$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: Jbr2QUBoB9+xExQKc1Sf+04ER6syQT9oCOIrGXnwUqo= Subject key identifier: 2A:A1:20:27:77:E9:D4:CF:34:6E:E3:98:78:AA:48:90:71:C8:E0:68 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A11 Signing time: Tue 12 Aug 2025 20:04:48 +0000 Manifest this update: Tue 12 Aug 2025 20:04:48 +0000 Manifest next update: Tue 19 Aug 2025 20:04:48 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: z/hOyWdlbyKjY9PnnK0rh2m2QA0qut7p0PIe2snToTY=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Aug 12 20:04:48 2025 GMT Not After : Aug 19 20:04:48 2025 GMT Subject: CN=689b9e60-c8d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:35:39:c1:81:ae:ea:46:3f:1f:b4:2b:8b:73: c9:7d:b5:22:c3:eb:88:3b:46:dd:80:b6:da:fd:1b: 2c:14:3e:9a:38:f1:c9:28:6a:7d:93:11:97:7f:a8: 7b:d2:2c:2c:21:10:5f:da:3d:96:4d:71:46:1b:6a: 27:f8:62:3b:ce:a1:fd:54:bf:bf:74:52:15:cd:81: 63:9b:63:c6:ce:03:4c:5f:7b:a8:68:ac:1f:99:76: af:0f:5e:e5:c7:9e:6f:6e:f6:80:28:56:1a:c9:85: 30:89:bd:4e:7b:c0:99:07:6a:81:38:d7:67:95:c8: 73:a0:90:9c:fb:57:5e:25:e4:49:9f:40:4d:1c:42: 1a:3d:a8:ce:6f:78:9e:2d:aa:cf:6e:69:d4:75:2c: 68:39:c5:92:da:e3:a7:8a:b9:a9:eb:a1:f1:06:49: bd:a2:c0:50:48:e7:c9:f1:60:0e:0c:81:62:d5:00: fd:fc:a9:50:0f:0d:6b:98:26:7a:12:8b:a8:5a:11: ac:2a:3b:4b:5b:4a:e8:ac:7c:e2:90:f1:5c:c0:d2: 0e:20:95:74:67:fd:e4:d5:8e:ba:54:cd:fb:d7:91: ec:b3:0d:60:5b:d0:1b:f0:7c:37:f9:78:16:33:40: d2:92:b0:74:80:36:73:ee:28:dd:67:34:f9:a0:a8: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A1:20:27:77:E9:D4:CF:34:6E:E3:98:78:AA:48:90:71:C8:E0:68 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:a7:4c:b6:e9:1b:7e:a4:18:a8:9a:11:db:94:47:9f:2a:c4: b4:84:49:57:c2:ec:3c:8f:86:27:dd:44:67:2f:92:0f:8a:56: 6b:46:8e:66:13:86:9e:c1:02:28:ce:fc:37:65:0b:4a:ef:06: 02:10:4f:23:b7:ec:00:ef:57:1b:88:19:c0:6f:fa:20:57:0e: 93:91:7d:8e:06:f5:f6:9d:7d:e7:fc:c5:4c:74:95:eb:0c:ac: 8e:4c:90:24:62:a0:06:7a:8c:21:25:5e:07:57:3d:62:7b:99: 4a:6f:a1:34:2e:3b:a5:33:c2:7b:9f:9a:83:12:2c:15:31:72: c3:76:29:32:2f:72:b3:c2:62:57:67:c1:3d:76:e6:50:2e:da: 73:da:3b:46:21:e7:f3:a9:14:c8:4b:c7:d4:3e:d1:c2:25:1e: 10:8e:71:ba:39:3d:78:88:0c:66:95:db:37:3e:e4:46:a2:8f: 96:a7:b8:3a:ef:a5:e2:28:c3:1c:51:ec:d4:b3:f9:2e:93:5d: 6b:b2:8c:b8:aa:5b:ab:19:e2:86:80:ef:fe:46:c1:19:5c:51: 8e:c5:a9:79:aa:11:81:83:c4:a0:47:6f:72:88:8f:29:16:41: d8:75:9f:15:f2:3d:09:8c:d5:d1:d3:ad:17:86:03:5f:13:b9: fe:1e:ca:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwODEyMjAwNDQ4WhcNMjUwODE5MjAwNDQ4WjAYMRYwFAYD VQQDEw02ODliOWU2MC1jOGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszU5wYGu6kY/H7Qri3PJfbUiw+uIO0bdgLba/RssFD6aOPHJKGp9kxGXf6h7 0iwsIRBf2j2WTXFGG2on+GI7zqH9VL+/dFIVzYFjm2PGzgNMX3uoaKwfmXavD17l x55vbvaAKFYayYUwib1Oe8CZB2qBONdnlchzoJCc+1deJeRJn0BNHEIaPajOb3ie LarPbmnUdSxoOcWS2uOnirmp66HxBkm9osBQSOfJ8WAODIFi1QD9/KlQDw1rmCZ6 EouoWhGsKjtLW0rorHzikPFcwNIOIJV0Z/3k1Y66VM3715Hssw1gW9Ab8Hw3+XgW M0DSkrB0gDZz7ijdZzT5oKgMrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqhICd3 6dTPNG7jmHiqSJBxyOBoMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2p0y26Rt+pBiomhHblEefKsS0hElXwuw8j4Yn3URnL5IPilZrRo5m E4aewQIozvw3ZQtK7wYCEE8jt+wA71cbiBnAb/ogVw6TkX2OBvX2nX3n/MVMdJXr DKyOTJAkYqAGeowhJV4HVz1ie5lKb6E0LjulM8J7n5qDEiwVMXLDdikyL3KzwmJX Z8E9duZQLtpz2jtGIefzqRTIS8fUPtHCJR4QjnG6OT14iAxmlds3PuRGoo+Wp7g6 76XiKMMcUezUs/kuk11rsoy4qlurGeKGgO/+RsEZXFGOxal5qhGBg8SgR29yiI8p FkHYdZ8V8j0JjNXR060XhgNfE7n+Hsro -----END CERTIFICATE-----Generated at Tue Aug 12 22:52:06 2025 by rpki-client