$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: e4LlzFXyemnozIyF0L/DHFWolH7ljTJ7TDVQxrm+ZFk= Subject key identifier: 2F:29:5F:E9:00:99:A3:7F:41:67:DB:64:E9:F7:F3:EE:5F:D0:32:63 Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: F7 Signing time: Sat 09 Aug 2025 05:40:45 +0000 Manifest this update: Sat 09 Aug 2025 05:40:44 +0000 Manifest next update: Sat 16 Aug 2025 05:40:44 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: 2Rj92FK6VgLDV2gm+ZKEXHPdtPMn8Ep+1YRda2EWkl4=) 2: 894D6CDE1C3511EFA78E995CC4F9AE02.roa (hash: ZVnbf0eZss/W/BW/uaATqG881vi7quF65kC8w3J0+jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Aug 9 05:40:44 2025 GMT Not After : Aug 16 05:40:44 2025 GMT Subject: CN=6896df5c-8e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:9b:39:30:b6:ad:ac:08:c5:89:be:5b:00: 95:89:83:24:c7:66:af:c3:ba:ca:79:d4:58:5b:03: 20:c3:7e:56:14:1e:ad:8c:3e:69:91:e6:c3:d4:46: f5:04:81:d5:75:0a:d8:82:80:50:1d:e8:97:c9:5b: 3b:ec:cc:f5:9a:57:f2:ed:2b:de:56:a8:99:fc:a1: 55:e0:c0:d5:fb:b7:d8:7e:f4:2b:2a:43:4c:59:0e: d0:34:a3:19:5a:5a:73:cb:37:1a:96:23:55:44:65: 27:ed:7b:68:60:64:8e:a6:c3:68:5b:aa:0c:dd:cf: f1:2a:c9:d3:71:c3:9a:03:4e:9a:57:4c:3f:1f:35: 99:e1:89:f1:46:c1:a6:b8:21:9d:11:99:77:e3:2d: 51:3a:e1:2c:9c:cd:8f:82:93:5b:69:58:94:6a:8c: 47:af:7d:0f:e6:c2:df:c5:f2:2a:b2:a3:3b:3a:b1: 1c:ed:bc:2f:0c:37:57:d0:b7:42:9a:31:80:48:23: 6d:3a:54:2c:1e:f7:63:8f:7f:ee:43:f6:e2:67:d0: a8:09:8e:4f:e1:82:5d:45:38:98:46:f7:47:82:eb: 7c:04:5c:0d:b8:45:31:d1:85:45:4e:8f:b4:dc:31: c4:27:9e:97:6d:e3:80:9f:02:fd:0b:7e:5e:23:0d: e5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:29:5F:E9:00:99:A3:7F:41:67:DB:64:E9:F7:F3:EE:5F:D0:32:63 X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:8a:ec:9c:6f:76:b2:5f:67:57:9e:93:44:c6:ae:51:66:ff: eb:ed:60:5d:a5:b9:e7:ee:10:c0:ce:05:8b:14:da:71:80:b5: 20:8b:34:8b:1f:30:44:4c:7f:fd:b6:7d:ac:c8:26:ee:fc:14: 0e:4b:f2:40:4b:c8:51:05:7a:0d:f6:9b:cf:56:8b:c6:cb:46: 58:4b:e8:15:3f:8a:c4:f8:b7:97:ba:0d:46:b6:85:95:1a:37: 91:84:4a:19:01:c9:4c:43:c6:f8:63:fd:3b:31:df:56:d1:2f: 71:b7:0b:a8:10:2b:60:38:98:15:39:68:0d:9d:bf:b9:c6:58: ec:3c:6d:28:f5:74:bf:7e:b4:3f:dd:9a:bf:84:0f:fc:7c:07: f8:fb:4f:ca:20:ec:d0:25:53:45:5f:b8:fc:14:24:c8:66:cf: 20:e4:57:46:f6:83:43:82:82:32:cb:e6:30:18:b3:d2:9d:b5: 00:31:55:9d:2f:95:bf:35:1b:23:18:af:a6:86:b2:05:ec:43: 4e:16:b3:8a:15:e3:c4:af:e7:5f:bb:f0:07:2e:a1:1a:21:66: 97:a1:14:5e:d9:41:5e:69:85:df:2c:60:d2:d6:e4:1a:68:a0: b9:b0:82:9e:20:d6:9d:a4:38:08:39:1d:6e:ad:94:3a:0b:3b: cd:10:6e:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUwODA5MDU0MDQ0WhcNMjUwODE2MDU0MDQ0WjAYMRYwFAYD VQQDEw02ODk2ZGY1Yy04ZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHqbOTC2rawIxYm+WwCViYMkx2avw7rKedRYWwMgw35WFB6tjD5pkebD1Eb1 BIHVdQrYgoBQHeiXyVs77Mz1mlfy7SveVqiZ/KFV4MDV+7fYfvQrKkNMWQ7QNKMZ WlpzyzcaliNVRGUn7XtoYGSOpsNoW6oM3c/xKsnTccOaA06aV0w/HzWZ4YnxRsGm uCGdEZl34y1ROuEsnM2PgpNbaViUaoxHr30P5sLfxfIqsqM7OrEc7bwvDDdX0LdC mjGASCNtOlQsHvdjj3/uQ/biZ9CoCY5P4YJdRTiYRvdHgut8BFwNuEUx0YVFTo+0 3DHEJ56XbeOAnwL9C35eIw3lmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8pX+kA maN/QWfbZOn38+5f0DJjMB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbiuycb3ayX2dXnpNExq5RZv/r7WBdpbnn7hDAzgWLFNpxgLUgizSL HzBETH/9tn2syCbu/BQOS/JAS8hRBXoN9pvPVovGy0ZYS+gVP4rE+LeXug1GtoWV GjeRhEoZAclMQ8b4Y/07Md9W0S9xtwuoECtgOJgVOWgNnb+5xljsPG0o9XS/frQ/ 3Zq/hA/8fAf4+0/KIOzQJVNFX7j8FCTIZs8g5FdG9oNDgoIyy+YwGLPSnbUAMVWd L5W/NRsjGK+mhrIF7ENOFrOKFePEr+dfu/AHLqEaIWaXoRRe2UFeaYXfLGDS1uQa aKC5sIKeINadpDgIOR1urZQ6CzvNEG5w -----END CERTIFICATE-----Generated at Sun Aug 10 18:55:55 2025 by rpki-client