$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: 432L/+nEvRpP34IZtX5wPgyqmjXY2Da8eEjmk7UJdBo= Subject key identifier: D2:68:BC:DB:74:72:68:C4:2C:25:A9:E7:F0:7E:46:F3:66:55:5F:93 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 261F Signing time: Fri 08 Aug 2025 15:46:55 +0000 Manifest this update: Fri 08 Aug 2025 15:46:55 +0000 Manifest next update: Fri 15 Aug 2025 15:46:55 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: MhBhoaEfAgws2OJjFqqWyFA/C+dyDZXrp4hr8R1u1Ws=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9779 (0x2633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Aug 8 15:46:55 2025 GMT Not After : Aug 15 15:46:55 2025 GMT Subject: CN=68961bef-020a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4f:ac:39:cc:39:ee:03:70:eb:51:94:6f:8b: 70:52:66:ab:e9:95:a9:98:c2:3b:c0:29:4b:90:de: fd:16:c2:d1:e6:ec:98:55:92:31:9c:a4:71:a1:5d: ea:0d:0d:c2:05:3e:52:59:9b:5b:64:4f:fb:2e:0e: 21:ae:df:4c:42:6a:e0:16:66:1e:68:b1:4c:01:35: aa:3f:12:ad:c0:14:60:26:3f:68:7b:f0:e3:f8:95: f7:23:de:0c:60:31:6f:49:47:db:38:d4:8f:dc:d1: 56:02:a2:cd:d0:7d:54:87:51:13:c8:0b:9a:68:12: 22:a7:dc:05:16:aa:c9:7c:2b:f8:0d:33:b6:50:68: a8:6c:20:2e:e2:20:f4:ff:1f:39:f2:ac:5e:16:ca: 0a:5a:be:49:f1:3f:64:8b:48:db:14:de:4a:79:7d: 2b:c3:62:3c:14:1b:b0:1b:ab:9a:20:50:a6:45:01: e5:20:98:66:76:81:06:48:0b:3e:1a:8a:a0:db:03: c1:09:49:7c:61:9f:d8:42:9b:2f:bc:4a:c2:7b:eb: 25:03:a0:52:fc:73:24:5e:33:04:e0:83:11:61:3a: 4d:1c:ab:88:b8:5c:8e:ed:5f:6f:d0:f6:65:ac:83: f0:29:36:36:f0:f7:e3:30:31:c8:50:24:20:20:3a: 37:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:68:BC:DB:74:72:68:C4:2C:25:A9:E7:F0:7E:46:F3:66:55:5F:93 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:9d:1b:8c:67:44:a9:e3:48:7f:1d:6f:5d:f8:25:1d:49:62: 3d:ea:27:39:2e:05:52:19:5f:1d:41:74:98:b4:97:20:bb:27: f4:3f:68:b8:b2:69:5c:2d:90:a3:b8:00:cf:45:4e:9b:c5:e0: db:b8:ec:be:9f:30:11:d7:80:89:13:a9:c3:fa:95:24:95:3a: 49:fd:85:0c:2e:58:ff:73:ee:40:5f:33:5f:cc:ba:40:0b:33: fe:67:b5:a2:ba:ca:ab:82:63:1c:83:b2:bb:cd:55:f4:51:05: d5:92:c8:eb:0b:dd:d0:5a:da:d7:74:b5:8e:c2:24:9e:30:c3: d0:f8:26:27:99:f0:cd:14:b5:17:ef:46:cd:e8:70:84:7f:6f: c9:61:66:a7:83:0b:b6:a3:d3:6f:e0:f2:20:0e:f9:b3:6e:3f: a5:0d:c7:af:57:0c:67:ed:81:6f:42:72:fb:52:d7:7b:9e:d8: 5b:f4:90:34:85:37:75:58:52:ce:16:4f:4e:9f:fc:67:74:91: 4e:5b:85:f9:bd:de:69:7a:8d:ac:13:fd:8b:c0:5f:8a:31:86: 04:ea:d5:6f:32:ba:12:88:d9:f4:19:5c:b4:39:2e:08:59:08: a2:76:c7:1c:37:ce:70:cf:de:da:9a:c4:d5:6e:f9:00:7f:a4: ff:b8:67:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwODA4MTU0NjU1WhcNMjUwODE1MTU0NjU1WjAYMRYwFAYD VQQDEw02ODk2MWJlZi0wMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4E+sOcw57gNw61GUb4twUmar6ZWpmMI7wClLkN79FsLR5uyYVZIxnKRxoV3q DQ3CBT5SWZtbZE/7Lg4hrt9MQmrgFmYeaLFMATWqPxKtwBRgJj9oe/Dj+JX3I94M YDFvSUfbONSP3NFWAqLN0H1Uh1ETyAuaaBIip9wFFqrJfCv4DTO2UGiobCAu4iD0 /x858qxeFsoKWr5J8T9ki0jbFN5KeX0rw2I8FBuwG6uaIFCmRQHlIJhmdoEGSAs+ Goqg2wPBCUl8YZ/YQpsvvErCe+slA6BS/HMkXjME4IMRYTpNHKuIuFyO7V9v0PZl rIPwKTY28PfjMDHIUCQgIDo3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJovNt0 cmjELCWp5/B+RvNmVV+TMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCinRuMZ0Sp40h/HW9d+CUdSWI96ic5LgVSGV8dQXSYtJcguyf0P2i4 smlcLZCjuADPRU6bxeDbuOy+nzAR14CJE6nD+pUklTpJ/YUMLlj/c+5AXzNfzLpA CzP+Z7WiusqrgmMcg7K7zVX0UQXVksjrC93QWtrXdLWOwiSeMMPQ+CYnmfDNFLUX 70bN6HCEf2/JYWangwu2o9Nv4PIgDvmzbj+lDcevVwxn7YFvQnL7Utd7nthb9JA0 hTd1WFLOFk9On/xndJFOW4X5vd5peo2sE/2LwF+KMYYE6tVvMroSiNn0GVy0OS4I WQiidsccN85wz97amsTVbvkAf6T/uGdr -----END CERTIFICATE-----Generated at Sat Aug 9 02:48:41 2025 by rpki-client