$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: zrtAqeGS6A4WQZPlbAZSg5JN7wJKAcb4E4SIszmRfmg= Subject key identifier: A3:3A:3A:E5:D0:0E:70:49:6C:9F:AE:D6:1A:4F:FD:53:FB:32:E3:C2 Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 0922 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 0919 Signing time: Fri 22 Aug 2025 20:25:37 +0000 Manifest this update: Fri 22 Aug 2025 20:25:36 +0000 Manifest next update: Fri 29 Aug 2025 20:25:36 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: JhGR84qNd+uGdc6nhebiaKIk2R5vHb/WWTXRVmI/JtE=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Aug 22 20:25:36 2025 GMT Not After : Aug 29 20:25:36 2025 GMT Subject: CN=68a8d240-63c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:95:1d:a5:c1:77:a6:94:b3:ba:01:f7:49: 12:95:f8:06:a3:cf:a9:dd:86:b1:a1:91:55:9c:a4: f1:0b:4e:c7:4e:2d:9f:af:d6:92:ad:5c:46:47:c9: e0:a7:13:75:66:99:70:c3:d1:d3:fb:43:ab:fb:f2: 9f:4e:de:51:1c:cf:55:ca:9c:28:a3:05:d8:47:58: e8:d5:ee:40:d5:6d:fd:0e:8c:57:26:05:c2:66:1a: 69:e0:4f:15:f7:89:6e:df:3f:32:04:e8:82:54:7c: f6:0a:46:32:85:e9:f5:db:dc:51:47:74:44:bf:37: 9a:64:2d:7b:63:65:44:e8:88:29:ee:30:a5:29:a8: 57:d2:e5:c5:6e:b3:43:78:53:cb:99:ec:a6:05:8d: 1e:25:02:a0:89:e6:b3:41:7e:7d:4e:45:d9:cb:ca: df:64:83:e4:af:d4:10:a0:a7:0e:8a:ad:5e:be:f5: 72:ff:6e:6e:a3:62:2d:e8:53:57:bf:d3:d5:c3:4c: eb:17:ff:37:1c:6f:f1:c2:53:ef:09:52:a8:a8:58: 82:12:4f:42:fa:a7:51:96:61:08:11:53:c9:48:b5: 8e:e5:51:4b:41:b0:17:80:9d:12:28:e7:8c:8b:50: b2:36:0e:18:ad:1d:90:7d:e1:a6:e5:5f:f3:c0:a1: 72:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3A:3A:E5:D0:0E:70:49:6C:9F:AE:D6:1A:4F:FD:53:FB:32:E3:C2 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:62:20:14:e6:67:9f:c7:a5:e7:25:12:c2:f9:b1:42:98:ad: 2e:d7:de:f0:4e:97:a2:65:71:4d:59:76:56:5e:24:94:88:3b: 82:49:ec:1a:00:16:31:e3:9c:e4:0f:60:46:bb:4a:c2:af:9e: 15:b7:ab:8d:26:1d:c0:0e:bb:79:9e:b2:ea:94:dd:d1:38:41: d8:01:08:9b:c6:5f:21:c8:a5:0c:27:4f:00:b9:a1:20:2a:0f: d7:23:3b:09:6f:6a:84:f7:46:b5:f1:90:e4:68:c5:9c:92:7e: 09:05:22:4b:68:34:5b:07:c0:c3:57:60:8f:d6:e5:33:35:6d: 80:67:eb:a9:a7:9b:58:57:2a:a1:ef:9b:82:b7:30:6f:43:f6: 57:1f:f8:99:3a:80:4d:fb:31:3a:f0:e0:48:52:3c:9a:27:4c: 55:96:60:5e:de:02:9c:80:75:b7:de:1a:fe:14:7a:ec:a4:9f: 83:83:14:10:c3:90:4d:b7:fe:9a:a5:f9:5d:20:c3:dc:e9:f3: 56:1d:42:f7:74:34:d6:a2:45:66:b6:dc:f8:21:3c:46:33:97: d4:6b:29:c1:a8:b1:8d:1e:f9:d5:cc:2d:96:62:83:05:d9:b5: d5:46:88:ee:b4:cc:88:91:bc:3e:10:96:4a:5b:af:25:53:15: 97:55:fb:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUwODIyMjAyNTM2WhcNMjUwODI5MjAyNTM2WjAYMRYwFAYD VQQDEw02OGE4ZDI0MC02M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8iVHaXBd6aUs7oB90kSlfgGo8+p3YaxoZFVnKTxC07HTi2fr9aSrVxGR8ng pxN1Zplww9HT+0Or+/KfTt5RHM9VypwoowXYR1jo1e5A1W39DoxXJgXCZhpp4E8V 94lu3z8yBOiCVHz2CkYyhen129xRR3REvzeaZC17Y2VE6Igp7jClKahX0uXFbrND eFPLmeymBY0eJQKgieazQX59TkXZy8rfZIPkr9QQoKcOiq1evvVy/25uo2It6FNX v9PVw0zrF/83HG/xwlPvCVKoqFiCEk9C+qdRlmEIEVPJSLWO5VFLQbAXgJ0SKOeM i1CyNg4YrR2QfeGm5V/zwKFyJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKM6OuXQ DnBJbJ+u1hpP/VP7MuPCMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCYiAU5mefx6XnJRLC+bFCmK0u197wTpeiZXFNWXZWXiSUiDuCSewa ABYx45zkD2BGu0rCr54Vt6uNJh3ADrt5nrLqlN3ROEHYAQibxl8hyKUMJ08AuaEg Kg/XIzsJb2qE90a18ZDkaMWckn4JBSJLaDRbB8DDV2CP1uUzNW2AZ+upp5tYVyqh 75uCtzBvQ/ZXH/iZOoBN+zE68OBIUjyaJ0xVlmBe3gKcgHW33hr+FHrspJ+DgxQQ w5BNt/6apfldIMPc6fNWHUL3dDTWokVmttz4ITxGM5fUaynBqLGNHvnVzC2WYoMF 2bXVRojutMyIkbw+EJZKW68lUxWXVfup -----END CERTIFICATE-----Generated at Sat Aug 23 21:07:04 2025 by rpki-client