025 GMT Not After : Aug 30 07:02:18 2025 GMT Subject: CN=68a9677b-5334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:62:c6:d2:16:c9:0c:8e:11:db:18:7d:3d: 8c:61:1b:2c:ba:80:34:50:aa:12:e1:36:2f:8f:b4: 9f:08:2a:75:ba:01:8c:96:e5:50:9a:b6:d7:5d:0c: ea:0c:ce:94:ca:7c:bf:99:9a:38:58:02:28:9a:c1: 17:09:1f:b0:7d:8e:fb:92:99:4a:86:10:0c:42:4c: 6e:8a:ac:89:fa:49:bd:29:8d:fe:56:72:7c:12:b3: 3d:3b:58:c7:ad:ff:2a:d2:65:b6:c4:b6:15:07:be: 31:c3:28:68:22:b9:6f:6c:40:6c:7a:b7:60:36:b2: 7c:b9:9f:86:14:06:a9:15:e5:de:2b:45:d1:37:09: a6:f4:e2:91:df:fb:fd:36:cb:c3:e0:f7:db:2c:1d: d0:10:ec:03:bb:de:e5:60:4f:f9:85:7d:27:62:3d: 1e:fc:dc:05:5a:0f:f6:7c:44:97:0b:1f:52:b4:cb: f4:e7:6a:31:8d:e0:1c:81:ac:8b:70:45:8f:f9:27: 23:70:7d:18:a6:a4:f7:ca:f3:14:4e:66:1f:04:7c: 41:0c:a0:a0:74:a1:a8:3e:6b:ed:7a:d6:70:51:1c: 31:e0:7f:11:42:45:01:70:06:d4:64:1c:7d:89:00: 96:ad:20:88:ee:c5:a6:1a:85:fb:b7:0a:ab:8f:54: e6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:79:2B:73:2A:BB:D7:67:7A:98:C5:D9:12:3B:F4:58:35:DF:67:38 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:10:90:41:18:63:4b:2a:4b:a1:d3:93:ad:71:b4:b5:2b:99: 02:85:17:ef:52:fc:1b:e5:65:2d:3a:ee:d0:02:5d:f0:e3:96: 1b:b8:27:a4:4b:c2:2b:2a:61:93:66:2c:4f:79:38:0c:be:d5: e8:21:42:52:5b:fe:5b:09:05:51:44:15:e4:5d:0c:52:14:1b: 7d:a0:34:44:eb:ed:16:69:88:16:c7:44:0c:1d:18:cd:c9:a9: c8:9f:c8:78:0e:02:be:2b:7b:95:b4:2d:5f:bf:e2:61:49:37: 6e:7e:b8:12:09:de:82:39:09:06:11:be:ca:3b:a9:13:4b:8d: 29:d1:0e:8c:bd:d8:95:91:57:b1:7f:0c:b9:92:b9:be:d6:78: 0d:65:a9:bc:9b:4c:9c:2a:3a:99:63:89:d9:5c:5b:b9:dd:e8: 39:42:3d:2d:be:b9:11:7b:53:54:cf:37:a6:6f:e3:07:31:54: 92:fe:20:0f:29:57:aa:36:b1:8a:aa:74:cd:52:d1:6d:91:b1: 97:ab:ef:4b:22:da:58:a7:49:e8:fe:0b:32:8b:0a:74:50:59: 9f:50:e0:c4:61:c1:99:ad:52:1f:ef:e5:22:ca:9d:e7:c4:9a: 01:4d:c5:7d:5c:80:6a:94:8d:f9:4d:c3:13:e8:6b:c6:2d:f1: 56:3c:f3:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTA4MjMwNzAyMThaFw0yNTA4MzAwNzAyMThaMBgxFjAUBgNV BAMTDTY4YTk2NzdiLTUzMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7XWLG0hbJDI4R2xh9PYxhGyy6gDRQqhLhNi+PtJ8IKnW6AYyW5VCattddDOoM zpTKfL+ZmjhYAiiawRcJH7B9jvuSmUqGEAxCTG6KrIn6Sb0pjf5WcnwSsz07WMet /yrSZbbEthUHvjHDKGgiuW9sQGx6t2A2sny5n4YUBqkV5d4rRdE3Cab04pHf+/02 y8Pg99ssHdAQ7AO73uVgT/mFfSdiPR783AVaD/Z8RJcLH1K0y/TnajGN4ByBrItw RY/5JyNwfRimpPfK8xROZh8EfEEMoKB0oag+a+161nBRHDHgfxFCRQFwBtRkHH2J AJatIIjuxaYahfu3CquPVObJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPnkrcyq7 12d6mMXZEjv0WDXfZzgwHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADkQkEEYY0sqS6HTk61xtLUrmQKFF+9S/BvlZS067tACXfDjlhu4J6RL wisqYZNmLE95OAy+1eghQlJb/lsJBVFEFeRdDFIUG32gNETr7RZpiBbHRAwdGM3J qcifyHgOAr4re5W0LV+/4mFJN25+uBIJ3oI5CQYRvso7qRNLjSnRDoy92JWRV7F/ DLmSub7WeA1lqbybTJwqOpljidlcW7nd6DlCPS2+uRF7U1TPN6Zv4wcxVJL+IA8p V6o2sYqqdM1S0W2RsZer70si2linSej+CzKLCnRQWZ9Q4MRhwZmtUh/v5SLKnefE mgFNxX1cgGqUjflNwxPoa8Yt8VY8850= -----END CERTIFICATE-----Generated at Sat Aug 23 15:54:50 2025 by rpki-client