$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: Pv4/1zM5uvXjt0ucNi4emAA2N5/B9RCCqOmi6T2AACw= Subject key identifier: 66:DF:A2:8C:3D:51:F8:74:68:A1:71:6D:97:2B:CC:88:D4:46:25:FB Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 84 Signing time: Sat 23 Aug 2025 06:54:38 +0000 Manifest this update: Sat 23 Aug 2025 06:54:37 +0000 Manifest next update: Sat 30 Aug 2025 06:54:37 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: JHe6xZbPSxjav6qtPFgRbzegeDV9krvA1SiOqSqh7+8=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Aug 23 06:54:37 2025 GMT Not After : Aug 30 06:54:37 2025 GMT Subject: CN=68a965ad-91e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:95:75:c4:59:a1:88:89:34:43:19:4c:dd: 57:57:09:64:ba:c3:83:32:a9:67:b3:48:db:3a:9d: 90:94:a8:b0:e3:31:ce:cc:10:ea:09:9b:d6:e7:39: 68:85:3c:e4:d7:45:9d:ae:f2:6f:fc:f2:13:3d:78: d5:ab:50:55:61:62:32:96:8e:1f:fa:5b:89:63:65: 39:ed:ba:73:51:52:aa:09:51:d0:d8:a9:1a:83:53: b2:67:bc:8b:84:90:6e:08:d4:a1:56:4c:fb:a5:1c: 14:93:8b:92:8b:85:b9:79:88:97:30:36:7b:85:bf: a3:2a:85:4d:bc:06:d1:d2:b7:88:4b:0c:66:8f:ba: dd:95:cd:9f:59:16:30:93:56:bc:5f:59:05:a8:30: 05:e5:3f:a0:84:24:06:5b:6b:1f:a5:b9:1a:69:a2: 1b:e9:de:09:3a:db:4c:db:ce:00:1e:a6:fe:1c:9a: ea:96:e8:2d:15:d1:56:fa:49:b8:19:74:dc:2f:a7: 87:1d:93:f5:a4:14:c7:62:2e:f4:36:be:b0:e2:45: 94:35:cd:d9:8e:c3:2f:6d:11:62:75:78:03:eb:17: 16:b1:4d:81:3a:e9:19:66:14:e1:4b:f6:2e:95:29: 0d:81:67:1b:7e:37:26:7e:03:41:7a:a7:2e:0d:4f: c0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DF:A2:8C:3D:51:F8:74:68:A1:71:6D:97:2B:CC:88:D4:46:25:FB X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:55:de:be:14:07:31:1a:07:d9:41:d3:97:b0:e6:c6:2c:cd: 17:2c:73:a5:09:0f:eb:9b:18:97:7e:0f:bf:0b:db:9c:a5:07: f9:09:02:ac:7e:7a:b0:41:e0:e9:3a:af:e6:f6:13:68:ae:d4: d6:ae:f7:64:97:af:c1:4d:ce:ac:2b:79:4e:59:5e:76:ed:f6: b6:b8:46:44:8e:c9:7c:d7:4a:3c:62:68:c4:ab:dc:b4:5d:87: 16:fb:4f:63:2e:c6:58:ea:32:df:b6:27:99:8b:22:79:94:45: 85:7e:58:9d:63:4a:b8:7f:de:fb:87:e3:2f:33:8a:26:2d:3d: 6e:58:37:31:ea:03:2b:7c:2f:be:9f:5f:27:a0:a3:c0:0f:27: dc:10:e8:06:96:25:fc:87:d2:8c:6f:b8:07:2e:6e:70:09:8e: 6c:69:92:0a:1c:64:87:da:78:48:d1:4f:00:b1:e9:ff:56:34: d2:94:d4:1d:44:15:fc:2b:c1:e0:db:47:73:9b:1b:20:d2:da: 6c:7f:21:2b:d7:ac:5d:06:33:af:c9:84:0d:1b:24:d4:94:c7: 91:c8:5e:16:da:11:8c:be:6e:02:5b:ed:42:e9:ea:17:6f:d0: 64:7e:41:b4:23:2e:8f:0d:cd:55:a3:22:ac:29:d4:88:3f:de: fe:3f:57:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUwODIzMDY1NDM3WhcNMjUwODMwMDY1NDM3WjAYMRYwFAYD VQQDEw02OGE5NjVhZC05MWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNmVdcRZoYiJNEMZTN1XVwlkusODMqlns0jbOp2QlKiw4zHOzBDqCZvW5zlo hTzk10WdrvJv/PITPXjVq1BVYWIylo4f+luJY2U57bpzUVKqCVHQ2Kkag1OyZ7yL hJBuCNShVkz7pRwUk4uSi4W5eYiXMDZ7hb+jKoVNvAbR0reISwxmj7rdlc2fWRYw k1a8X1kFqDAF5T+ghCQGW2sfpbkaaaIb6d4JOttM284AHqb+HJrqlugtFdFW+km4 GXTcL6eHHZP1pBTHYi70Nr6w4kWUNc3ZjsMvbRFidXgD6xcWsU2BOukZZhThS/Yu lSkNgWcbfjcmfgNBeqcuDU/A+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbfoow9 Ufh0aKFxbZcrzIjURiX7MB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvVd6+FAcxGgfZQdOXsObGLM0XLHOlCQ/rmxiXfg+/C9ucpQf5CQKs fnqwQeDpOq/m9hNortTWrvdkl6/BTc6sK3lOWV527fa2uEZEjsl810o8YmjEq9y0 XYcW+09jLsZY6jLftieZiyJ5lEWFflidY0q4f977h+MvM4omLT1uWDcx6gMrfC++ n18noKPADyfcEOgGliX8h9KMb7gHLm5wCY5saZIKHGSH2nhI0U8Asen/VjTSlNQd RBX8K8Hg20dzmxsg0tpsfyEr16xdBjOvyYQNGyTUlMeRyF4W2hGMvm4CW+1C6eoX b9BkfkG0Iy6PDc1VoyKsKdSIP97+P1dI -----END CERTIFICATE-----Generated at Sat Aug 23 15:55:24 2025 by rpki-client