$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: YBOzn7KgiDKovs48hp5V7HAxB5FacC1TUhac+yi/pcE= Subject key identifier: 92:94:86:66:5D:FB:41:FF:FB:19:19:09:17:F5:C6:5C:ED:DD:BC:40 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D37 Signing time: Fri 22 Aug 2025 18:08:16 +0000 Manifest this update: Fri 22 Aug 2025 18:08:15 +0000 Manifest next update: Fri 29 Aug 2025 18:08:15 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: rXNb/wnKkCANzsZIX7EwPS8zNvV53ojJ0X3CP7NXSnk=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3391 (0xd3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Aug 22 18:08:15 2025 GMT Not After : Aug 29 18:08:15 2025 GMT Subject: CN=68a8b20f-e9d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:54:bc:e8:89:fe:19:3f:f0:20:22:a5:ca:ad: 8f:aa:9b:e7:c9:f3:0a:b0:8c:98:03:6c:35:7b:e8: 6e:22:cb:ad:7b:88:8a:96:1d:71:43:27:f4:b5:ea: 63:26:75:e9:3d:82:a8:46:69:09:f5:e4:90:4d:d2: c7:cb:97:ed:3d:38:b4:c5:29:ef:7a:4f:e8:03:e4: 8d:71:f6:a1:04:7d:f7:58:ed:25:fa:d2:f1:98:04: a7:ff:3e:94:45:e4:ae:7e:e5:4e:e4:dd:9c:3e:96: f4:eb:37:dc:c1:f2:1e:e9:c1:df:de:09:a2:ac:5f: 30:f6:28:de:69:ad:98:2e:2e:e5:ec:3a:b2:25:b5: a6:d6:2e:29:f4:b0:6b:6c:d5:e0:a3:4b:0b:49:15: c8:83:fe:2f:2d:e3:f3:f3:3b:b9:93:fa:0b:52:eb: 22:65:0e:b0:b1:2a:92:fb:6a:46:ef:b7:38:d2:a6: 34:2a:b2:c5:b3:7b:ae:cb:f9:e4:53:02:18:b8:2b: a4:27:eb:13:a9:f5:b8:4b:96:c9:cd:7a:5b:b4:56: 4a:34:43:b9:38:1e:ac:bf:4e:b5:9e:46:00:84:48: ba:d9:fe:06:da:68:9e:8b:3e:ce:bd:9a:d3:0b:d0: 75:1d:bc:be:fa:eb:c8:dd:06:ec:59:49:c1:6d:b7: c5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:94:86:66:5D:FB:41:FF:FB:19:19:09:17:F5:C6:5C:ED:DD:BC:40 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:c7:ad:6a:a3:7c:24:c6:06:40:97:d9:cb:50:20:8b:a7:6d: be:fd:fb:33:eb:7e:99:e7:ca:73:85:05:eb:b5:89:c2:18:2e: c8:6d:5f:64:49:d9:1f:45:48:9b:eb:81:f5:d4:cd:b5:07:f9: 3a:4f:4b:75:15:3a:1b:58:d4:1d:e4:10:1d:08:81:97:f7:b0: 12:c4:97:93:11:e9:54:60:da:ce:d2:bb:db:aa:9a:04:f9:3b: 0e:ea:3a:8e:71:26:fd:25:16:c9:02:24:94:cf:08:89:a4:61: 79:12:52:79:44:cc:96:e4:1e:68:55:af:f9:0a:ed:ee:4c:f1: 61:07:63:52:82:4e:06:50:0b:a6:58:04:63:58:83:98:09:88: 44:55:50:49:e8:2a:3f:94:f2:52:c8:ba:d8:0c:94:75:d4:dc: 8c:9e:4d:83:ad:b7:44:b3:82:6c:93:cd:48:ff:fe:d8:31:6c: 08:c2:2f:19:e7:b0:39:d9:3c:42:6f:39:d9:5d:9b:7c:9f:b3: 1e:0c:a7:95:b1:82:e8:f6:4c:ff:b7:fd:9f:c8:35:0f:c9:c5: 5e:c5:0f:fe:87:b2:bc:58:9c:da:88:98:0e:20:70:cf:bc:57: ee:a4:17:93:01:8b:67:ba:9e:d3:e6:a8:8c:a8:b0:ce:94:a6: ef:5d:2e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUwODIyMTgwODE1WhcNMjUwODI5MTgwODE1WjAYMRYwFAYD VQQDEw02OGE4YjIwZi1lOWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FS86In+GT/wICKlyq2PqpvnyfMKsIyYA2w1e+huIsute4iKlh1xQyf0tepj JnXpPYKoRmkJ9eSQTdLHy5ftPTi0xSnvek/oA+SNcfahBH33WO0l+tLxmASn/z6U ReSufuVO5N2cPpb06zfcwfIe6cHf3gmirF8w9ijeaa2YLi7l7DqyJbWm1i4p9LBr bNXgo0sLSRXIg/4vLePz8zu5k/oLUusiZQ6wsSqS+2pG77c40qY0KrLFs3uuy/nk UwIYuCukJ+sTqfW4S5bJzXpbtFZKNEO5OB6sv061nkYAhEi62f4G2mieiz7OvZrT C9B1Hby++uvI3QbsWUnBbbfFwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKUhmZd +0H/+xkZCRf1xlzt3bxAMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIx61qo3wkxgZAl9nLUCCLp22+/fsz636Z58pzhQXrtYnCGC7IbV9k SdkfRUib64H11M21B/k6T0t1FTobWNQd5BAdCIGX97ASxJeTEelUYNrO0rvbqpoE +TsO6jqOcSb9JRbJAiSUzwiJpGF5ElJ5RMyW5B5oVa/5Cu3uTPFhB2NSgk4GUAum WARjWIOYCYhEVVBJ6Co/lPJSyLrYDJR11NyMnk2DrbdEs4Jsk81I//7YMWwIwi8Z 57A52TxCbznZXZt8n7MeDKeVsYLo9kz/t/2fyDUPycVexQ/+h7K8WJzaiJgOIHDP vFfupBeTAYtnup7T5qiMqLDOlKbvXS6s -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:35 2025 by rpki-client