$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: mvz/+jBy2FXIHkcf4AmIt2gZ/JaHZ6cZ0FkVM5N8VgA= Subject key identifier: E9:03:AB:0A:D7:68:EC:97:3A:FE:CD:6B:7B:3A:72:28:3A:B1:D1:BD Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 01ED Signing time: Sat 23 Aug 2025 02:38:46 +0000 Manifest this update: Sat 23 Aug 2025 02:38:45 +0000 Manifest next update: Sat 30 Aug 2025 02:38:45 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: hHZgKmKMV9eG4hV8+rHUDK8PvApzEJS3sHXCe67OpVg=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: fk3GNutu1Xl8jf9hzH4EWHosYGuy+JY1n5pgsTabR1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: Aug 23 02:38:45 2025 GMT Not After : Aug 30 02:38:45 2025 GMT Subject: CN=68a929b5-20c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fb:f3:ec:1f:13:49:6c:84:73:6b:ea:e0:47: ec:8c:3f:72:52:50:62:d0:a8:03:59:af:b4:02:1a: a9:0b:32:61:e7:c9:69:53:a4:e4:e4:48:8e:e9:d9: 98:d0:9e:05:4d:dc:5a:36:17:36:3f:f1:57:f4:1d: 40:11:0d:71:43:ab:4c:0d:00:9e:21:b4:28:a0:f7: b3:4e:56:ec:25:0f:e8:16:01:c3:67:c2:8a:10:62: 92:6c:c2:71:f7:eb:59:75:a0:51:c5:da:e6:b2:94: b7:9b:4b:cf:17:5e:8a:8b:76:57:7a:6b:20:36:d0: d2:91:e3:30:6c:3a:1d:c0:cb:9f:a3:49:0a:c0:ab: 39:33:a8:47:6d:f5:ee:ed:60:8b:ec:f4:ce:ca:69: be:86:e4:51:0c:98:52:af:8b:fb:23:84:39:aa:91: 54:13:3f:7f:e2:7f:69:14:4a:c8:9c:d7:19:6f:fd: 89:95:41:bc:07:89:23:08:10:9f:83:c4:08:ed:a6: cc:94:24:58:fe:2f:67:77:14:72:a8:6c:9b:0c:75: 3a:da:61:1f:24:eb:b6:9d:8a:a1:05:71:f1:b1:0d: c1:82:3e:42:43:4f:70:6d:17:a2:81:6a:f0:4f:e4: 3d:2e:d6:d2:6a:38:d8:22:7e:b8:5a:44:25:34:89: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:03:AB:0A:D7:68:EC:97:3A:FE:CD:6B:7B:3A:72:28:3A:B1:D1:BD X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:97:1f:2c:62:96:ce:81:b2:85:e0:22:f1:c2:4f:a9:df:f8: 55:fa:c5:0f:ac:43:06:ee:da:1f:49:eb:2d:ae:24:60:54:7d: 3c:c7:90:ce:9b:b8:74:8e:6f:4a:82:68:e5:ea:af:8c:fc:c7: 0a:74:e8:0e:2d:a5:ae:36:6e:a0:77:61:09:19:1a:2b:17:b7: 7f:7c:db:9f:4b:f1:40:10:be:78:64:7e:43:ea:07:66:df:9c: f1:3c:ed:90:fb:b3:b3:b4:16:dc:12:c7:ed:bc:36:b0:b2:9b: ad:d3:03:87:cc:8e:5b:db:5e:a4:bb:15:e1:7d:49:f2:0f:30: 63:ce:fe:b4:96:c6:95:54:01:f5:a2:48:fd:74:3d:8e:c5:b1: 08:74:ef:97:b2:95:43:28:a0:36:8c:46:32:10:9b:d1:dd:d8: 1d:10:15:8f:53:59:9d:20:36:b4:56:56:bc:2a:08:3e:21:d3: a7:f1:c0:27:53:5d:bb:05:ca:da:20:cb:15:19:6d:12:83:52: a8:ee:59:3d:41:d0:bc:3f:12:80:59:f1:e5:11:02:61:c8:64: e2:0c:dc:23:52:ca:81:27:c6:21:ce:c9:b2:92:bf:60:33:af: 80:ff:21:c8:6d:bc:8e:2e:07:0c:e1:c4:cc:49:a8:97:bf:19: 1e:61:8a:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjUwODIzMDIzODQ1WhcNMjUwODMwMDIzODQ1WjAYMRYwFAYD VQQDEw02OGE5MjliNS0yMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPvz7B8TSWyEc2vq4EfsjD9yUlBi0KgDWa+0AhqpCzJh58lpU6Tk5EiO6dmY 0J4FTdxaNhc2P/FX9B1AEQ1xQ6tMDQCeIbQooPezTlbsJQ/oFgHDZ8KKEGKSbMJx 9+tZdaBRxdrmspS3m0vPF16Ki3ZXemsgNtDSkeMwbDodwMufo0kKwKs5M6hHbfXu 7WCL7PTOymm+huRRDJhSr4v7I4Q5qpFUEz9/4n9pFErInNcZb/2JlUG8B4kjCBCf g8QI7abMlCRY/i9ndxRyqGybDHU62mEfJOu2nYqhBXHxsQ3Bgj5CQ09wbReigWrw T+Q9LtbSajjYIn64WkQlNIluqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkDqwrX aOyXOv7Na3s6cig6sdG9MB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNlx8sYpbOgbKF4CLxwk+p3/hV+sUPrEMG7tofSestriRgVH08x5DO m7h0jm9Kgmjl6q+M/McKdOgOLaWuNm6gd2EJGRorF7d/fNufS/FAEL54ZH5D6gdm 35zxPO2Q+7OztBbcEsftvDawsput0wOHzI5b216kuxXhfUnyDzBjzv60lsaVVAH1 okj9dD2OxbEIdO+XspVDKKA2jEYyEJvR3dgdEBWPU1mdIDa0Vla8Kgg+IdOn8cAn U127BcraIMsVGW0Sg1Ko7lk9QdC8PxKAWfHlEQJhyGTiDNwjUsqBJ8Yhzsmykr9g M6+A/yHIbbyOLgcM4cTMSaiXvxkeYYom -----END CERTIFICATE-----Generated at Sat Aug 23 19:06:39 2025 by rpki-client