$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: cDBZQnX6T2ocB6gVTfc2nxY3gi/XCbxPhwPmEAEJxjU= Subject key identifier: 28:87:B6:3E:50:80:40:BD:E9:D9:31:86:AD:A9:DC:74:7F:F3:E8:95 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 01B7 Signing time: Sat 23 Aug 2025 03:22:06 +0000 Manifest this update: Sat 23 Aug 2025 03:22:05 +0000 Manifest next update: Sat 30 Aug 2025 03:22:05 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: IP3UhcSr/rLwQlcSyZ89Iae/9tDMzKg9fkTypESG1HA=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Aug 23 03:22:05 2025 GMT Not After : Aug 30 03:22:05 2025 GMT Subject: CN=68a933dd-30bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:e7:e6:ed:14:20:42:d2:c7:3b:96:a5:02: a1:a9:84:5c:e0:b8:ad:e3:96:99:13:5a:8d:d6:f3: 0d:af:0e:58:f4:ec:fa:eb:60:ea:3f:ad:11:f2:a0: f5:d4:52:ba:59:92:4c:e7:2e:a7:61:b6:7b:5e:c4: a3:2c:6f:2f:bf:c8:03:14:8e:2f:51:da:08:8a:4d: 7e:bd:24:68:9a:9f:9f:f6:41:6f:00:ba:30:9a:fd: b7:0d:ee:29:c7:53:05:f3:1e:40:ea:b8:16:89:d2: 3d:52:0f:a7:82:f1:fd:5f:1b:5a:c8:7b:e3:5c:bc: 09:d5:f9:53:6f:e8:15:82:ca:75:37:b2:3c:ba:e7: f7:54:e0:dd:4c:ab:33:0a:e8:4b:8f:de:60:f8:0c: dc:61:62:98:e0:1c:d2:e3:ef:17:2e:34:7b:1c:22: bd:55:a6:f1:50:72:79:47:f4:b1:fe:06:26:78:7e: b5:e9:54:09:f1:4e:6f:c3:87:fe:68:1e:0f:c4:f3: d7:65:75:9b:05:f1:37:8c:e1:0f:2d:92:36:fe:6b: 3a:e2:c7:d9:c1:24:3d:d4:99:7e:39:60:ee:4a:84: 50:02:c6:84:a3:73:46:09:95:63:a6:c3:1e:f2:95: 78:56:7c:6c:7e:23:16:bf:e5:65:49:16:d8:69:bd: af:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:87:B6:3E:50:80:40:BD:E9:D9:31:86:AD:A9:DC:74:7F:F3:E8:95 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:56:8d:40:12:da:06:a3:88:c6:b5:6d:16:1d:af:de:7e:93: 86:93:f0:e8:34:eb:d4:09:d7:2f:6b:56:51:e7:4e:b4:c9:0d: a2:a5:24:69:e9:a4:14:00:6d:17:3c:4c:a8:ea:f4:ec:b9:fe: d9:92:05:5f:d8:91:da:91:08:48:99:b2:7d:ee:32:d5:85:94: d3:93:2e:6f:05:c4:7f:b0:b6:78:df:b9:2e:df:74:a0:8c:26: e0:ef:5a:3e:87:72:c7:1f:af:c9:a5:bd:a8:40:0d:2c:ec:e4: 03:e0:5f:93:95:f1:d9:28:1c:10:a9:24:7e:45:e5:74:22:7c: 84:2b:a1:05:ef:e9:b9:7a:5c:a6:bd:34:09:4e:10:25:27:3a: 69:91:03:22:79:2a:ec:ec:90:95:a8:36:b1:43:94:d9:8a:e0: e6:6e:3e:b4:37:d9:fd:6d:6d:3e:dd:6e:3d:e6:2b:a9:57:24: 13:90:2d:f4:c6:6f:3d:1e:a5:b8:a0:26:26:45:41:1e:77:07: 8a:f8:13:50:e6:ab:09:04:5b:39:f7:b8:9a:e8:26:57:e9:53: e4:b7:c4:e0:6a:65:dd:56:bf:a5:ab:95:7f:48:fb:4e:5c:d8: 5d:99:5d:e3:a0:e6:a0:80:55:1d:73:db:e3:33:c3:ac:22:35: 1a:a4:a8:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwODIzMDMyMjA1WhcNMjUwODMwMDMyMjA1WjAYMRYwFAYD VQQDEw02OGE5MzNkZC0zMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHLn5u0UIELSxzuWpQKhqYRc4Lit45aZE1qN1vMNrw5Y9Oz662DqP60R8qD1 1FK6WZJM5y6nYbZ7XsSjLG8vv8gDFI4vUdoIik1+vSRomp+f9kFvALowmv23De4p x1MF8x5A6rgWidI9Ug+ngvH9XxtayHvjXLwJ1flTb+gVgsp1N7I8uuf3VODdTKsz CuhLj95g+AzcYWKY4BzS4+8XLjR7HCK9VabxUHJ5R/Sx/gYmeH616VQJ8U5vw4f+ aB4PxPPXZXWbBfE3jOEPLZI2/ms64sfZwSQ91Jl+OWDuSoRQAsaEo3NGCZVjpsMe 8pV4VnxsfiMWv+VlSRbYab2vWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiHtj5Q gEC96dkxhq2p3HR/8+iVMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUVo1AEtoGo4jGtW0WHa/efpOGk/DoNOvUCdcva1ZR5060yQ2ipSRp 6aQUAG0XPEyo6vTsuf7ZkgVf2JHakQhImbJ97jLVhZTTky5vBcR/sLZ437ku33Sg jCbg71o+h3LHH6/Jpb2oQA0s7OQD4F+TlfHZKBwQqSR+ReV0InyEK6EF7+m5elym vTQJThAlJzppkQMieSrs7JCVqDaxQ5TZiuDmbj60N9n9bW0+3W495iupVyQTkC30 xm89HqW4oCYmRUEedweK+BNQ5qsJBFs597ia6CZX6VPkt8TgamXdVr+lq5V/SPtO XNhdmV3joOaggFUdc9vjM8OsIjUapKjI -----END CERTIFICATE-----Generated at Sun Aug 24 00:08:59 2025 by rpki-client