$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: JAYIET3SP0IGBpJkcHOgDfHE9fNXherC9eH7HabOqRw= Subject key identifier: AB:AC:0D:97:0F:01:D4:27:45:DF:6B:45:08:88:8F:C6:2E:A5:86:85 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 3503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34D8 Signing time: Fri 08 Aug 2025 14:35:02 +0000 Manifest this update: Fri 08 Aug 2025 14:35:01 +0000 Manifest next update: Fri 15 Aug 2025 14:35:01 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: llAyIKWCAVEpBgKLbXbMiPC7AqdwNqhOnvD0uj2IuHE=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: d0P/BKes6SbSKV4r9lK1XjzU3f1Gv4sq1ihkJ2akzQw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: 1oolI04ZrhXaYmXgZvqSiMymHhXrDoJjC9cjKEp6I10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13571 (0x3503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Aug 8 14:35:01 2025 GMT Not After : Aug 15 14:35:01 2025 GMT Subject: CN=68960b15-5a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:83:cb:ef:e3:6a:e9:ae:9a:fc:82:30:c9:2c: 24:02:78:d5:3d:4a:b8:08:e6:a6:43:e1:67:e8:bf: 55:aa:26:8d:12:8e:98:2c:73:66:86:1e:08:13:8a: 6c:c5:9d:ff:0e:d3:23:f3:e7:3f:1f:b5:be:9d:51: 2b:1b:92:47:4e:3c:cf:26:2b:68:d9:e0:b1:b1:43: 51:bd:f8:3e:bf:0a:48:c2:08:0c:99:dd:91:34:bf: 00:6a:9f:8d:f9:79:bf:8a:6c:64:48:d5:b2:df:5c: e7:6f:e0:8f:75:27:5a:60:c9:4f:81:f2:14:bd:90: 17:61:df:a5:25:6f:19:fc:36:d5:e8:ca:a2:b6:87: a0:c7:12:c2:a7:10:e6:d8:6b:c5:01:8b:75:31:c3: 88:c9:55:b9:ab:ae:ef:2d:98:9d:5a:d4:a4:3d:39: ec:e0:9e:47:75:c5:c4:64:55:7f:4a:6f:af:9e:be: 4d:65:76:7d:5c:87:cf:f1:50:e4:6b:29:ed:30:bb: 24:b8:f7:9a:90:f2:a2:58:7b:2d:11:3c:5e:40:b5: 6b:42:71:10:24:8d:0b:b9:3d:44:8a:d2:70:65:39: fd:6a:af:de:82:4b:86:65:6c:0d:2b:00:6a:25:e5: 0d:be:2f:9a:35:0f:60:ae:74:f4:18:b0:c2:f4:30: ad:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AC:0D:97:0F:01:D4:27:45:DF:6B:45:08:88:8F:C6:2E:A5:86:85 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:1c:9a:55:52:3d:2c:86:45:4d:24:69:23:09:90:99:9a:90: 09:b9:e4:d3:ef:18:ee:22:d4:20:14:1b:dd:6b:4b:82:34:03: 10:fa:41:ba:86:a0:7f:01:2e:9d:54:05:05:7c:c8:7b:c7:1e: 52:01:93:a8:82:71:5f:40:4e:ac:19:68:bb:b4:3a:9d:92:6b: 07:da:6c:55:1b:3d:fe:4c:da:89:51:6a:f9:72:82:dd:5b:50: 78:d9:8f:53:11:1c:f7:71:b5:0e:ff:1f:76:73:e5:6c:ff:11: 79:a0:bd:fd:99:db:f0:37:d2:1a:61:04:83:ac:93:d8:69:25: 6c:f7:e0:80:a6:29:e7:b3:5e:07:d7:f8:2e:72:26:7d:27:86: 81:63:e9:a0:c9:35:b8:79:7e:e6:13:60:12:00:fe:d0:05:e1: 6c:da:6f:b1:c9:63:10:cb:67:60:a2:d7:59:16:3c:5d:86:70: af:ac:bf:85:34:16:48:9c:47:14:75:3c:79:4e:f1:11:ea:e8: e7:c2:a0:61:16:af:59:48:4a:47:18:a6:6b:51:34:26:94:e4: ab:c6:c5:44:f4:35:33:64:ce:1b:91:77:e2:4d:f9:bf:ea:34: da:96:6b:a6:ec:71:cf:0f:ff:bd:08:11:f0:eb:ba:b8:02:c4: 6e:5b:ed:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUwODA4MTQzNTAxWhcNMjUwODE1MTQzNTAxWjAYMRYwFAYD VQQDEw02ODk2MGIxNS01YTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYPL7+Nq6a6a/IIwySwkAnjVPUq4COamQ+Fn6L9VqiaNEo6YLHNmhh4IE4ps xZ3/DtMj8+c/H7W+nVErG5JHTjzPJito2eCxsUNRvfg+vwpIwggMmd2RNL8Aap+N +Xm/imxkSNWy31znb+CPdSdaYMlPgfIUvZAXYd+lJW8Z/DbV6MqitoegxxLCpxDm 2GvFAYt1McOIyVW5q67vLZidWtSkPTns4J5HdcXEZFV/Sm+vnr5NZXZ9XIfP8VDk ayntMLskuPeakPKiWHstETxeQLVrQnEQJI0LuT1EitJwZTn9aq/egkuGZWwNKwBq JeUNvi+aNQ9grnT0GLDC9DCtzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKusDZcP AdQnRd9rRQiIj8YupYaFMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxHJpVUj0shkVNJGkjCZCZmpAJueTT7xjuItQgFBvda0uCNAMQ+kG6 hqB/AS6dVAUFfMh7xx5SAZOognFfQE6sGWi7tDqdkmsH2mxVGz3+TNqJUWr5coLd W1B42Y9TERz3cbUO/x92c+Vs/xF5oL39mdvwN9IaYQSDrJPYaSVs9+CApinns14H 1/guciZ9J4aBY+mgyTW4eX7mE2ASAP7QBeFs2m+xyWMQy2dgotdZFjxdhnCvrL+F NBZInEcUdTx5TvER6ujnwqBhFq9ZSEpHGKZrUTQmlOSrxsVE9DUzZM4bkXfiTfm/ 6jTalmum7HHPD/+9CBHw67q4AsRuW+0/ -----END CERTIFICATE-----Generated at Sat Aug 9 15:14:38 2025 by rpki-client