$ rpki-client -vvf rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft File: hneZBT7JF0sRHLtGspf6ZH6YKqU.mft (raw, json) Hash identifier: d8b5e3seOSkktJJ92e2Bl7kEXYeO8uLCN+u9MMhrKoo= Subject key identifier: A3:EB:7F:BF:CF:6B:E0:8B:87:FC:A3:2B:46:6C:01:82:92:EE:38:E0 Authority key identifier: 86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 Certificate issuer: /CN=A91A00E4/serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft Manifest number: 8F Signing time: Thu 07 Aug 2025 07:03:43 +0000 Manifest this update: Thu 07 Aug 2025 07:03:43 +0000 Manifest next update: Thu 14 Aug 2025 07:03:42 +0000 Files and hashes: 1: hneZBT7JF0sRHLtGspf6ZH6YKqU.crl (hash: CvUHIdAC0PF5L/vABSdZKZFuuj7r7y0tbQw/E+GgBUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A00E4, serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Validity Not Before: Aug 7 07:03:43 2025 GMT Not After : Aug 14 07:03:42 2025 GMT Subject: CN=68944fcf-5062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:07:0b:b1:41:57:5e:f6:2c:cc:c4:36:fb:8f: 68:f5:1f:ae:1c:dd:b7:45:d8:60:6f:c1:1b:c0:c0: 91:e1:5f:22:f2:20:e4:89:fe:47:cf:b7:24:4b:b3: 8e:a0:4c:aa:f1:34:3b:44:f0:cb:c9:45:c9:6f:85: a3:70:57:2c:9a:a7:18:4d:af:a5:86:84:5d:57:ad: d4:6b:2e:ee:35:2a:53:ec:bd:22:c1:02:92:a6:1c: 45:6e:b7:bb:73:ab:d1:54:6f:3c:0b:29:e1:a7:3e: f5:ae:75:69:3c:32:89:44:f7:50:27:fc:cd:fb:37: 2a:a7:47:0b:36:c3:f4:7a:30:4b:71:54:80:5a:d6: 22:9c:53:ec:61:67:9c:43:3d:45:d4:85:8c:cf:09: fe:0e:7a:82:fc:c0:b6:16:4d:ca:7f:74:25:48:b0: 88:e0:8b:11:75:61:c3:0a:9f:95:17:de:45:b8:11: c5:1e:0e:c3:b9:02:86:34:51:5f:66:37:14:42:1e: 66:40:35:50:26:9b:4c:4c:03:8f:af:ff:5e:66:5d: 92:43:f8:16:56:a2:f7:02:f7:15:3f:98:98:93:3a: 10:c0:fd:47:62:28:62:ac:e4:90:0b:2a:ed:d3:31: b4:94:a7:32:5c:3c:29:da:d1:62:d0:b9:9b:7c:73: 6f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:EB:7F:BF:CF:6B:E0:8B:87:FC:A3:2B:46:6C:01:82:92:EE:38:E0 X509v3 Authority Key Identifier: keyid:86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:21:70:73:94:ad:6e:6e:cc:db:a9:0a:69:49:da:7f:2f:0c: 15:29:f9:79:d7:42:ff:e3:93:b5:bd:f9:58:0c:20:d4:9f:cc: d8:58:db:5a:58:f0:cd:04:58:3e:bc:d4:6c:8c:94:23:15:21: df:81:ef:1f:30:e8:60:0a:c0:09:9d:b0:d5:fa:b5:65:a3:db: 47:50:91:8f:dd:cd:4a:89:45:33:ed:fa:8e:2f:5e:f7:c7:16: c3:ee:c7:5b:7f:1b:c5:ab:b6:16:27:84:15:2e:21:f1:0f:26: 63:11:da:40:90:f9:26:e9:d5:0c:20:a5:94:53:28:3c:78:ce: a5:aa:9c:bf:63:3c:e1:b9:fb:a0:46:99:9a:8c:b7:76:b0:93: d9:bd:e1:cb:67:09:28:9f:7e:77:04:ce:f7:85:9f:94:5d:a6: 24:e1:76:c8:d7:ad:67:00:b3:f3:28:6f:f6:5f:d7:09:af:54: 98:f2:c9:60:4d:9a:c2:b1:63:2f:e1:97:ab:a5:6d:bf:59:3e: 01:a7:30:e3:dc:81:a9:5b:01:94:a7:88:9b:b9:47:55:00:e2: fc:e7:28:5a:7e:14:33:93:02:d3:04:6c:c2:c1:27:c1:e6:da: 43:e5:8c:4a:fe:3d:14:de:fb:76:4d:3a:01:59:45:74:68:7a: f6:b6:86:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwRTQxMTAvBgNVBAUTKDg2Nzc5OTA1M0VDOTE3NEIxMTFDQkI0NkIyOTdGQTY0 N0U5ODJBQTUwHhcNMjUwODA3MDcwMzQzWhcNMjUwODE0MDcwMzQyWjAYMRYwFAYD VQQDEw02ODk0NGZjZi01MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9wcLsUFXXvYszMQ2+49o9R+uHN23Rdhgb8EbwMCR4V8i8iDkif5Hz7ckS7OO oEyq8TQ7RPDLyUXJb4WjcFcsmqcYTa+lhoRdV63Uay7uNSpT7L0iwQKSphxFbre7 c6vRVG88Cynhpz71rnVpPDKJRPdQJ/zN+zcqp0cLNsP0ejBLcVSAWtYinFPsYWec Qz1F1IWMzwn+DnqC/MC2Fk3Kf3QlSLCI4IsRdWHDCp+VF95FuBHFHg7DuQKGNFFf ZjcUQh5mQDVQJptMTAOPr/9eZl2SQ/gWVqL3AvcVP5iYkzoQwP1HYihirOSQCyrt 0zG0lKcyXDwp2tFi0LmbfHNvIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPrf7/P a+CLh/yjK0ZsAYKS7jjgMB8GA1UdIwQYMBaAFIZ3mQU+yRdLERy7RrKX+mR+mCql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDBFNC81NjA4QTQ5ODlB NjUxMUVGOUY3QUIyMjZDNEY5QUUwMi9obmVaQlQ3SkYwc1JITHRHc3BmNlpINllL cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huZVpCVDdKRjBzUkhMdEdzcGY2Wkg2WUtxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDBFNC81NjA4QTQ5ODlBNjUxMUVGOUY3QUIyMjZDNEY5QUUwMi9obmVaQlQ3SkYw c1JITHRHc3BmNlpINllLcVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARIXBzlK1ubszbqQppSdp/LwwVKfl510L/45O1vflYDCDUn8zYWNta WPDNBFg+vNRsjJQjFSHfge8fMOhgCsAJnbDV+rVlo9tHUJGP3c1KiUUz7fqOL173 xxbD7sdbfxvFq7YWJ4QVLiHxDyZjEdpAkPkm6dUMIKWUUyg8eM6lqpy/Yzzhufug RpmajLd2sJPZveHLZwkon353BM73hZ+UXaYk4XbI161nALPzKG/2X9cJr1SY8slg TZrCsWMv4ZerpW2/WT4BpzDj3IGpWwGUp4ibuUdVAOL85yhafhQzkwLTBGzCwSfB 5tpD5YxK/j0U3vt2TToBWUV0aHr2toYp -----END CERTIFICATE-----Generated at Thu Aug 7 14:38:02 2025 by rpki-client