$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: ANfaTYlkaX7LkuFwP+VQKzk3fPB3a3By/sw6+mmNm80= Subject key identifier: EE:5C:85:E0:19:AF:E0:54:C0:F7:7D:DC:4A:75:0A:21:9E:E4:3E:D8 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1530 Signing time: Fri 22 Aug 2025 16:55:15 +0000 Manifest this update: Fri 22 Aug 2025 16:55:14 +0000 Manifest next update: Fri 29 Aug 2025 16:55:14 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: 2QcSPfb4DgxJLoqFqwcwoLQBkDKBKGVItcElkmWIY9k=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5441 (0x1541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Aug 22 16:55:14 2025 GMT Not After : Aug 29 16:55:14 2025 GMT Subject: CN=68a8a0f2-97be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a7:1f:45:97:ba:ed:b1:3c:9b:b7:17:eb:24: 13:3a:45:aa:c3:73:64:fd:45:b2:65:b8:f8:6b:aa: 2f:9a:07:17:5d:5d:67:bd:6f:df:6e:a3:ea:2b:85: 8d:38:ab:91:84:ef:e5:07:77:bb:d6:a9:d7:35:82: 73:e3:04:21:ab:2e:33:63:88:c6:b6:c1:b7:8e:75: 09:96:09:17:5c:70:f6:8a:39:ab:7b:3b:3b:a6:62: bb:98:86:c5:9a:d8:b9:3c:05:d2:f1:74:45:5b:c3: cd:f1:61:39:bd:04:4d:e3:b7:a4:d8:76:db:e6:6e: af:09:fb:a4:c1:30:1e:c4:0f:e4:e7:7c:b8:0e:38: a8:f9:87:d4:6f:d6:b0:02:4e:29:89:99:76:16:e5: 71:9a:25:6a:7c:8c:87:dd:ae:c1:54:93:84:1f:d1: 79:d1:8a:77:64:19:a5:c0:34:78:2d:76:fe:5e:7b: 00:ba:cd:aa:88:d2:e1:5a:b0:bb:c1:b4:a3:d1:b2: 62:34:22:47:92:b5:09:d2:17:11:f7:89:e6:c3:34: c3:11:00:d1:1e:b6:15:91:b2:7d:4c:ec:2b:9d:a1: 8a:0c:07:6c:d7:df:30:be:2a:8a:73:83:1f:8f:86: c1:59:7d:76:49:44:d7:65:cd:d4:5f:28:77:0d:3a: 21:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5C:85:E0:19:AF:E0:54:C0:F7:7D:DC:4A:75:0A:21:9E:E4:3E:D8 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:28:b9:92:dc:99:e7:38:1c:78:7b:dc:77:46:82:de:80:f6: 77:39:e1:99:fb:00:0f:96:50:2f:ee:3a:49:76:60:42:01:1c: 8b:20:45:48:7e:fe:78:dc:a1:42:69:bc:9c:a0:bb:60:6e:70: af:37:7a:95:f7:6e:63:50:0d:c6:5b:25:4e:bf:36:28:bb:b3: 52:9b:8f:80:5e:c7:b7:6a:0b:c9:68:59:ba:72:00:0d:b5:96: a3:37:a8:b7:aa:79:ac:81:c8:e9:67:db:ed:90:94:a3:d0:30: 43:f9:2d:f7:b7:f1:71:52:2a:f4:6b:f8:a1:d7:eb:e0:2d:e5: dc:8a:30:0e:47:e6:27:7f:d8:67:34:83:22:fa:e1:d8:97:f7: b1:d3:16:6f:3c:35:91:05:d5:0a:c8:91:1e:ad:da:be:93:0b: f0:ca:b6:74:9f:f5:8b:2c:89:e7:c6:4b:ad:0b:80:66:55:06: 12:5f:f8:7e:bc:4b:31:e9:9e:12:52:11:50:98:38:23:76:6e: 72:bf:56:e3:d5:31:81:72:ad:63:1e:0d:40:cc:52:fb:9e:51: 28:8a:ea:b6:bf:03:ae:a3:2a:94:45:93:14:67:28:76:8f:3e: 70:4b:49:8d:f7:0c:ea:b6:9f:00:b2:63:c8:86:38:20:9b:44: 02:72:30:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwODIyMTY1NTE0WhcNMjUwODI5MTY1NTE0WjAYMRYwFAYD VQQDEw02OGE4YTBmMi05N2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KcfRZe67bE8m7cX6yQTOkWqw3Nk/UWyZbj4a6ovmgcXXV1nvW/fbqPqK4WN OKuRhO/lB3e71qnXNYJz4wQhqy4zY4jGtsG3jnUJlgkXXHD2ijmrezs7pmK7mIbF mti5PAXS8XRFW8PN8WE5vQRN47ek2Hbb5m6vCfukwTAexA/k53y4Djio+YfUb9aw Ak4piZl2FuVxmiVqfIyH3a7BVJOEH9F50Yp3ZBmlwDR4LXb+XnsAus2qiNLhWrC7 wbSj0bJiNCJHkrUJ0hcR94nmwzTDEQDRHrYVkbJ9TOwrnaGKDAds198wviqKc4Mf j4bBWX12SUTXZc3UXyh3DTohXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5cheAZ r+BUwPd93Ep1CiGe5D7YMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAKLmS3JnnOBx4e9x3RoLegPZ3OeGZ+wAPllAv7jpJdmBCARyLIEVI fv543KFCabycoLtgbnCvN3qV925jUA3GWyVOvzYou7NSm4+AXse3agvJaFm6cgAN tZajN6i3qnmsgcjpZ9vtkJSj0DBD+S33t/FxUir0a/ih1+vgLeXcijAOR+Ynf9hn NIMi+uHYl/ex0xZvPDWRBdUKyJEerdq+kwvwyrZ0n/WLLInnxkutC4BmVQYSX/h+ vEsx6Z4SUhFQmDgjdm5yv1bj1TGBcq1jHg1AzFL7nlEoiuq2vwOuoyqURZMUZyh2 jz5wS0mN9wzqtp8AsmPIhjggm0QCcjB7 -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:31 2025 by rpki-client