$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: mj6EuS+KLdHbuAJ/Pp2blf6xHfQSBwLKvZHaL+S8CSM= Subject key identifier: DB:20:D7:7E:31:29:EB:89:DD:C5:52:5A:B7:F3:92:CF:9A:C5:2E:4A Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BBA Signing time: Wed 02 Jul 2025 19:10:30 +0000 Manifest this update: Wed 02 Jul 2025 19:10:29 +0000 Manifest next update: Wed 09 Jul 2025 19:10:29 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: WnY1xXRXGzJIBoLqCYxrG0rz0E8vVDyKIdejVV5YU+U=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Jul 2 19:10:29 2025 GMT Not After : Jul 9 19:10:29 2025 GMT Subject: CN=68658426-4c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8c:1a:2d:8e:b0:d7:02:03:0d:d7:a1:bc:ad: 51:09:61:79:6d:fc:bf:41:38:cd:f4:04:74:d6:d2: 50:66:82:92:a1:a6:91:77:e6:a5:f8:7b:f5:de:22: 93:c7:2a:fe:66:b6:47:37:25:95:9c:f6:aa:56:62: 00:5f:99:14:0b:62:4c:40:6e:e4:60:20:43:5d:d4: f0:79:a8:8b:00:10:4a:96:aa:91:db:25:11:3e:8a: 64:f2:52:b0:95:95:a2:36:52:6c:2a:63:67:60:2c: a6:41:92:b1:f9:12:9c:1a:cc:5d:5f:1f:40:6b:95: 2f:ef:c8:1c:4d:82:d2:1a:13:e6:a7:31:34:61:8b: 1d:2d:b4:82:7f:67:c1:d1:f4:82:89:41:15:74:8e: d3:21:5d:46:6b:ed:51:de:84:cb:46:95:c5:b0:12: 0f:77:8b:b0:b4:2e:60:bf:70:de:03:18:0d:40:71: 1a:e8:70:b0:9a:0b:d0:4b:8a:d4:79:31:7c:7d:0a: 5a:b5:76:a0:c2:05:d1:21:7a:24:50:c6:e2:86:d9: 17:53:96:96:79:a6:a4:0b:25:e7:66:2b:ce:fc:da: ae:ea:80:e6:06:b6:8c:58:3e:c4:32:1a:7e:7f:fe: 6c:d4:b6:4b:ad:81:ec:89:47:03:b7:d9:20:10:e4: f9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:20:D7:7E:31:29:EB:89:DD:C5:52:5A:B7:F3:92:CF:9A:C5:2E:4A X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:09:ec:19:46:7d:eb:89:5e:24:c1:b2:7e:18:d3:d6:ba:0e: 22:f6:24:4f:b9:72:f8:9e:9e:5c:6e:fb:62:6f:e1:19:93:68: ed:7e:bc:29:1b:40:22:b5:1b:59:92:1d:38:5a:f2:1c:56:3b: 00:e9:03:fb:56:d2:a0:8e:36:b5:c4:4d:29:2a:55:61:51:23: e7:83:fd:e5:54:40:34:48:2d:fb:c0:aa:a2:c2:89:a5:d6:7b: 03:9a:1d:51:25:e7:bd:57:e7:c7:9b:f2:6c:18:d2:f4:ac:a4: 6f:80:5f:2a:43:19:38:98:ed:9f:ff:d5:c3:3d:ae:5c:e1:e1: 8e:47:7f:0e:be:d0:07:81:0d:1c:60:b8:37:0b:9a:4f:a5:09: c5:0c:8d:27:0f:9a:15:b2:f0:3c:9c:83:25:c2:90:10:08:03: 01:f8:43:c4:d3:3a:fe:3f:47:18:d6:2f:bb:96:f9:ed:68:c2: 60:8a:4f:f5:ab:fe:55:ad:f5:3a:1e:11:82:60:4b:d5:7c:fa: da:84:8d:8c:3f:a3:0e:8a:a1:7a:39:d8:b6:10:7e:86:b3:b8: f4:22:97:f3:09:8c:c9:da:1a:b3:1f:8a:69:27:72:29:8e:03: e1:42:ca:a0:7d:11:ac:c7:a0:1d:f1:19:6b:df:ef:55:f3:aa: 48:d5:99:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwNzAyMTkxMDI5WhcNMjUwNzA5MTkxMDI5WjAYMRYwFAYD VQQDEw02ODY1ODQyNi00Yzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1owaLY6w1wIDDdehvK1RCWF5bfy/QTjN9AR01tJQZoKSoaaRd+al+Hv13iKT xyr+ZrZHNyWVnPaqVmIAX5kUC2JMQG7kYCBDXdTweaiLABBKlqqR2yURPopk8lKw lZWiNlJsKmNnYCymQZKx+RKcGsxdXx9Aa5Uv78gcTYLSGhPmpzE0YYsdLbSCf2fB 0fSCiUEVdI7TIV1Ga+1R3oTLRpXFsBIPd4uwtC5gv3DeAxgNQHEa6HCwmgvQS4rU eTF8fQpatXagwgXRIXokUMbihtkXU5aWeaakCyXnZivO/Nqu6oDmBraMWD7EMhp+ f/5s1LZLrYHsiUcDt9kgEOT5nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsg134x KeuJ3cVSWrfzks+axS5KMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvCewZRn3riV4kwbJ+GNPWug4i9iRPuXL4np5cbvtib+EZk2jtfrwp G0AitRtZkh04WvIcVjsA6QP7VtKgjja1xE0pKlVhUSPng/3lVEA0SC37wKqiwoml 1nsDmh1RJee9V+fHm/JsGNL0rKRvgF8qQxk4mO2f/9XDPa5c4eGOR38OvtAHgQ0c YLg3C5pPpQnFDI0nD5oVsvA8nIMlwpAQCAMB+EPE0zr+P0cY1i+7lvntaMJgik/1 q/5VrfU6HhGCYEvVfPrahI2MP6MOiqF6Odi2EH6Gs7j0IpfzCYzJ2hqzH4ppJ3Ip jgPhQsqgfRGsx6Ad8Rlr3+9V86pI1Znr -----END CERTIFICATE-----Generated at Fri Jul 4 14:18:13 2025 by rpki-client