$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: 8//wII5izY72r7fOXkb5Wsu4Tkp8qmTd7cYSKJUQyjs= Subject key identifier: 27:5F:43:1D:DA:D4:87:9E:13:17:B2:74:92:77:17:8E:6A:BE:A6:FD Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1803 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17EB Signing time: Mon 04 Aug 2025 16:43:30 +0000 Manifest this update: Mon 04 Aug 2025 16:43:30 +0000 Manifest next update: Mon 11 Aug 2025 16:43:30 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: /X70ZgjgZ5z/29yojsQ4QkXG8+PYNzbH6VkWmrMoQW0=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6147 (0x1803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Aug 4 16:43:30 2025 GMT Not After : Aug 11 16:43:30 2025 GMT Subject: CN=6890e332-2bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:30:58:a3:61:67:b6:90:64:73:29:06:7b:9d: 92:03:28:f6:dd:d1:24:cd:e1:3e:81:35:9f:97:9b: cb:6d:24:1b:81:9d:bf:3e:34:be:1f:98:8f:4c:2e: cb:c3:2a:8f:c7:1d:df:34:e6:1e:86:51:41:06:7b: 85:f6:2f:ab:cd:0a:15:9c:59:de:5e:38:97:38:8a: 85:68:fb:cf:93:e5:43:db:77:cd:ba:ba:be:70:bf: 19:6e:da:97:98:1e:cf:55:c6:85:56:da:b1:57:ce: 53:16:0c:01:71:64:bf:79:42:4e:bf:eb:54:f0:17: 42:6b:1b:af:39:8d:ab:f4:d6:5a:91:b8:7e:eb:07: b2:0b:fb:56:83:c1:c7:41:66:fc:2d:80:57:13:38: fb:5b:e0:51:c1:fb:dc:99:6d:4d:95:01:83:4f:f9: 35:2e:61:73:d2:3f:91:65:d5:15:f8:29:9b:3d:7a: c1:55:6e:4f:cd:20:dc:36:c4:1d:b6:18:8e:8c:6b: 50:a3:76:4f:87:27:e7:0d:3b:ba:fd:40:a1:e4:73: bf:60:77:8a:f2:d1:ec:1f:e2:a6:b5:fb:8b:02:83: 3d:22:f2:08:f5:ef:fc:8f:38:25:15:ce:ac:97:92: f6:24:13:80:1c:2a:a5:52:ae:dd:29:53:93:78:4c: 90:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5F:43:1D:DA:D4:87:9E:13:17:B2:74:92:77:17:8E:6A:BE:A6:FD X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:27:f6:27:e3:18:de:2c:81:c7:e1:f7:d4:e1:ef:c7:3c:23: 5d:8a:75:ed:c4:bb:55:cf:80:41:07:bb:cf:2c:57:26:1b:a3: 43:1c:4d:49:f8:53:26:4a:fc:42:51:b1:f2:cf:69:a2:b8:22: f0:5f:e3:f6:23:96:78:87:a0:6f:0d:c2:02:26:b2:e5:61:a7: f5:42:d4:17:39:aa:b1:eb:09:e7:06:0b:32:e8:30:be:70:d6: e5:e0:ad:23:6b:ce:40:8a:9f:24:3f:d8:38:63:e2:24:7e:35: ab:ea:8e:c6:56:fc:2e:87:5b:8a:d0:20:71:67:3e:86:b3:82: 25:3a:6d:ef:02:18:fc:64:72:72:fb:1c:d6:f4:78:49:6e:bf: 59:a7:92:f8:dc:c4:1a:12:6b:35:bd:1a:ef:12:4a:52:48:87: 9e:89:76:35:09:fb:56:b3:51:7f:b2:83:1e:59:78:3c:2b:92: 86:83:64:72:e9:5a:d0:8c:71:a4:6f:e3:bf:4e:12:d1:34:17: 04:45:c2:48:84:b6:06:29:1e:df:4d:4c:22:b5:d8:49:15:de: 64:7e:9c:d6:87:ad:c4:aa:78:ca:0d:74:c4:36:96:eb:e6:2c: 7e:22:f4:d7:f1:7d:c7:67:8f:ad:ab:b7:dc:51:a0:1a:46:67: 24:53:73:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwODA0MTY0MzMwWhcNMjUwODExMTY0MzMwWjAYMRYwFAYD VQQDEw02ODkwZTMzMi0yYmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jBYo2FntpBkcykGe52SAyj23dEkzeE+gTWfl5vLbSQbgZ2/PjS+H5iPTC7L wyqPxx3fNOYehlFBBnuF9i+rzQoVnFneXjiXOIqFaPvPk+VD23fNurq+cL8ZbtqX mB7PVcaFVtqxV85TFgwBcWS/eUJOv+tU8BdCaxuvOY2r9NZakbh+6weyC/tWg8HH QWb8LYBXEzj7W+BRwfvcmW1NlQGDT/k1LmFz0j+RZdUV+CmbPXrBVW5PzSDcNsQd thiOjGtQo3ZPhyfnDTu6/UCh5HO/YHeK8tHsH+KmtfuLAoM9IvII9e/8jzglFc6s l5L2JBOAHCqlUq7dKVOTeEyQhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdfQx3a 1IeeExeydJJ3F45qvqb9MB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKJ/Yn4xjeLIHH4ffU4e/HPCNdinXtxLtVz4BBB7vPLFcmG6NDHE1J +FMmSvxCUbHyz2miuCLwX+P2I5Z4h6BvDcICJrLlYaf1QtQXOaqx6wnnBgsy6DC+ cNbl4K0ja85Aip8kP9g4Y+IkfjWr6o7GVvwuh1uK0CBxZz6Gs4IlOm3vAhj8ZHJy +xzW9HhJbr9Zp5L43MQaEms1vRrvEkpSSIeeiXY1CftWs1F/soMeWXg8K5KGg2Ry 6VrQjHGkb+O/ThLRNBcERcJIhLYGKR7fTUwitdhJFd5kfpzWh63EqnjKDXTENpbr 5ix+IvTX8X3HZ4+tq7fcUaAaRmckU3PJ -----END CERTIFICATE-----Generated at Tue Aug 5 20:15:02 2025 by rpki-client