$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: QPiom6GKmXeUZlIpidyWj6Sr1aTGl7Im3XIEalq1iw4= Subject key identifier: 78:38:8B:3A:63:85:A2:C4:BB:AD:07:0C:0F:CC:52:62:50:FA:EF:7B Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0455 Signing time: Sat 23 Aug 2025 00:27:37 +0000 Manifest this update: Sat 23 Aug 2025 00:27:36 +0000 Manifest next update: Sat 30 Aug 2025 00:27:36 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: E822qM/mCaOXJEPfKMDlTHR375pETSenDc9IJq4Hlp0=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Aug 23 00:27:36 2025 GMT Not After : Aug 30 00:27:36 2025 GMT Subject: CN=68a90af8-f8b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:05:4e:45:10:60:2a:d7:b7:9a:d6:f5:17: 3b:cf:91:c8:7d:e2:9a:98:c9:55:75:c9:fb:d4:9b: 12:9e:53:0a:c3:e1:1a:b7:d7:91:01:df:d5:57:4d: 11:a0:0a:0d:af:bb:6e:9f:33:dc:9a:50:e4:8e:d3: e5:76:41:fb:f1:65:ec:94:c3:d6:91:b6:b8:53:ae: 63:78:14:fd:d8:8b:4f:2a:84:42:9b:f3:ec:28:16: 4a:fd:e6:d3:ae:13:ea:90:9f:4b:e0:38:bf:e4:35: 48:97:b6:6c:48:5c:22:71:4c:6f:45:e7:8b:6e:c6: 34:a3:fc:f0:26:2c:62:c6:8f:6a:76:3c:30:e6:b2: 6a:70:58:e6:e8:a8:79:80:bb:e6:2c:d6:ef:30:5f: 50:46:c0:7b:fe:ed:14:de:fe:24:96:32:30:8e:42: d0:6c:a7:d8:68:9b:f6:ea:2a:b0:99:92:02:c1:57: 63:85:31:1e:e7:36:12:1f:31:c3:8c:7a:f4:99:38: b9:6e:d0:8c:f7:f8:e9:21:83:53:3f:74:ae:eb:93: 69:08:88:64:66:88:67:90:41:9a:a1:2f:8a:24:aa: 47:f4:40:59:29:f0:f9:7b:15:53:72:fe:68:1e:21: 59:dd:80:1f:ec:d8:04:c3:fe:bc:6d:41:d5:05:5e: 92:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:38:8B:3A:63:85:A2:C4:BB:AD:07:0C:0F:CC:52:62:50:FA:EF:7B X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7b:c9:45:6d:a3:b7:b8:fd:57:d1:0d:1f:c9:b2:c7:39:c4: d0:be:c4:e5:ac:dc:78:d3:d3:b0:4f:1b:90:c4:b7:98:4e:78: 3c:a9:38:a8:68:44:60:48:72:08:cb:05:5f:35:90:46:ff:2b: 7b:8a:b0:7b:a0:23:bd:76:08:53:e8:98:2d:eb:e5:3e:10:55: 13:86:ed:70:04:b0:1a:3e:d5:f5:c1:7c:62:19:e0:6e:69:fc: d0:71:c5:3e:ba:12:fa:2d:25:12:a2:9a:b5:62:99:2a:72:9b: 2a:45:0d:a1:73:24:50:15:fc:5e:5c:1e:3c:49:1d:70:8c:b2: 6f:8a:d8:2e:2c:e2:b1:1b:7c:82:0d:3c:86:73:3a:cb:95:e1: 16:61:fb:de:17:63:6e:ba:bf:52:0c:80:86:9d:4d:b6:2f:85: a3:9c:02:4d:73:65:65:18:c7:8c:43:05:dc:54:8c:09:16:d1: 2e:12:9a:f5:a4:28:7f:66:a5:a5:77:94:9c:30:4c:53:cc:43: ab:9c:d4:cf:7f:2d:65:77:7d:7a:a8:2c:a8:ee:ba:fe:96:38: e2:db:ce:6e:8f:64:1e:aa:f2:2a:88:d1:98:27:1c:4c:39:f5: b1:f0:75:aa:4a:90:8f:59:6a:08:7d:53:f3:cf:cd:84:d8:78: dd:9d:12:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwODIzMDAyNzM2WhcNMjUwODMwMDAyNzM2WjAYMRYwFAYD VQQDEw02OGE5MGFmOC1mOGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTkFTkUQYCrXt5rW9Rc7z5HIfeKamMlVdcn71JsSnlMKw+Eat9eRAd/VV00R oAoNr7tunzPcmlDkjtPldkH78WXslMPWkba4U65jeBT92ItPKoRCm/PsKBZK/ebT rhPqkJ9L4Di/5DVIl7ZsSFwicUxvReeLbsY0o/zwJixixo9qdjww5rJqcFjm6Kh5 gLvmLNbvMF9QRsB7/u0U3v4kljIwjkLQbKfYaJv26iqwmZICwVdjhTEe5zYSHzHD jHr0mTi5btCM9/jpIYNTP3Su65NpCIhkZohnkEGaoS+KJKpH9EBZKfD5exVTcv5o HiFZ3YAf7NgEw/68bUHVBV6SxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHg4izpj haLEu60HDA/MUmJQ+u97MB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbe8lFbaO3uP1X0Q0fybLHOcTQvsTlrNx409OwTxuQxLeYTng8qTio aERgSHIIywVfNZBG/yt7irB7oCO9dghT6Jgt6+U+EFUThu1wBLAaPtX1wXxiGeBu afzQccU+uhL6LSUSopq1YpkqcpsqRQ2hcyRQFfxeXB48SR1wjLJvitguLOKxG3yC DTyGczrLleEWYfveF2Nuur9SDICGnU22L4WjnAJNc2VlGMeMQwXcVIwJFtEuEpr1 pCh/ZqWld5ScMExTzEOrnNTPfy1ld316qCyo7rr+ljji285uj2QeqvIqiNGYJxxM OfWx8HWqSpCPWWoIfVPzz82E2HjdnRJn -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:41 2025 by rpki-client