$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: Wugg5jDaSCYn1bY4ulGO2OloXUdmKqDTl6cGoiDcFHo= Subject key identifier: 4F:BD:C8:56:D7:4D:E0:47:49:41:69:DD:4D:54:56:77:E3:AF:A1:07 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0367 Signing time: Sat 23 Aug 2025 01:11:12 +0000 Manifest this update: Sat 23 Aug 2025 01:11:11 +0000 Manifest next update: Sat 30 Aug 2025 01:11:11 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 4L9VKlAjzJKWaCZ7BssbBlaibsdjlUlkLKjpi6LMKPk=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Aug 23 01:11:11 2025 GMT Not After : Aug 30 01:11:11 2025 GMT Subject: CN=68a9152f-72ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:94:1a:c9:06:cd:aa:bd:38:bc:d5:4f:b7: 0e:9f:e2:d3:8a:78:05:b6:a9:61:76:26:98:22:35: 79:d9:42:f7:58:4a:a3:01:b1:5d:90:f5:f5:54:8a: 47:60:48:49:31:82:72:91:db:45:55:3e:8d:08:be: 9e:07:53:7d:6a:f2:93:2a:af:f0:4a:76:e2:02:65: 62:ea:a4:50:39:13:e6:7d:3c:3b:db:31:62:7a:ef: 23:b9:ec:57:e7:21:57:e4:31:6a:b7:b1:c2:e2:5e: a5:b1:ab:31:93:8a:7e:db:52:cb:c6:98:8a:c5:ce: 91:7a:3c:5e:e3:1a:9d:64:34:4b:53:9c:12:e4:4c: 5c:0f:85:fe:95:29:4b:89:32:24:47:c7:ef:3e:4b: c8:1e:bb:05:2e:d1:ae:03:aa:17:c8:07:6b:8e:72: 46:9b:74:67:45:ff:82:60:a6:66:af:79:5a:6d:1f: d8:41:75:8c:3d:8b:4a:f1:70:e5:f0:85:50:18:20: cb:93:a3:84:aa:fb:b6:7c:7c:68:f9:16:24:da:fe: e7:ce:4b:18:c6:db:2e:99:73:81:71:7d:09:0b:ee: 22:e5:e5:26:f4:57:41:fc:c3:0e:74:3a:06:72:cb: d3:e0:ad:fc:ca:62:ac:bc:57:41:68:50:be:ff:c4: cb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BD:C8:56:D7:4D:E0:47:49:41:69:DD:4D:54:56:77:E3:AF:A1:07 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:fb:c7:a5:de:02:46:69:ad:45:dd:ca:b4:e2:d3:c9:41:7f: cb:a4:7b:98:74:b7:27:51:c9:03:cc:ff:89:53:4c:25:4b:1b: d4:e3:cc:7d:04:48:50:77:6d:68:6c:ee:1e:43:c4:fd:14:70: c2:62:f5:e2:03:80:d8:be:c4:1d:3a:97:33:d3:37:42:73:8a: c2:46:07:06:7d:98:c0:0b:ff:df:cb:9f:39:b2:48:99:c3:cf: 48:55:8f:fa:89:78:a6:aa:93:ab:39:44:56:99:00:48:48:4c: 0c:89:4c:1e:11:17:2f:a5:ba:74:11:f6:5e:94:e2:2a:10:5a: 9a:2d:f5:7f:84:5d:ab:92:3f:74:33:c1:a9:77:33:6d:5e:1e: b7:40:8f:0b:7a:12:3c:8b:41:57:20:9f:04:20:08:e6:ed:7c: 48:2a:02:d6:60:35:3e:17:40:4b:a8:32:7b:0e:50:1a:c2:03: 01:cf:a8:e1:c3:de:79:40:32:35:63:c5:1a:4c:17:01:7f:dc: eb:4f:3b:28:87:38:73:d2:5e:3c:7b:ea:66:32:e9:02:e2:55: c7:a2:15:ec:3e:a3:88:8f:d1:4c:99:63:da:5f:91:4d:eb:c4: 7c:c7:43:81:20:89:73:47:91:fd:31:75:c0:4a:49:1c:dc:cb: 4b:05:7f:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwODIzMDExMTExWhcNMjUwODMwMDExMTExWjAYMRYwFAYD VQQDEw02OGE5MTUyZi03MmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QGUGskGzaq9OLzVT7cOn+LTingFtqlhdiaYIjV52UL3WEqjAbFdkPX1VIpH YEhJMYJykdtFVT6NCL6eB1N9avKTKq/wSnbiAmVi6qRQORPmfTw72zFieu8juexX 5yFX5DFqt7HC4l6lsasxk4p+21LLxpiKxc6Rejxe4xqdZDRLU5wS5ExcD4X+lSlL iTIkR8fvPkvIHrsFLtGuA6oXyAdrjnJGm3RnRf+CYKZmr3labR/YQXWMPYtK8XDl 8IVQGCDLk6OEqvu2fHxo+RYk2v7nzksYxtsumXOBcX0JC+4i5eUm9FdB/MMOdDoG csvT4K38ymKsvFdBaFC+/8TL2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+9yFbX TeBHSUFp3U1UVnfjr6EHMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI+8el3gJGaa1F3cq04tPJQX/LpHuYdLcnUckDzP+JU0wlSxvU48x9 BEhQd21obO4eQ8T9FHDCYvXiA4DYvsQdOpcz0zdCc4rCRgcGfZjAC//fy585skiZ w89IVY/6iXimqpOrOURWmQBISEwMiUweERcvpbp0EfZelOIqEFqaLfV/hF2rkj90 M8GpdzNtXh63QI8LehI8i0FXIJ8EIAjm7XxIKgLWYDU+F0BLqDJ7DlAawgMBz6jh w955QDI1Y8UaTBcBf9zrTzsohzhz0l48e+pmMukC4lXHohXsPqOIj9FMmWPaX5FN 68R8x0OBIIlzR5H9MXXASkkc3MtLBX8+ -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:03 2025 by rpki-client