$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: DBSON8SrAPuUa+mx4f0PmfVNCKyBFl0Hcr9Xhz3JnHE= Subject key identifier: 7E:FB:13:C1:4D:FF:92:7D:93:4C:DC:0F:58:97:88:75:30:18:48:20 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 019D Signing time: Thu 03 Jul 2025 03:37:06 +0000 Manifest this update: Thu 03 Jul 2025 03:37:06 +0000 Manifest next update: Thu 10 Jul 2025 03:37:06 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: wCIG0Iy6qfD3l+pvieOmuAngGnZSaAPGKk1kSSpOMfE=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Jul 3 03:37:06 2025 GMT Not After : Jul 10 03:37:06 2025 GMT Subject: CN=6865fae2-9b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:94:c3:3c:77:ff:5c:af:42:e9:39:ea:7e:62: 74:69:fa:76:1e:c2:c6:76:28:22:c2:67:f7:d5:1b: fe:62:c4:cf:3f:77:90:3d:04:2b:41:81:65:98:9f: 08:5d:6c:b5:64:86:7d:55:9c:62:29:1d:df:87:da: b8:4c:bb:0b:b3:86:0a:49:9e:28:a9:26:fe:35:81: 0a:76:e1:f6:d8:45:fd:bc:db:35:9b:f4:ad:86:a1: e7:11:46:49:bd:92:a6:ea:06:b6:39:9f:33:4e:c9: 96:6d:da:94:32:8a:fd:e8:4a:e3:c3:ea:ab:84:26: 0c:85:5f:ed:c9:fd:59:f0:84:ab:82:3c:83:5a:c8: 7a:b4:19:19:c2:ed:db:09:3d:df:6c:c5:76:a5:c1: d7:95:d6:2f:0a:a1:b0:fa:b6:bd:9f:06:59:6d:13: 4d:21:c0:9a:1b:5b:6c:03:cd:1b:4d:02:2e:6c:d1: eb:78:9c:ce:67:6e:3b:2a:db:f4:27:5e:43:6e:01: 80:a9:ca:4e:e3:3f:fd:9a:33:72:53:0e:aa:8e:48: 8e:ef:d3:dd:3e:69:92:95:38:fb:21:9f:c4:ca:8c: 4e:a4:d6:f8:f8:c6:ee:b4:c5:55:2e:90:23:32:4f: 67:aa:72:12:b8:e2:80:b8:70:75:b5:62:b1:b0:07: 11:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FB:13:C1:4D:FF:92:7D:93:4C:DC:0F:58:97:88:75:30:18:48:20 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:3d:d4:57:d6:74:6b:eb:1d:41:e6:23:af:9e:43:35:3f:55: 7b:8d:98:59:41:15:24:b4:7c:a5:77:3d:74:ab:b3:a1:36:bf: b0:b0:3a:85:68:69:ad:7d:82:79:be:f0:ad:cc:5c:5e:f7:e4: 1f:10:e2:f6:6e:4e:89:8c:66:6c:df:cf:83:01:e4:e8:b7:6d: 81:10:f6:9a:11:a4:5a:b4:b2:39:37:f2:f8:20:73:96:ef:15: 84:2d:a4:49:5a:dd:6c:8f:19:58:01:30:87:28:c1:e2:d8:c1: f1:ca:3c:2e:c6:3d:36:48:fc:7a:b2:e0:f0:5c:78:cd:d9:ea: 56:6b:93:41:5b:e0:91:23:6b:49:5a:e5:8e:ff:ea:1c:86:24: 14:6f:e6:f1:32:18:b2:0f:33:57:4f:39:39:43:01:e6:82:50: 74:50:21:e0:94:ed:f3:8e:9c:1d:3e:e0:f1:18:33:ed:ef:dc: 72:e0:ae:45:92:46:6b:97:6f:d0:1d:e4:81:72:f1:2b:ba:4f: 1a:b7:12:9a:fa:51:76:94:e4:fa:f7:0f:92:33:ba:d2:c0:34: c7:6c:db:36:4b:57:84:5c:ba:51:08:85:c0:3d:d3:56:85:ca: 52:6b:80:de:0b:93:61:58:d1:e8:ad:db:52:80:50:fe:24:c1: 92:3e:a6:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwNzAzMDMzNzA2WhcNMjUwNzEwMDMzNzA2WjAYMRYwFAYD VQQDEw02ODY1ZmFlMi05YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pTDPHf/XK9C6TnqfmJ0afp2HsLGdigiwmf31Rv+YsTPP3eQPQQrQYFlmJ8I XWy1ZIZ9VZxiKR3fh9q4TLsLs4YKSZ4oqSb+NYEKduH22EX9vNs1m/SthqHnEUZJ vZKm6ga2OZ8zTsmWbdqUMor96Erjw+qrhCYMhV/tyf1Z8ISrgjyDWsh6tBkZwu3b CT3fbMV2pcHXldYvCqGw+ra9nwZZbRNNIcCaG1tsA80bTQIubNHreJzOZ247Ktv0 J15DbgGAqcpO4z/9mjNyUw6qjkiO79PdPmmSlTj7IZ/EyoxOpNb4+MbutMVVLpAj Mk9nqnISuOKAuHB1tWKxsAcRQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH77E8FN /5J9k0zcD1iXiHUwGEggMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACPdRX1nRr6x1B5iOvnkM1P1V7jZhZQRUktHyldz10q7OhNr+wsDqF aGmtfYJ5vvCtzFxe9+QfEOL2bk6JjGZs38+DAeTot22BEPaaEaRatLI5N/L4IHOW 7xWELaRJWt1sjxlYATCHKMHi2MHxyjwuxj02SPx6suDwXHjN2epWa5NBW+CRI2tJ WuWO/+ochiQUb+bxMhiyDzNXTzk5QwHmglB0UCHglO3zjpwdPuDxGDPt79xy4K5F kkZrl2/QHeSBcvEruk8atxKa+lF2lOT69w+SM7rSwDTHbNs2S1eEXLpRCIXAPdNW hcpSa4DeC5NhWNHordtSgFD+JMGSPqb/ -----END CERTIFICATE-----Generated at Thu Jul 3 07:58:42 2025 by rpki-client