$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: uyFdIGgWJsyC9uFsFizKRT3Yh864tX9PXbrmbZ8oaiE= Subject key identifier: 83:86:E7:C7:3C:57:94:71:25:21:EE:7C:53:A0:09:06:FC:B8:B9:13 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 0839 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 0831 Signing time: Fri 22 Aug 2025 20:54:36 +0000 Manifest this update: Fri 22 Aug 2025 20:54:35 +0000 Manifest next update: Fri 29 Aug 2025 20:54:35 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: eIROCxS3eoh1iZ9zSI7+aJVBhsCJCPD2GEGapfvBhO0=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: ZdmpHgIkxt7GWbnQ6LOR1kcULfHlPHaLzEsc6YKJVc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2105 (0x839) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Aug 22 20:54:35 2025 GMT Not After : Aug 29 20:54:35 2025 GMT Subject: CN=68a8d90b-143f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:27:0a:60:d3:75:3c:ed:64:b5:75:a5:2b:10: a9:4c:c0:d4:f7:7e:11:1d:5b:9a:a1:f6:99:72:f6: 85:66:16:c2:22:6e:18:ce:8d:9c:e3:05:b6:ab:6d: 4b:77:5c:d4:d8:4c:f9:75:42:b3:b8:ac:fc:dc:49: 58:ce:06:8f:df:53:35:c8:74:80:df:ce:d2:1d:00: 42:fa:72:ea:5e:5b:1b:38:69:39:c6:26:3f:fe:86: 84:1d:70:0c:16:6f:99:32:82:2a:6f:a7:ab:58:6a: 41:8c:56:01:90:17:54:52:97:3b:73:a1:1b:51:54: 08:b8:d4:11:8a:0a:e1:19:62:d4:ed:61:ca:c2:b7: c3:dd:a8:00:ae:d9:e5:9b:d6:0e:40:b8:95:f4:0f: b8:6d:7c:36:4a:30:35:7d:19:f2:7d:ec:6d:b9:cc: d5:bc:f4:8d:d9:a8:ea:59:5a:e3:01:48:4d:30:cd: f4:e4:6d:75:ab:60:97:38:d3:80:0d:e1:ae:8f:ce: 43:9a:8f:7b:43:74:87:8c:1b:84:1b:bc:66:ca:70: bf:c7:a9:86:98:d4:95:5a:0c:1c:96:75:9c:13:47: 8c:27:a4:f0:08:25:8c:43:e4:f7:41:91:bb:28:2f: 2f:20:2f:85:c0:6d:06:34:48:d4:66:a3:51:8c:e6: 88:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:86:E7:C7:3C:57:94:71:25:21:EE:7C:53:A0:09:06:FC:B8:B9:13 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f5:2c:90:73:69:6b:44:6a:1c:1d:ff:71:f1:02:2f:7d:f0: cf:3f:08:44:50:e9:3b:60:96:1a:8a:ae:5d:82:20:12:6f:ba: 85:37:8b:e2:ff:b1:8c:36:9f:09:36:4f:20:b6:68:b5:0f:35: 51:3d:6a:4d:12:a9:49:4f:15:1c:eb:f0:dd:7f:9f:95:96:d0: e5:7f:9a:22:a1:67:4c:d6:d5:46:0a:c6:12:41:92:60:98:e4: c4:8b:d2:cb:70:81:b9:c8:0a:ac:88:d9:7b:c7:d4:7e:b3:b0: 5c:34:a0:dd:23:0e:f5:9c:34:c6:a9:00:f7:d2:04:ba:fa:22: cd:64:69:52:dc:30:9a:1c:28:bf:cf:b3:d0:9a:02:80:dc:55: 9d:4d:8f:96:98:5b:03:66:f4:53:cf:62:bf:31:a2:b0:6c:79: 17:34:28:b4:df:b0:33:51:1b:eb:f4:38:0a:d8:f6:73:d5:be: eb:c3:95:59:77:0c:ab:b1:c8:c4:f0:a9:ae:4b:9d:c2:81:e2: 1a:ff:08:d0:0a:17:ff:89:d3:01:c0:e7:23:69:16:17:2b:c2: ee:89:20:32:e2:51:40:b6:d5:c1:dc:14:00:ff:66:a3:47:d7: e5:b9:bd:09:fe:57:2c:ec:58:86:d3:a7:35:1e:56:74:94:f8: e6:da:d8:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjUwODIyMjA1NDM1WhcNMjUwODI5MjA1NDM1WjAYMRYwFAYD VQQDEw02OGE4ZDkwYi0xNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCcKYNN1PO1ktXWlKxCpTMDU934RHVuaofaZcvaFZhbCIm4Yzo2c4wW2q21L d1zU2Ez5dUKzuKz83ElYzgaP31M1yHSA387SHQBC+nLqXlsbOGk5xiY//oaEHXAM Fm+ZMoIqb6erWGpBjFYBkBdUUpc7c6EbUVQIuNQRigrhGWLU7WHKwrfD3agArtnl m9YOQLiV9A+4bXw2SjA1fRnyfextuczVvPSN2ajqWVrjAUhNMM305G11q2CXONOA DeGuj85Dmo97Q3SHjBuEG7xmynC/x6mGmNSVWgwclnWcE0eMJ6TwCCWMQ+T3QZG7 KC8vIC+FwG0GNEjUZqNRjOaINQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOG58c8 V5RxJSHufFOgCQb8uLkTMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT9SyQc2lrRGocHf9x8QIvffDPPwhEUOk7YJYaiq5dgiASb7qFN4vi /7GMNp8JNk8gtmi1DzVRPWpNEqlJTxUc6/Ddf5+VltDlf5oioWdM1tVGCsYSQZJg mOTEi9LLcIG5yAqsiNl7x9R+s7BcNKDdIw71nDTGqQD30gS6+iLNZGlS3DCaHCi/ z7PQmgKA3FWdTY+WmFsDZvRTz2K/MaKwbHkXNCi037AzURvr9DgK2PZz1b7rw5VZ dwyrscjE8KmuS53CgeIa/wjQChf/idMBwOcjaRYXK8LuiSAy4lFAttXB3BQA/2aj R9flub0J/lcs7FiG06c1HlZ0lPjm2tgc -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:13 2025 by rpki-client