$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: VPoSZfx7t5rr55+gKxBsuBxca0DpF9BpvdUJsMZaLak= Subject key identifier: 63:E2:2B:7C:85:75:94:D6:D3:AE:B2:B4:93:73:CE:9D:0C:3F:61:33 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: B1 Signing time: Sat 23 Aug 2025 06:18:27 +0000 Manifest this update: Sat 23 Aug 2025 06:18:26 +0000 Manifest next update: Sat 30 Aug 2025 06:18:26 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: KUm7baYW4LEniLGVCgFRgens4ls4QYQLrWfhqnH4n38=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Aug 23 06:18:26 2025 GMT Not After : Aug 30 06:18:26 2025 GMT Subject: CN=68a95d32-4012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:fe:01:ba:87:e1:f0:51:df:ff:d9:50:00: 9f:c1:42:4e:41:54:39:cb:75:74:1c:88:89:3e:4f: a6:f8:d2:46:6d:6e:4c:64:b2:68:dd:30:90:d7:43: af:de:3f:10:ca:a1:81:71:29:d7:50:f8:39:bc:60: ed:b1:ba:03:08:19:6f:62:d0:cf:c5:cc:d8:d3:39: c7:fa:4b:5f:20:9c:95:e4:57:ab:ab:01:c5:55:de: 82:ac:2f:ce:9f:1c:b2:02:df:02:41:ca:e6:59:a7: fd:d3:d3:60:15:0f:4c:cb:cf:44:90:aa:68:a0:13: c7:63:76:8b:84:0d:b4:62:57:5c:ea:03:b6:4d:04: c4:41:9d:f8:35:10:fa:07:db:db:d1:6a:63:0a:d9: 26:11:81:a7:3c:ef:4e:95:c3:0f:87:b4:d8:a2:07: a6:27:71:63:69:9e:4f:9a:ca:44:38:07:dc:38:2d: 96:e6:89:19:63:3a:64:56:28:57:16:60:54:f0:54: 33:a9:27:82:07:14:93:ca:0d:cb:96:a1:45:8d:76: 42:a1:38:d5:03:0c:3c:1c:ff:92:b0:c5:80:9c:e4: 9c:5d:c5:d5:cd:73:34:d6:a0:b9:c4:dc:58:28:66: 43:39:c9:ad:c4:a8:3a:10:10:28:f2:e5:d8:d2:c9: ae:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E2:2B:7C:85:75:94:D6:D3:AE:B2:B4:93:73:CE:9D:0C:3F:61:33 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:27:10:da:c0:4a:94:3c:e3:53:8f:c0:f7:c1:83:d9:7f:41: 30:ea:07:2f:9c:82:f3:d0:7c:d2:72:0a:3a:b0:a6:d4:11:3b: 7a:44:5c:df:fb:4a:c0:db:e5:5f:e4:17:af:0b:6f:ef:4f:60: 99:3f:b2:a0:33:ad:e8:30:44:e0:b6:d3:71:e0:eb:da:8a:2a: bf:c0:de:88:a8:ba:c7:42:b2:5c:f7:77:4e:06:87:ad:29:6d: ca:86:22:a5:57:c5:cc:81:44:5e:b2:af:82:57:97:a0:ae:af: 18:bd:26:52:6a:10:82:ab:d0:4d:c0:02:46:f9:51:8a:c8:7a: e6:20:54:03:6d:71:52:5c:90:34:c6:43:ad:91:9d:b0:46:f3: f8:9b:7e:82:6c:3f:85:08:bd:99:81:e1:e2:5c:6a:58:09:62: 8a:04:8f:88:db:7f:de:1f:ab:45:30:68:9c:d2:1e:c1:15:8a: 82:8c:b3:c9:49:bf:98:bc:d0:0c:25:16:b9:7d:41:c3:a0:41: 9c:06:81:2c:73:17:1c:66:f2:01:94:1c:87:1f:63:3e:13:1c: ee:d2:d0:5f:e0:0b:bb:cd:a1:f3:a0:6a:d8:49:ce:45:99:95: f9:5d:78:76:4e:5b:44:9d:32:98:db:23:84:24:07:fc:d9:b3: d9:3b:61:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUwODIzMDYxODI2WhcNMjUwODMwMDYxODI2WjAYMRYwFAYD VQQDEw02OGE5NWQzMi00MDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy07+AbqH4fBR3//ZUACfwUJOQVQ5y3V0HIiJPk+m+NJGbW5MZLJo3TCQ10Ov 3j8QyqGBcSnXUPg5vGDtsboDCBlvYtDPxczY0znH+ktfIJyV5FerqwHFVd6CrC/O nxyyAt8CQcrmWaf909NgFQ9My89EkKpooBPHY3aLhA20Yldc6gO2TQTEQZ34NRD6 B9vb0WpjCtkmEYGnPO9OlcMPh7TYogemJ3FjaZ5PmspEOAfcOC2W5okZYzpkVihX FmBU8FQzqSeCBxSTyg3LlqFFjXZCoTjVAww8HP+SsMWAnOScXcXVzXM01qC5xNxY KGZDOcmtxKg6EBAo8uXY0smuZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPiK3yF dZTW066ytJNzzp0MP2EzMB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXJxDawEqUPONTj8D3wYPZf0Ew6gcvnILz0HzScgo6sKbUETt6RFzf +0rA2+Vf5BevC2/vT2CZP7KgM63oMETgttNx4Ovaiiq/wN6IqLrHQrJc93dOBoet KW3KhiKlV8XMgUResq+CV5egrq8YvSZSahCCq9BNwAJG+VGKyHrmIFQDbXFSXJA0 xkOtkZ2wRvP4m36CbD+FCL2ZgeHiXGpYCWKKBI+I23/eH6tFMGic0h7BFYqCjLPJ Sb+YvNAMJRa5fUHDoEGcBoEscxccZvIBlByHH2M+Exzu0tBf4Au7zaHzoGrYSc5F mZX5XXh2TltEnTKY2yOEJAf82bPZO2GH -----END CERTIFICATE-----Generated at Sat Aug 23 23:57:47 2025 by rpki-client