$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: 2UBQNb5zTTHNhnz03F19DhiLm+0+49u7EB+6mkFF9xc= Subject key identifier: 01:C7:4F:3C:50:C4:3E:43:EF:F7:0C:C7:5C:5A:C5:B3:CD:EF:5A:9A Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 06C1 Signing time: Fri 22 Aug 2025 22:16:58 +0000 Manifest this update: Fri 22 Aug 2025 22:16:57 +0000 Manifest next update: Fri 29 Aug 2025 22:16:57 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: QAtLA2PsPqf/vn6ON/zAkYPx4utF4VfVfQDPHaT7pZA=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: Td9ZRXmDLCaOWu5C2VPY0G2nu6GZr9orup/Cn82OpN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Aug 22 22:16:57 2025 GMT Not After : Aug 29 22:16:57 2025 GMT Subject: CN=68a8ec59-d432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:46:19:50:14:50:1d:fb:b7:b2:f5:ec:bc:90: 9f:39:ce:27:30:f3:5c:df:2a:9d:83:05:db:e0:2b: 4f:cf:39:c4:26:1b:0f:1f:80:0d:7f:d1:dd:87:f8: 50:7c:fd:92:6e:64:d8:e6:2a:90:63:4a:aa:ec:cd: 65:3e:14:52:78:fc:d3:58:c5:e2:c4:f8:81:4b:68: 1a:f5:71:43:8b:9a:24:3b:1f:5f:56:90:7b:e8:1f: 26:45:04:d6:9f:4b:45:1d:54:a2:bb:77:45:a7:be: 71:03:ff:17:b4:7d:9f:ac:62:ba:87:ca:31:81:26: b2:c9:3b:97:e8:8b:2b:0f:00:2f:36:c1:22:5c:8e: b3:14:c0:b5:74:a1:0e:a1:fd:85:2c:6d:3c:a3:66: 33:98:71:a9:e1:58:5d:51:89:9b:ef:d4:18:45:af: e5:f9:6f:9c:56:a1:4f:8a:59:d5:18:ee:8f:39:90: ca:a2:93:a0:9f:ff:f6:8b:8a:b8:ef:9a:71:23:01: 45:7b:95:57:21:57:b0:11:a1:ac:61:b9:c3:1c:0e: 65:97:37:d4:56:7a:64:17:7f:4f:fe:22:b5:73:ee: f9:a9:7d:0b:0c:45:4d:b1:a1:dc:0b:58:47:e5:ae: 7d:9e:3b:25:fc:6c:b3:f9:71:0a:3f:50:52:10:8a: a3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C7:4F:3C:50:C4:3E:43:EF:F7:0C:C7:5C:5A:C5:B3:CD:EF:5A:9A X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:11:db:d9:60:97:90:22:bc:cc:49:01:94:ff:6c:5c:37:f8: 64:3f:93:23:29:5a:15:1d:c6:31:da:9c:fd:87:31:06:9f:c7: af:38:cb:94:10:64:12:68:9b:fd:21:32:bb:bc:d7:e0:e9:41: 35:c8:20:ec:30:46:51:39:97:16:6c:ad:98:44:6e:6b:25:bb: 40:fd:7f:4d:f7:8c:75:48:68:d5:a8:ab:f9:fd:f5:5e:3b:d4: e2:b5:3a:c2:3d:2a:e4:43:0f:de:7f:9d:e7:56:a7:b5:61:9b: 2b:99:50:40:8b:e6:d0:0d:96:e3:04:88:9d:e0:9b:e5:f9:7c: 2a:14:d5:e7:7c:76:50:81:66:9e:3c:44:fe:c9:79:45:65:5d: f5:a1:f1:06:25:df:0f:c6:83:d7:f8:0f:4e:69:a2:b0:4b:a2: 45:5d:a5:3d:82:9b:82:89:67:4f:e6:6a:a4:72:9e:8d:6e:54: f7:45:82:d8:76:e9:f7:1c:3c:21:e4:88:d6:0b:4c:a7:5a:f7: 03:cc:db:4e:86:2d:c0:65:9d:bf:51:83:7c:11:3d:d2:2f:00: 34:6e:a3:6b:a5:a7:4c:b5:03:e6:1d:fd:b7:82:37:e6:2f:72: ac:9f:a1:da:11:5b:e6:c2:d3:0b:33:ae:b7:fd:bb:20:20:23: cd:33:3f:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUwODIyMjIxNjU3WhcNMjUwODI5MjIxNjU3WjAYMRYwFAYD VQQDEw02OGE4ZWM1OS1kNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9UYZUBRQHfu3svXsvJCfOc4nMPNc3yqdgwXb4CtPzznEJhsPH4ANf9Hdh/hQ fP2SbmTY5iqQY0qq7M1lPhRSePzTWMXixPiBS2ga9XFDi5okOx9fVpB76B8mRQTW n0tFHVSiu3dFp75xA/8XtH2frGK6h8oxgSayyTuX6IsrDwAvNsEiXI6zFMC1dKEO of2FLG08o2YzmHGp4VhdUYmb79QYRa/l+W+cVqFPilnVGO6POZDKopOgn//2i4q4 75pxIwFFe5VXIVewEaGsYbnDHA5llzfUVnpkF39P/iK1c+75qX0LDEVNsaHcC1hH 5a59njsl/Gyz+XEKP1BSEIqjSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHHTzxQ xD5D7/cMx1xaxbPN71qaMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrEdvZYJeQIrzMSQGU/2xcN/hkP5MjKVoVHcYx2pz9hzEGn8evOMuU EGQSaJv9ITK7vNfg6UE1yCDsMEZROZcWbK2YRG5rJbtA/X9N94x1SGjVqKv5/fVe O9TitTrCPSrkQw/ef53nVqe1YZsrmVBAi+bQDZbjBIid4Jvl+XwqFNXnfHZQgWae PET+yXlFZV31ofEGJd8PxoPX+A9OaaKwS6JFXaU9gpuCiWdP5mqkcp6NblT3RYLY dun3HDwh5IjWC0ynWvcDzNtOhi3AZZ2/UYN8ET3SLwA0bqNrpadMtQPmHf23gjfm L3Ksn6HaEVvmwtMLM663/bsgICPNMz8g -----END CERTIFICATE-----Generated at Sat Aug 23 18:58:42 2025 by rpki-client