$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: PBz7pbt6hgP4FvpvGqbfX8ywZ0tKSQkM6tOoGD8oAYM= Subject key identifier: 21:D8:EF:F4:49:5B:49:D5:88:74:8B:BA:3A:9E:DA:C1:9E:80:E5:3E Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: E3 Signing time: Thu 03 Jul 2025 05:39:26 +0000 Manifest this update: Thu 03 Jul 2025 05:39:25 +0000 Manifest next update: Thu 10 Jul 2025 05:39:25 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: GyMuPElMsk4W4sgbGUWNz6RBmrGTgWezxzFzF6PPPSM=) 2: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: eAATcw+wwIntluEWHwykA3g4lnWZ04SXuQGRkoYM9h4=) 3: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: kIIwTAeW+pDEZ3yhH1JwOUrEmJAAi9ldowt4J7C/CXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Jul 3 05:39:25 2025 GMT Not After : Jul 10 05:39:25 2025 GMT Subject: CN=6866178e-1b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:f2:b8:92:91:99:a1:08:c5:d6:9b:44:e9: 69:bd:be:57:e0:f6:a4:06:e5:6d:50:1c:ed:79:22: f9:e5:d5:36:0d:e3:6f:39:1c:89:34:23:3c:6e:6c: 46:01:20:69:c5:fa:6b:46:82:9d:29:71:cf:84:0e: 71:42:9b:ce:27:bc:02:49:ae:5c:de:78:09:5e:6f: 3a:00:0d:1f:87:1f:9e:b0:c4:2e:23:e8:d3:21:4b: db:eb:a7:e6:dd:1b:fb:43:13:71:ce:c4:d4:98:aa: b3:d1:16:61:1e:99:81:6d:8b:e3:64:68:55:bc:9c: b3:11:46:cf:8b:c8:f3:cf:fa:b4:73:c1:18:cb:b6: 50:28:24:ed:70:2e:55:c3:d9:2d:dd:00:c8:f7:64: c9:fe:63:fe:55:3d:a6:17:2e:75:d6:4b:1b:d7:60: fe:1a:13:4b:27:b5:0c:1f:2f:77:b0:0e:2d:b1:35: 4f:cc:74:94:6c:ce:55:14:4a:d0:b6:19:84:a8:37: bf:f3:a5:1d:ac:db:2c:1d:b3:74:d3:ce:38:71:a5: 6b:1e:c4:39:3f:d6:46:5a:82:cf:77:59:b2:56:b7: 81:d1:47:9a:5e:16:f7:81:e6:03:b9:c0:f2:6f:1c: 2f:a3:05:a0:f0:5a:7f:4b:19:8c:89:bb:36:2b:0d: c6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D8:EF:F4:49:5B:49:D5:88:74:8B:BA:3A:9E:DA:C1:9E:80:E5:3E X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e6:ce:00:cb:71:2d:cc:ad:a2:7f:66:fe:54:73:eb:70:aa: 81:c8:35:dc:f4:96:3c:d2:77:4c:2f:5e:3b:7b:59:9e:e3:af: cb:25:55:0a:7d:e9:f1:97:90:51:7f:8b:22:e9:d4:3d:93:10: e5:6e:5b:40:de:3c:d1:aa:00:37:c8:24:d9:8c:dd:af:e7:b2: 13:d3:66:82:cc:0e:30:ac:b1:37:bf:00:f1:d0:bc:b3:13:03: 18:50:a8:e8:cd:57:37:93:7a:67:f5:9e:cc:cb:aa:4b:6e:6f: 1e:89:fd:33:41:98:48:07:fc:73:66:7e:c2:5e:97:f1:a3:be: d3:e1:0a:8b:c3:88:a2:dd:6d:71:91:63:9e:30:d8:26:c5:22: 95:26:b6:72:74:d2:fb:c3:98:11:26:78:f6:cd:de:7b:7a:b0: 57:7c:e8:82:0b:bf:97:73:15:58:9f:59:de:e2:96:64:70:c1: f2:e2:8f:5e:64:36:31:33:41:c1:ba:8b:dd:19:30:c4:3f:bd: 17:be:91:85:83:14:fd:e2:ee:8b:ad:7d:c0:97:5d:09:4b:55: 13:2c:6d:d6:f9:ca:ae:dc:1b:14:68:99:7e:ff:30:89:41:26: 5a:96:60:37:a8:d8:a9:88:a0:2c:cb:1c:89:9d:ae:70:80:af: 87:6a:5b:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwNzAzMDUzOTI1WhcNMjUwNzEwMDUzOTI1WjAYMRYwFAYD VQQDEw02ODY2MTc4ZS0xYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxvyuJKRmaEIxdabROlpvb5X4PakBuVtUBzteSL55dU2DeNvORyJNCM8bmxG ASBpxfprRoKdKXHPhA5xQpvOJ7wCSa5c3ngJXm86AA0fhx+esMQuI+jTIUvb66fm 3Rv7QxNxzsTUmKqz0RZhHpmBbYvjZGhVvJyzEUbPi8jzz/q0c8EYy7ZQKCTtcC5V w9kt3QDI92TJ/mP+VT2mFy511ksb12D+GhNLJ7UMHy93sA4tsTVPzHSUbM5VFErQ thmEqDe/86UdrNssHbN00844caVrHsQ5P9ZGWoLPd1myVreB0UeaXhb3geYDucDy bxwvowWg8Fp/SxmMibs2Kw3GaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHY7/RJ W0nViHSLujqe2sGegOU+MB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD5s4Ay3EtzK2if2b+VHPrcKqByDXc9JY80ndML147e1me46/LJVUK fenxl5BRf4si6dQ9kxDlbltA3jzRqgA3yCTZjN2v57IT02aCzA4wrLE3vwDx0Lyz EwMYUKjozVc3k3pn9Z7My6pLbm8eif0zQZhIB/xzZn7CXpfxo77T4QqLw4ii3W1x kWOeMNgmxSKVJrZydNL7w5gRJnj2zd57erBXfOiCC7+XcxVYn1ne4pZkcMHy4o9e ZDYxM0HBuovdGTDEP70XvpGFgxT94u6LrX3Al10JS1UTLG3W+cqu3BsUaJl+/zCJ QSZalmA3qNipiKAsyxyJna5wgK+HaluD -----END CERTIFICATE-----Generated at Thu Jul 3 08:06:56 2025 by rpki-client