$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 4kqW+uxfxierjoyOAZgHK8/tutTTDwlABzdK8itF+HM= Subject key identifier: 7D:70:4A:A2:BF:26:3B:F4:96:79:CB:AC:60:44:30:26:72:9E:FF:A1 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 99 Signing time: Sat 23 Aug 2025 06:35:40 +0000 Manifest this update: Sat 23 Aug 2025 06:35:39 +0000 Manifest next update: Sat 30 Aug 2025 06:35:39 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: waPtzVuhwSoJRQLdDZ7amm4r/+1ddEkrSM7NrX4hTos=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Aug 23 06:35:39 2025 GMT Not After : Aug 30 06:35:39 2025 GMT Subject: CN=68a9613c-8714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:bb:3b:11:de:75:84:8e:1b:21:82:31:bf: 6b:44:92:ba:ff:e5:3b:2c:e7:fc:49:5b:98:dc:8e: 4e:ba:89:15:c1:77:94:ea:88:87:e1:06:37:61:b1: 4e:95:e6:60:79:e4:2b:f6:40:0d:8b:bb:e4:a1:7d: 10:32:4e:8e:ae:37:51:98:38:78:40:78:ca:d5:11: f7:fa:30:b9:66:b3:6f:39:9c:ba:f3:a3:ee:2b:67: 17:bd:c9:47:1a:aa:d8:c1:9a:af:b6:da:49:a6:31: b7:0f:57:03:7b:70:6e:28:eb:5c:cb:ab:06:0f:de: d5:1c:77:de:14:af:7c:ca:00:8b:93:3a:d5:07:de: cc:2e:af:59:aa:ec:76:e6:e8:13:13:07:e5:60:e6: 70:b4:ec:2d:cd:4d:83:a0:0f:93:55:84:58:8f:93: e5:94:a0:f9:82:bb:d6:75:6c:ea:38:43:22:48:35: fd:df:68:a6:df:99:5d:d2:5e:57:fb:a9:80:a0:3e: 16:19:d5:e7:65:0e:a4:eb:93:11:65:8e:e2:bb:32: 56:5d:98:f6:aa:94:d0:3c:bb:1c:ce:f5:7d:8f:60: d5:7a:08:3a:e9:0d:36:46:3d:a4:3b:08:c3:2d:9c: 7a:b6:25:22:61:ae:ce:06:7d:c9:6d:87:cb:40:fe: 1a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:70:4A:A2:BF:26:3B:F4:96:79:CB:AC:60:44:30:26:72:9E:FF:A1 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0a:4e:8d:11:3e:ce:c3:84:32:ab:19:7b:0b:8b:b5:97:09: 6f:2e:03:a9:a8:f9:aa:b3:07:37:c7:aa:53:03:6b:94:b6:67: d6:e4:53:5b:93:2a:62:74:9f:f1:7d:18:d4:f7:bc:d6:94:4e: 70:a1:05:23:50:9e:8b:b9:2c:3b:99:ca:b9:0d:99:0d:31:f5: fc:d4:a1:47:13:e5:82:c3:bd:6e:77:dc:58:4d:f2:2f:d1:5c: a9:3e:be:8d:df:3b:d8:b6:1d:21:33:a0:bd:a6:b6:61:6f:d8: 82:f8:21:3a:28:b1:0d:c0:e1:30:ee:4a:59:59:83:41:0c:4b: de:c4:70:61:19:67:f7:3a:12:e6:4f:e3:97:10:50:38:0e:cd: 1d:49:ec:97:43:2c:e6:30:71:90:0c:85:fd:68:08:83:3d:7a: 31:cb:e1:d3:14:0b:dd:f4:27:a0:53:1e:eb:45:b5:fa:c1:fc: 1d:32:80:11:a5:4a:1b:ca:e5:e0:db:15:9c:93:77:42:6b:65: 43:74:a4:02:1d:78:a2:2d:40:43:35:39:50:c8:34:5c:b8:13: a2:24:2a:ee:a5:f4:b0:d0:25:f3:2a:c0:e9:55:c2:0a:07:a2: 81:47:06:bb:32:0d:56:c0:44:9f:f1:02:37:3f:ac:c9:d8:57: 75:83:7c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUwODIzMDYzNTM5WhcNMjUwODMwMDYzNTM5WjAYMRYwFAYD VQQDEw02OGE5NjEzYy04NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzS7OxHedYSOGyGCMb9rRJK6/+U7LOf8SVuY3I5OuokVwXeU6oiH4QY3YbFO leZgeeQr9kANi7vkoX0QMk6OrjdRmDh4QHjK1RH3+jC5ZrNvOZy686PuK2cXvclH GqrYwZqvttpJpjG3D1cDe3BuKOtcy6sGD97VHHfeFK98ygCLkzrVB97MLq9Zqux2 5ugTEwflYOZwtOwtzU2DoA+TVYRYj5PllKD5grvWdWzqOEMiSDX932im35ld0l5X +6mAoD4WGdXnZQ6k65MRZY7iuzJWXZj2qpTQPLsczvV9j2DVegg66Q02Rj2kOwjD LZx6tiUiYa7OBn3JbYfLQP4aUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1wSqK/ Jjv0lnnLrGBEMCZynv+hMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1Ck6NET7Ow4Qyqxl7C4u1lwlvLgOpqPmqswc3x6pTA2uUtmfW5FNb kypidJ/xfRjU97zWlE5woQUjUJ6LuSw7mcq5DZkNMfX81KFHE+WCw71ud9xYTfIv 0VypPr6N3zvYth0hM6C9prZhb9iC+CE6KLENwOEw7kpZWYNBDEvexHBhGWf3OhLm T+OXEFA4Ds0dSeyXQyzmMHGQDIX9aAiDPXoxy+HTFAvd9CegUx7rRbX6wfwdMoAR pUobyuXg2xWck3dCa2VDdKQCHXiiLUBDNTlQyDRcuBOiJCrupfSw0CXzKsDpVcIK B6KBRwa7Mg1WwESf8QI3P6zJ2Fd1g3yh -----END CERTIFICATE-----Generated at Sat Aug 23 17:12:46 2025 by rpki-client