$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: Hhc02seFUe4mtXt+FEjC5cLrxgucQMOuvc61wmThmTA= Subject key identifier: 12:E3:4B:2D:A3:F3:DD:97:F5:38:31:FE:53:03:71:EA:48:AE:A2:07 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 02EB Signing time: Sat 23 Aug 2025 01:32:49 +0000 Manifest this update: Sat 23 Aug 2025 01:32:49 +0000 Manifest next update: Sat 30 Aug 2025 01:32:49 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: OhwXRI/U+rCukql+53tgKZk4kd91sfhxdwf5K7WVpGE=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: rCIHZh9wUruVRZk/2Wl+iO0bQmypaGymRp+P5pHJgrc=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: WLqs4EYDGZGhgsTcvZkB1qzpm9zeqwQq3iz4UzKMW3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Aug 23 01:32:49 2025 GMT Not After : Aug 30 01:32:49 2025 GMT Subject: CN=68a91a41-1f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:97:9a:cc:ac:c6:68:42:c2:55:3c:34:94:91: f1:37:32:08:dd:56:f6:e1:04:06:ba:8d:9a:5d:ed: c3:af:2f:b6:11:c8:b1:43:d7:27:90:f3:64:d1:24: ca:dc:2c:fb:42:43:89:7e:54:d0:70:31:fb:9a:ac: ac:07:c7:af:a4:e6:a9:d4:de:8a:54:1e:77:b1:18: 7f:85:3d:4a:dd:2f:83:e6:6f:2e:2f:fe:e6:04:b5: 22:d0:0e:63:82:0d:7f:aa:a7:c6:29:6c:69:af:6c: 88:fe:07:05:eb:df:09:02:3e:4a:54:6d:10:79:db: c6:8a:b6:a1:db:97:3e:bf:fd:72:d1:be:ae:9f:71: c2:21:ed:14:2c:e1:46:7a:a3:61:ac:a0:c1:97:1b: c1:1b:be:48:7f:8d:3e:46:43:e5:9d:4d:62:f1:f3: 48:91:91:98:50:61:be:ce:e0:3d:b9:a0:ff:67:17: d9:ed:b2:f9:76:57:ab:ff:31:e9:55:fc:14:10:c4: 9a:ec:a5:01:73:b1:4f:d9:1a:96:de:10:ff:27:15: 26:9d:d4:f2:20:54:b6:d7:87:10:79:c0:64:9b:d0: 1f:e9:7b:8c:fa:fe:26:f2:60:ee:d9:86:e7:b6:4d: 31:3d:90:a0:76:8d:29:c3:06:25:76:b7:da:b1:c7: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E3:4B:2D:A3:F3:DD:97:F5:38:31:FE:53:03:71:EA:48:AE:A2:07 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:68:b4:d0:ca:78:d7:3b:e8:32:df:6e:5f:02:f8:a5:f4:48: 14:b4:ac:bd:74:16:f8:14:52:53:2c:a1:09:02:bd:df:41:46: 89:c2:31:d6:42:1a:36:45:63:d5:ce:ba:56:b2:ff:7e:68:28: ca:ba:13:6b:6c:fc:ce:e3:cd:e0:8e:20:32:bb:12:81:be:71: bb:02:b8:6d:ab:10:cc:39:57:4a:b9:a5:97:26:8d:55:20:0a: 3c:32:38:76:bd:f6:2f:8e:9e:98:ee:0a:9a:12:fd:73:eb:cc: 0f:45:a4:66:67:50:b0:80:ff:0e:ab:b0:93:c5:67:3c:9d:d7: e4:c6:5a:fa:f6:bf:22:13:7a:92:76:a6:d0:06:cd:d4:1b:26: 82:62:62:53:48:ba:c9:47:fe:ec:9f:38:ac:bf:04:a3:10:3b: fe:bb:28:8b:b1:38:65:12:67:e4:df:cf:ba:d9:f4:52:93:f3: 9f:4d:a4:1a:b1:53:38:53:f4:91:34:fc:81:0a:62:e8:b7:1a: 87:b8:26:18:ee:36:54:f7:4b:02:cf:7e:38:c9:e2:de:ae:c3: 81:67:8e:e9:6b:5b:10:91:ce:35:49:ed:80:91:31:bd:fd:eb: ce:fc:d7:46:44:d2:44:dd:72:62:52:7b:bb:09:1e:d0:36:e4: 61:d6:a8:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUwODIzMDEzMjQ5WhcNMjUwODMwMDEzMjQ5WjAYMRYwFAYD VQQDEw02OGE5MWE0MS0xZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JeazKzGaELCVTw0lJHxNzII3Vb24QQGuo2aXe3Dry+2EcixQ9cnkPNk0STK 3Cz7QkOJflTQcDH7mqysB8evpOap1N6KVB53sRh/hT1K3S+D5m8uL/7mBLUi0A5j gg1/qqfGKWxpr2yI/gcF698JAj5KVG0QedvGirah25c+v/1y0b6un3HCIe0ULOFG eqNhrKDBlxvBG75If40+RkPlnU1i8fNIkZGYUGG+zuA9uaD/ZxfZ7bL5dler/zHp VfwUEMSa7KUBc7FP2RqW3hD/JxUmndTyIFS214cQecBkm9Af6XuM+v4m8mDu2Ybn tk0xPZCgdo0pwwYldrfascd4WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLjSy2j 892X9Tgx/lMDcepIrqIHMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByaLTQynjXO+gy325fAvil9EgUtKy9dBb4FFJTLKEJAr3fQUaJwjHW Qho2RWPVzrpWsv9+aCjKuhNrbPzO483gjiAyuxKBvnG7ArhtqxDMOVdKuaWXJo1V IAo8Mjh2vfYvjp6Y7gqaEv1z68wPRaRmZ1CwgP8Oq7CTxWc8ndfkxlr69r8iE3qS dqbQBs3UGyaCYmJTSLrJR/7snzisvwSjEDv+uyiLsThlEmfk38+62fRSk/OfTaQa sVM4U/SRNPyBCmLotxqHuCYY7jZU90sCz344yeLersOBZ47pa1sQkc41Se2AkTG9 /evO/NdGRNJE3XJiUnu7CR7QNuRh1qi4 -----END CERTIFICATE-----Generated at Sun Aug 24 00:07:17 2025 by rpki-client