$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: J9y/r7469zdfNbnE0dm4/LjVyLhyzLgjq8kUyyBFbNQ= Subject key identifier: CD:E6:4F:57:5A:F1:8E:1F:E0:8B:5C:3F:92:9D:47:BC:7F:8D:61:40 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: FD Signing time: Sat 23 Aug 2025 05:19:27 +0000 Manifest this update: Sat 23 Aug 2025 05:19:26 +0000 Manifest next update: Sat 30 Aug 2025 05:19:26 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: NnShLmt6oopZsairJ2jMlxP/HQEfYAQw83vAzZyWzcQ=) 2: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: eAATcw+wwIntluEWHwykA3g4lnWZ04SXuQGRkoYM9h4=) 3: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: kIIwTAeW+pDEZ3yhH1JwOUrEmJAAi9ldowt4J7C/CXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Aug 23 05:19:26 2025 GMT Not After : Aug 30 05:19:26 2025 GMT Subject: CN=68a94f5f-ca3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:18:c5:bb:e5:96:43:53:66:b4:f7:0b:07: e6:a1:91:af:ab:0a:f9:48:63:f5:b7:e4:75:8d:b4: dc:8c:a7:79:95:ea:ab:19:3f:08:43:8e:db:93:da: f5:61:e1:d8:3d:4b:9a:64:4a:ca:bd:c1:7b:c7:b5: f1:3f:5f:3c:32:59:22:c6:62:15:d7:45:af:ea:96: 8e:25:ed:44:dd:4e:f5:5e:30:c8:e3:8a:cf:1f:3a: 72:46:85:85:86:0d:b9:c1:dc:32:28:af:00:a6:42: b3:69:ba:7a:70:1c:be:44:b8:ff:c5:57:cf:a9:26: 55:e3:ac:9f:45:d4:d7:23:73:0e:62:82:73:71:1f: e8:1b:1d:0f:1e:39:11:ac:5e:37:eb:5f:f7:15:66: a1:de:6f:62:27:5d:9f:cb:e9:93:dd:a6:47:7d:8a: 09:47:5e:ba:ab:93:63:a0:96:1b:b9:a5:68:8a:28: 9a:42:9b:35:7b:e3:3e:fe:13:0e:f1:61:c7:81:1e: 9f:49:b6:c4:97:56:76:03:94:c7:63:8d:64:86:31: b0:89:0b:2e:ed:fe:20:22:7e:38:8c:39:c1:ad:71: 90:b7:a4:d1:ed:48:d3:2c:ad:03:29:36:0e:21:96: 9e:57:ef:a1:c5:0d:f9:e9:90:7c:f0:1d:1a:15:50: f6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E6:4F:57:5A:F1:8E:1F:E0:8B:5C:3F:92:9D:47:BC:7F:8D:61:40 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:6d:7d:16:5c:ad:aa:4c:86:8c:30:dc:de:03:e7:5e:b2:51: 70:8a:ea:0d:cc:5c:d6:b2:2c:1e:5e:71:26:70:3c:85:77:c0: ff:6e:3d:2d:46:ea:e3:36:60:01:65:09:d3:f4:ce:16:9d:16: 0a:79:48:36:1a:4d:d2:86:f8:96:b8:b7:c4:89:8f:79:ff:44: f0:6e:b0:65:72:9c:4f:a2:78:1b:c1:4d:7d:3b:10:6f:27:13: 0e:04:7f:8e:e3:6e:0d:db:99:05:95:8d:69:6d:df:e3:72:81: df:a5:97:92:e5:3f:b3:7a:a0:e3:70:f4:e3:de:09:9e:d4:c6: e6:55:ac:82:af:f6:b2:4a:bb:51:d8:4f:4c:88:57:ff:35:f5: c9:c8:e0:bd:e8:89:f9:03:2c:24:4a:f5:a2:d3:7d:00:2e:fb: be:c3:a3:6c:48:56:4c:5c:d1:5a:61:b2:73:9a:97:5e:03:4d: 22:21:cc:5e:fc:db:49:16:01:d0:4d:e9:c5:79:9f:03:23:10: b3:2e:7c:83:a5:ec:43:0d:ed:51:52:a4:ba:c3:83:1a:c4:bd: 41:6b:2b:e5:1d:81:97:86:b3:07:84:a0:a1:2f:6e:2e:1b:3d: ed:64:c4:6d:e9:1f:c3:0c:29:b2:4b:d2:93:a5:03:aa:ea:87: d8:5e:ea:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwODIzMDUxOTI2WhcNMjUwODMwMDUxOTI2WjAYMRYwFAYD VQQDEw02OGE5NGY1Zi1jYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEYYxbvllkNTZrT3CwfmoZGvqwr5SGP1t+R1jbTcjKd5leqrGT8IQ47bk9r1 YeHYPUuaZErKvcF7x7XxP188MlkixmIV10Wv6paOJe1E3U71XjDI44rPHzpyRoWF hg25wdwyKK8ApkKzabp6cBy+RLj/xVfPqSZV46yfRdTXI3MOYoJzcR/oGx0PHjkR rF4361/3FWah3m9iJ12fy+mT3aZHfYoJR166q5NjoJYbuaVoiiiaQps1e+M+/hMO 8WHHgR6fSbbEl1Z2A5THY41khjGwiQsu7f4gIn44jDnBrXGQt6TR7UjTLK0DKTYO IZaeV++hxQ356ZB88B0aFVD25QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3mT1da 8Y4f4ItcP5KdR7x/jWFAMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCbX0WXK2qTIaMMNzeA+deslFwiuoNzFzWsiweXnEmcDyFd8D/bj0t RurjNmABZQnT9M4WnRYKeUg2Gk3ShviWuLfEiY95/0TwbrBlcpxPongbwU19OxBv JxMOBH+O424N25kFlY1pbd/jcoHfpZeS5T+zeqDjcPTj3gme1MbmVayCr/aySrtR 2E9MiFf/NfXJyOC96In5AywkSvWi030ALvu+w6NsSFZMXNFaYbJzmpdeA00iIcxe /NtJFgHQTenFeZ8DIxCzLnyDpexDDe1RUqS6w4MaxL1BayvlHYGXhrMHhKChL24u Gz3tZMRt6R/DDCmyS9KTpQOq6ofYXuq1 -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:27 2025 by rpki-client