$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: nKAPOfibJ3wbHML+3NT91Zw66HvEDOfCxR0AKWnSbHc= Subject key identifier: BB:29:C4:02:28:A9:2E:42:EF:F6:A9:0F:53:EF:C1:51:23:3B:AD:FB Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1516 Signing time: Wed 02 Jul 2025 16:58:43 +0000 Manifest this update: Wed 02 Jul 2025 16:58:42 +0000 Manifest next update: Wed 09 Jul 2025 16:58:42 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: hH0CgXVVkZFi9FUBhVGCfIVn4nvw7jlzXW7EMRg1U9s=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5415 (0x1527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Jul 2 16:58:42 2025 GMT Not After : Jul 9 16:58:42 2025 GMT Subject: CN=68656542-7bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:63:04:60:2f:5b:92:62:94:66:39:3c:8a:38: 89:a4:73:a7:9f:a3:c8:8e:da:f1:9b:94:45:72:8e: 73:35:09:8f:a2:df:43:6d:54:77:c7:ed:40:c1:2e: 15:2a:c9:7d:d4:b3:82:c1:11:ef:5c:4b:56:a2:8b: a1:95:d0:78:d1:c2:ed:e2:b6:ba:6d:7b:c5:e6:99: 9e:46:0a:8e:1b:94:9f:3a:82:f4:1a:94:51:9d:95: 4a:0f:f1:11:e1:6d:fb:ef:40:b6:f3:e5:75:9f:73: 9a:f6:e0:ea:da:ba:04:d4:62:6e:d6:44:9d:18:a9: 2b:c3:82:f5:45:bb:94:13:0e:b4:f8:ff:2f:33:57: 68:47:e1:24:85:51:a3:ae:85:99:71:a2:70:4c:9a: dc:d6:3f:a7:82:89:b8:e3:d4:05:8f:12:a9:e1:f9: da:98:77:5d:f0:c7:17:a0:4a:5a:85:13:87:21:e5: 92:0d:11:87:34:9e:e0:31:98:eb:dd:7c:9b:15:29: 9e:3c:66:8d:68:8a:60:cc:e4:2e:b9:a4:bf:79:fe: b9:a8:28:29:64:cc:e6:5c:00:04:03:28:bb:fe:15: 13:b1:a9:f7:3c:a3:5d:40:f1:57:89:b5:49:20:f3: 40:3f:06:82:4a:d7:46:b1:2e:d5:4f:1c:7e:ad:19: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:29:C4:02:28:A9:2E:42:EF:F6:A9:0F:53:EF:C1:51:23:3B:AD:FB X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:47:a6:60:d2:d1:14:56:d4:72:60:61:ad:6b:35:6c:53:24: 7d:4a:b6:19:0c:a9:82:d4:65:b3:61:ba:5a:8b:b0:41:26:38: 63:14:86:59:f5:1f:90:0b:f1:6f:19:72:dc:9f:e5:e5:fa:1c: 61:87:dd:8a:04:fd:b0:35:f1:b6:9a:f4:16:36:9f:c8:74:ca: 56:64:c2:82:4a:e2:06:1d:92:12:67:86:41:5b:c1:32:92:ad: 48:3e:32:00:96:05:53:1f:43:fd:0f:b1:4e:53:0d:c8:3e:bd: 20:ff:52:16:d9:24:82:5c:c7:f5:bc:e8:94:31:b4:25:61:22: 72:71:3a:c9:28:71:eb:59:0c:0a:fb:3a:03:71:87:9c:45:7f: 0a:ea:fe:e3:7c:64:d5:3b:6c:3f:f9:1b:00:3f:da:4b:1e:cb: a0:20:9b:5e:7e:d2:44:a6:ed:45:42:07:f6:f9:ef:e6:a2:66: ca:61:6b:9a:b5:35:2f:01:72:2c:b8:c3:84:11:ec:9a:b7:40: a5:b5:94:55:6d:12:5f:f5:8d:1d:3d:df:26:f6:4d:70:bc:b6: 48:8e:7a:7c:05:f2:1f:0b:10:3a:5e:c7:4e:b8:6b:74:b3:3a: 92:f9:f5:3e:ba:53:42:37:c7:b6:c0:c9:da:4f:ef:2e:16:26: 96:bf:3e:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNzAyMTY1ODQyWhcNMjUwNzA5MTY1ODQyWjAYMRYwFAYD VQQDEw02ODY1NjU0Mi03YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGMEYC9bkmKUZjk8ijiJpHOnn6PIjtrxm5RFco5zNQmPot9DbVR3x+1AwS4V Ksl91LOCwRHvXEtWoouhldB40cLt4ra6bXvF5pmeRgqOG5SfOoL0GpRRnZVKD/ER 4W3770C28+V1n3Oa9uDq2roE1GJu1kSdGKkrw4L1RbuUEw60+P8vM1doR+EkhVGj roWZcaJwTJrc1j+ngom449QFjxKp4fnamHdd8McXoEpahROHIeWSDRGHNJ7gMZjr 3XybFSmePGaNaIpgzOQuuaS/ef65qCgpZMzmXAAEAyi7/hUTsan3PKNdQPFXibVJ IPNAPwaCStdGsS7VTxx+rRlujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLspxAIo qS5C7/apD1PvwVEjO637MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIR6Zg0tEUVtRyYGGtazVsUyR9SrYZDKmC1GWzYbpai7BBJjhjFIZZ 9R+QC/FvGXLcn+Xl+hxhh92KBP2wNfG2mvQWNp/IdMpWZMKCSuIGHZISZ4ZBW8Ey kq1IPjIAlgVTH0P9D7FOUw3IPr0g/1IW2SSCXMf1vOiUMbQlYSJycTrJKHHrWQwK +zoDcYecRX8K6v7jfGTVO2w/+RsAP9pLHsugIJteftJEpu1FQgf2+e/mombKYWua tTUvAXIsuMOEEeyat0CltZRVbRJf9Y0dPd8m9k1wvLZIjnp8BfIfCxA6XsdOuGt0 szqS+fU+ulNCN8e2wMnaT+8uFiaWvz4P -----END CERTIFICATE-----Generated at Thu Jul 3 05:59:56 2025 by rpki-client