$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: VdYYcvjd/zqdHV1JP2fRg0i1IcHJ2skhvS1+UXxp+VU= Subject key identifier: A4:2A:64:D5:8A:77:03:70:2B:1D:3A:F9:69:37:1F:81:73:56:3B:A1 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 59 Signing time: Sun 29 Jun 2025 06:10:35 +0000 Manifest this update: Sun 29 Jun 2025 06:10:34 +0000 Manifest next update: Sun 06 Jul 2025 06:10:34 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: +jdOObC+HW+zU2uyh6i64VdZGGVKGx+8yXV9hpghAaA=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Jun 29 06:10:34 2025 GMT Not After : Jul 6 06:10:34 2025 GMT Subject: CN=6860d8da-c714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:e4:1c:2d:61:e3:e8:b6:2f:91:d0:3e:ef: 02:fd:a8:ca:e8:d5:c1:b8:86:7d:79:72:a4:5e:27: 80:fc:21:c1:8d:bd:01:c6:7c:18:bb:42:19:69:6b: 06:d9:75:d7:19:9d:bf:1a:c2:e2:bc:14:d2:0d:b0: 8e:b9:e2:0e:98:d4:d4:21:64:5d:fb:ce:2b:98:7b: 66:7e:d1:fb:4f:10:68:e5:de:1c:6f:f8:ec:f9:da: d5:b9:ed:24:c5:08:fe:31:53:a2:f9:24:45:9e:7e: ab:b7:c2:13:19:a6:81:14:7f:b8:bf:8b:f8:23:b1: 44:1c:0c:93:2f:20:61:85:53:99:72:39:5c:a3:db: 66:09:8e:7b:c7:9d:6f:52:c8:05:e3:07:40:f6:36: a2:46:91:dc:2a:be:bb:9f:45:8a:b2:f0:d4:ba:96: 2e:51:57:d2:d1:4d:c1:c4:3a:a6:f4:af:fa:71:36: 03:c1:d3:56:f1:47:2c:97:a1:5b:3a:2f:45:3f:6f: aa:8a:33:d4:55:e1:9e:ba:b2:39:2b:62:ac:6c:ec: d7:85:85:51:88:d7:a5:b8:98:d7:ee:c0:91:c1:3b: 75:53:da:78:60:c5:8e:52:fa:ed:1e:4e:d9:54:99: 6b:61:a0:0c:1c:dc:68:ba:d2:71:fe:c1:93:b1:49: 9c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2A:64:D5:8A:77:03:70:2B:1D:3A:F9:69:37:1F:81:73:56:3B:A1 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:90:ad:e1:ca:73:67:a5:67:90:59:fd:92:d9:61:9d:4e:35: 1b:87:97:06:cb:68:5d:e1:73:31:c0:26:22:fb:d9:c8:41:6f: 20:8b:0b:05:21:f2:65:bc:4a:52:b6:b2:d1:f4:ee:c6:a3:73: c7:40:80:1a:a2:f6:4c:63:3b:4d:84:f7:6f:b6:b4:8a:9b:2d: 25:f6:04:c5:e0:14:39:0e:f1:e2:be:bf:4f:d9:25:fd:a9:6b: 4b:ed:cc:47:f6:24:09:fb:6c:b5:66:83:68:13:41:db:8a:bc: e6:7a:ad:82:7a:5b:33:77:63:42:5c:d6:43:ed:c2:56:ce:5e: 98:6c:9d:65:e9:d5:7f:ce:df:3a:ad:04:cc:04:0d:bd:6f:71: 56:e6:d8:90:53:a0:9f:93:04:b9:44:68:7e:70:45:0e:50:48: 1a:62:47:4e:ba:21:95:1c:ca:41:6a:48:52:9f:22:ac:f0:93: f9:3e:3b:de:e1:78:b4:45:24:f8:8a:f5:7a:30:82:46:d8:b3: e2:7f:11:08:bc:7a:ef:ed:71:35:02:14:a8:74:29:68:b2:53: ac:33:38:41:c7:10:d6:79:e3:e4:f1:12:90:86:cc:1d:26:68: 53:ff:a9:88:bb:02:ec:98:5e:d1:38:13:a7:ae:01:02:78:11: 77:cf:50:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTA2MjkwNjEwMzRaFw0yNTA3MDYwNjEwMzRaMBgxFjAUBgNV BAMTDTY4NjBkOGRhLWM3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvU+QcLWHj6LYvkdA+7wL9qMro1cG4hn15cqReJ4D8IcGNvQHGfBi7QhlpawbZ ddcZnb8awuK8FNINsI654g6Y1NQhZF37ziuYe2Z+0ftPEGjl3hxv+Oz52tW57STF CP4xU6L5JEWefqu3whMZpoEUf7i/i/gjsUQcDJMvIGGFU5lyOVyj22YJjnvHnW9S yAXjB0D2NqJGkdwqvrufRYqy8NS6li5RV9LRTcHEOqb0r/pxNgPB01bxRyyXoVs6 L0U/b6qKM9RV4Z66sjkrYqxs7NeFhVGI16W4mNfuwJHBO3VT2nhgxY5S+u0eTtlU mWthoAwc3Gi60nH+wZOxSZzLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpCpk1Yp3 A3ArHTr5aTcfgXNWO6EwHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWQreHKc2elZ5BZ/ZLZYZ1ONRuHlwbLaF3hczHAJiL72chBbyCLCwUh 8mW8SlK2stH07sajc8dAgBqi9kxjO02E92+2tIqbLSX2BMXgFDkO8eK+v0/ZJf2p a0vtzEf2JAn7bLVmg2gTQduKvOZ6rYJ6WzN3Y0Jc1kPtwlbOXphsnWXp1X/O3zqt BMwEDb1vcVbm2JBToJ+TBLlEaH5wRQ5QSBpiR066IZUcykFqSFKfIqzwk/k+O97h eLRFJPiK9XowgkbYs+J/EQi8eu/tcTUCFKh0KWiyU6wzOEHHENZ54+TxEpCGzB0m aFP/qYi7AuyYXtE4E6euAQJ4EXfPUEQ= -----END CERTIFICATE-----Generated at Sun Jun 29 21:06:15 2025 by rpki-client