$ rpki-client -vvf rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft File: Hte4fPVriwDuFD5GlnhQOBTl-lM.mft (raw, json) Hash identifier: UGwbSV8uxd/oQYdl2RlGRQ2NjwkAA2FqVuB4upTVBk8= Subject key identifier: 09:2B:FC:6C:44:87:0F:65:50:D9:5B:BC:C5:E6:10:9C:7B:0B:EA:87 Authority key identifier: 1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 Certificate issuer: /CN=A914C0F5/serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft Manifest number: 05F7 Signing time: Fri 08 Aug 2025 23:22:36 +0000 Manifest this update: Fri 08 Aug 2025 23:22:36 +0000 Manifest next update: Fri 15 Aug 2025 23:22:36 +0000 Files and hashes: 1: Hte4fPVriwDuFD5GlnhQOBTl-lM.crl (hash: GgyyAt/Kt92XhBauNzYnDdgQQSMm/wJ27emCRwj7vys=) 2: 694F9F9CBE2811EBBB48FF52C4F9AE02.roa (hash: fb7qHh5ZQWTTd8VnRA4KyHFCOrkRy8TphWCCGB0gByk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C0F5, serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Validity Not Before: Aug 8 23:22:36 2025 GMT Not After : Aug 15 23:22:36 2025 GMT Subject: CN=689686bc-41ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:29:7d:55:fe:92:c4:7e:1c:68:48:2d:70:0e: 6e:3a:0d:fc:6f:10:4c:88:4b:67:09:3e:2e:4d:ae: e8:57:4e:68:32:f0:90:14:0b:74:2d:d7:3f:06:d9: 78:50:f1:65:a4:a2:ea:26:4e:c1:60:78:28:18:82: 39:58:1c:4c:ba:e7:d5:84:fa:3f:f2:18:90:bb:eb: 5b:ca:6c:53:f6:84:1b:d1:b6:f5:62:05:27:6b:d5: 6b:dc:ce:8d:57:14:c7:c5:da:8f:c6:fd:3a:1a:76: 05:eb:d4:b5:86:46:07:29:82:ef:fe:0d:63:a4:d2: 7c:70:de:43:33:ae:a9:23:f4:67:0a:26:3f:8d:70: d4:07:82:0d:79:9f:bc:44:d7:dd:8c:b5:3c:55:2b: 76:be:01:ab:67:5e:18:bd:42:99:3d:9b:50:9c:62: 4d:ed:81:3a:59:6a:7c:35:fa:8c:f5:7b:f4:01:66: 6c:93:9d:bd:6d:b1:d4:1c:33:b5:a4:a6:bf:ed:14: 3f:5a:ca:89:08:a9:d2:08:fb:03:71:3e:2c:e9:c3: b8:d6:c0:94:d2:19:a1:77:97:d9:c8:55:46:1f:e4: 8e:11:d7:42:68:07:e0:03:23:23:21:00:0e:19:63: 81:3b:34:6b:01:b1:c1:54:cf:17:93:4f:83:56:bd: 79:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:FC:6C:44:87:0F:65:50:D9:5B:BC:C5:E6:10:9C:7B:0B:EA:87 X509v3 Authority Key Identifier: keyid:1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:27:f0:3d:c8:2c:72:c0:62:0c:f2:36:ad:f5:88:99:3d:5c: 87:20:86:56:84:b9:4b:7e:05:83:55:61:8e:70:f9:ae:4b:d2: c1:b6:86:e1:69:82:89:71:62:b8:b0:57:0d:b9:93:c6:ae:a3: 62:f7:90:98:fe:ea:7d:e9:6f:a5:47:0a:8d:84:3e:71:5b:51: e1:62:64:d4:86:1a:0c:92:83:35:1b:eb:27:96:34:fb:ce:21: b8:2b:b5:c4:0a:21:94:9d:30:b0:d2:7b:ef:97:30:b1:c0:bc: ca:ac:59:52:f6:8e:f2:a2:8b:d2:59:c2:1f:b6:8a:6d:9f:eb: b6:80:33:ec:0a:d6:9f:f8:72:21:fc:ee:a8:33:55:3e:96:65: 66:f1:73:65:de:16:f1:51:1e:3b:f3:f8:0a:31:5a:12:d8:c4: 2c:5d:10:93:e4:6f:3d:4c:c0:05:fa:5c:cc:10:57:e4:51:40: 95:dd:e2:c6:8b:57:24:af:57:87:6e:dc:ef:2f:dd:25:fc:ff: 70:a6:7c:24:50:89:8b:36:f2:db:ff:85:5b:cd:8e:cb:71:2f: 7f:ae:1f:6e:0d:4f:ff:7b:1e:12:80:80:2b:8a:5e:39:b1:90: c6:b0:f3:13:98:e8:24:4a:8f:02:96:78:b5:a9:c1:c8:e8:dd: 9c:a5:cf:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwRjUxMTAvBgNVBAUTKDFFRDdCODdDRjU2QjhCMDBFRTE0M0U0Njk2Nzg1MDM4 MTRFNUZBNTMwHhcNMjUwODA4MjMyMjM2WhcNMjUwODE1MjMyMjM2WjAYMRYwFAYD VQQDEw02ODk2ODZiYy00MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yl9Vf6SxH4caEgtcA5uOg38bxBMiEtnCT4uTa7oV05oMvCQFAt0Ldc/Btl4 UPFlpKLqJk7BYHgoGII5WBxMuufVhPo/8hiQu+tbymxT9oQb0bb1YgUna9Vr3M6N VxTHxdqPxv06GnYF69S1hkYHKYLv/g1jpNJ8cN5DM66pI/RnCiY/jXDUB4INeZ+8 RNfdjLU8VSt2vgGrZ14YvUKZPZtQnGJN7YE6WWp8NfqM9Xv0AWZsk529bbHUHDO1 pKa/7RQ/WsqJCKnSCPsDcT4s6cO41sCU0hmhd5fZyFVGH+SOEddCaAfgAyMjIQAO GWOBOzRrAbHBVM8Xk0+DVr15oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkr/GxE hw9lUNlbvMXmEJx7C+qHMB8GA1UdIwQYMBaAFB7XuHz1a4sA7hQ+RpZ4UDgU5fpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzBGNS9ERjAxM0EzMkJF MjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3RHVGRDVHbG5oUU9CVGwt bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZTRmUFZyaXdEdUZENUdsbmhRT0JUbC1sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzBGNS9ERjAxM0EzMkJFMjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3 RHVGRDVHbG5oUU9CVGwtbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADJ/A9yCxywGIM8jat9YiZPVyHIIZWhLlLfgWDVWGOcPmuS9LBtobh aYKJcWK4sFcNuZPGrqNi95CY/up96W+lRwqNhD5xW1HhYmTUhhoMkoM1G+snljT7 ziG4K7XECiGUnTCw0nvvlzCxwLzKrFlS9o7yoovSWcIftoptn+u2gDPsCtaf+HIh /O6oM1U+lmVm8XNl3hbxUR478/gKMVoS2MQsXRCT5G89TMAF+lzMEFfkUUCV3eLG i1ckr1eHbtzvL90l/P9wpnwkUImLNvLb/4VbzY7LcS9/rh9uDU//ex4SgIAril45 sZDGsPMTmOgkSo8Clni1qcHI6N2cpc+1 -----END CERTIFICATE-----Generated at Sun Aug 10 13:46:25 2025 by rpki-client