$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft File: H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft (raw, json) Hash identifier: 98Ii3X6V0d3pyYoCF70z7xqI8pBLFG/bASJUqoXgn2E= Subject key identifier: A6:7F:F6:75:FE:43:5F:D5:73:98:79:3C:9B:CE:BC:1F:9F:CC:98:6B Authority key identifier: 1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 Certificate issuer: /CN=A91C3ED8/serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft Manifest number: 01FE Signing time: Sat 23 Aug 2025 02:30:38 +0000 Manifest this update: Sat 23 Aug 2025 02:30:37 +0000 Manifest next update: Sat 30 Aug 2025 02:30:37 +0000 Files and hashes: 1: H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl (hash: tz1RDQgu8jWHzsXEU87AAkZyPK796YQ7ldYm1IHEquQ=) 2: 51CC97DE72D711ED95179B5EC4F9AE02.roa (hash: k1Zwpv5X+PU26A87kFtIjFMNyUjqNWGBGW/MolkeBNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ED8, serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Validity Not Before: Aug 23 02:30:37 2025 GMT Not After : Aug 30 02:30:37 2025 GMT Subject: CN=68a927cd-5f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3d:9d:91:f4:c5:3f:a0:a0:44:70:c0:45:d9: 86:24:88:2f:07:c2:05:09:7b:0e:91:95:ab:52:fa: c0:2f:d4:72:e2:49:21:a2:cc:0e:b4:ba:d6:05:9f: 61:af:6b:48:28:5a:5d:c2:06:17:9f:01:52:f5:18: d2:2f:b2:7f:a9:23:d3:ad:2e:09:3d:4b:c2:46:ca: 53:3a:66:d7:cc:70:91:b0:55:b9:ad:9f:e2:84:b5: 8e:b9:1e:26:27:64:9d:9c:37:bb:da:9e:b0:c6:d9: 2c:7e:ef:b7:ad:a0:0f:a8:0e:7c:18:49:5c:99:98: 0e:d2:6b:e3:59:b8:eb:f3:e7:55:33:f3:3a:42:17: e8:a7:11:e0:35:bf:77:0d:5a:85:da:ba:ce:88:55: 3d:98:03:72:04:d2:c4:b6:62:ce:8b:8a:34:ca:6e: e4:85:a3:38:b9:02:89:68:94:fd:1d:80:43:03:29: fd:a2:c8:b4:0f:10:99:61:e4:d7:76:31:a5:fd:7f: aa:52:02:b0:36:66:be:80:84:e7:b4:b1:e5:47:21: 8b:7a:ed:39:e6:fd:19:90:84:e6:80:47:64:7a:5d: c1:ff:2b:9a:71:ee:17:4a:4c:4a:c3:48:28:a9:7f: 3a:b1:30:30:94:35:a5:30:0e:0b:eb:09:aa:01:00: cf:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7F:F6:75:FE:43:5F:D5:73:98:79:3C:9B:CE:BC:1F:9F:CC:98:6B X509v3 Authority Key Identifier: keyid:1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b3:5c:e8:18:28:e4:89:1d:e6:e1:67:d7:c1:02:f7:45:98: 18:7b:4b:45:ac:f0:ee:91:f9:5b:28:20:5c:42:8a:ca:3f:4f: b2:16:14:66:cb:b1:25:53:f1:08:eb:b7:5e:d6:db:9f:ad:0e: a9:08:9d:25:f3:a3:33:8d:cc:5b:ea:4b:73:c0:d6:a6:d0:ae: ef:36:63:9b:63:0c:89:77:73:90:b6:a1:49:e9:4f:9f:78:59: 7b:e3:d0:5c:52:07:2a:29:79:a1:0b:e9:90:3a:fc:23:7d:1e: 21:6d:c2:8e:83:36:d5:bf:d2:b6:6f:83:87:32:f7:00:71:c6: 0a:8b:9d:4e:85:85:59:dd:e6:38:bc:ec:4d:1d:b1:7d:f5:d5: 5d:8a:2c:d9:84:ef:4f:58:66:0a:35:b4:35:63:15:ba:62:77: a3:15:58:eb:72:3a:c3:a5:46:c8:75:47:41:d7:ec:09:08:68: 12:dd:68:61:a0:13:ad:e4:20:15:df:9a:1c:b5:61:cb:a2:3e: 99:19:e7:4e:14:74:08:e4:09:68:ae:f7:31:8e:65:a9:6e:08: 18:9e:d4:c8:d8:18:8a:01:a0:50:36:58:0c:3b:b9:b7:4a:40: 71:80:7a:c7:97:53:31:c2:ee:35:19:e6:ee:e9:22:fd:e7:85: 92:98:75:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFRDgxMTAvBgNVBAUTKDFGREY4OEIzNTlGNDQ4RUQ0QzcxMkY5RjE1N0QwODND QzIxMTRDMTQwHhcNMjUwODIzMDIzMDM3WhcNMjUwODMwMDIzMDM3WjAYMRYwFAYD VQQDEw02OGE5MjdjZC01ZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T2dkfTFP6CgRHDARdmGJIgvB8IFCXsOkZWrUvrAL9Ry4kkhoswOtLrWBZ9h r2tIKFpdwgYXnwFS9RjSL7J/qSPTrS4JPUvCRspTOmbXzHCRsFW5rZ/ihLWOuR4m J2SdnDe72p6wxtksfu+3raAPqA58GElcmZgO0mvjWbjr8+dVM/M6QhfopxHgNb93 DVqF2rrOiFU9mANyBNLEtmLOi4o0ym7khaM4uQKJaJT9HYBDAyn9osi0DxCZYeTX djGl/X+qUgKwNma+gITntLHlRyGLeu055v0ZkITmgEdkel3B/yuace4XSkxKw0go qX86sTAwlDWlMA4L6wmqAQDPYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZ/9nX+ Q1/Vc5h5PJvOvB+fzJhrMB8GA1UdIwQYMBaAFB/fiLNZ9EjtTHEvnxV9CDzCEUwU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0VEOC8zQzU1MzNBRTcy RDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNPMU1jUy1mRlgwSVBNSVJU QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5LUlzMW4wU08xTWNTLWZGWDBJUE1JUlRCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0VEOC8zQzU1MzNBRTcyRDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNP MU1jUy1mRlgwSVBNSVJUQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOs1zoGCjkiR3m4WfXwQL3RZgYe0tFrPDukflbKCBcQorKP0+yFhRm y7ElU/EI67de1tufrQ6pCJ0l86Mzjcxb6ktzwNam0K7vNmObYwyJd3OQtqFJ6U+f eFl749BcUgcqKXmhC+mQOvwjfR4hbcKOgzbVv9K2b4OHMvcAccYKi51OhYVZ3eY4 vOxNHbF99dVdiizZhO9PWGYKNbQ1YxW6YnejFVjrcjrDpUbIdUdB1+wJCGgS3Whh oBOt5CAV35octWHLoj6ZGedOFHQI5AlorvcxjmWpbggYntTI2BiKAaBQNlgMO7m3 SkBxgHrHl1Mxwu41Gebu6SL954WSmHUA -----END CERTIFICATE-----Generated at Sat Aug 23 16:31:21 2025 by rpki-client