$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: gKuRtR2WNi2EHdQErXe26m3FHrPD8RizAl/OIuLzUw8= Subject key identifier: C4:E3:A6:8D:18:41:17:A2:A3:DB:9E:D4:7A:D8:7B:96:14:6E:86:8C Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 92 Signing time: Sat 09 Aug 2025 06:54:23 +0000 Manifest this update: Sat 09 Aug 2025 06:54:23 +0000 Manifest next update: Sat 16 Aug 2025 06:54:23 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: X1v+rNxzgPWfapM2CvSrKthBjQ29EvZp9RzavXFnCjw=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Aug 9 06:54:23 2025 GMT Not After : Aug 16 06:54:23 2025 GMT Subject: CN=6896f09f-49f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:9c:51:7f:fc:b3:c3:c0:6c:09:2a:52:e7: 49:88:21:93:5a:83:8e:94:99:a0:99:af:ca:ce:33: 13:13:0e:ff:ff:8a:fc:32:99:f8:c9:8b:43:d9:31: 8a:33:7f:1f:d1:6c:bb:e1:67:1b:a9:52:60:43:f9: a9:ea:3b:0e:07:01:33:fd:cb:b0:dc:61:54:cf:56: f5:0d:a7:79:9d:0c:3f:60:69:6c:e9:49:19:3e:09: 69:34:38:ad:e0:4a:3c:62:dd:33:f4:50:ce:e8:b4: 4c:c7:23:ce:1d:9e:bb:6c:b6:4f:58:25:ba:8f:58: 46:90:c8:27:a9:da:52:8e:8c:79:d7:cb:e0:e4:f0: 0f:e3:d7:4c:fb:34:ea:04:74:68:d8:67:66:1f:79: 94:96:6f:a7:15:2c:18:72:67:99:cc:2f:ae:12:38: 1e:01:de:25:ca:f7:20:08:d5:de:f9:c1:26:10:ef: 2a:12:d1:30:5b:61:53:15:fe:03:16:9f:31:b9:d5: 36:3d:f6:6c:d5:53:87:7c:51:2c:a0:94:ce:23:d5: 0d:ee:d5:34:3b:a9:50:63:6f:88:a1:ed:53:a9:33: d8:1a:8e:2e:a4:09:13:5b:1a:b3:5c:c8:01:f3:cc: 7d:86:bc:67:6c:38:1c:37:51:0d:e5:cd:dc:45:34: 26:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E3:A6:8D:18:41:17:A2:A3:DB:9E:D4:7A:D8:7B:96:14:6E:86:8C X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:6b:a2:6f:01:8f:d6:e1:22:a6:52:66:87:14:ed:9b:12:bd: 92:17:96:48:49:7d:c3:be:86:8a:b2:c4:96:4d:07:42:65:1b: 13:65:9e:05:fc:2f:84:a7:ab:16:96:f6:0b:7a:25:55:45:6f: 09:6b:77:3f:80:20:32:00:42:be:7a:cd:d9:cd:51:b9:73:df: 95:f7:74:87:6f:a5:1a:7d:ba:f0:3c:da:ac:f0:28:2c:51:68: 08:be:20:08:49:7b:22:b4:7c:a2:c3:6e:c4:4b:3d:1b:ba:df: bd:c1:7c:ee:10:e7:0d:01:9d:4b:7d:44:bd:29:56:3f:59:fc: c5:52:23:75:75:f7:c3:5f:d5:e5:7d:e7:6a:7c:b4:96:27:f8: b8:6a:02:b9:71:16:5f:97:07:28:84:1c:fa:c6:9a:05:1c:1d: 38:3b:ae:1b:b6:23:f5:56:8f:9b:47:0a:94:54:34:21:80:de: e2:3d:3c:61:53:40:f9:b3:5a:0d:e2:9b:6d:ee:fc:c3:2b:17: 1a:e6:9e:0d:b0:1c:97:76:3e:94:32:bd:7a:90:b2:ea:7d:7b: 6b:28:08:7a:7b:23:ad:75:0f:d6:c5:61:55:07:68:16:24:20: 73:ff:36:0c:1d:f3:47:1c:c6:63:a1:6d:24:fe:56:43:6f:86: f8:c4:da:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUwODA5MDY1NDIzWhcNMjUwODE2MDY1NDIzWjAYMRYwFAYD VQQDEw02ODk2ZjA5Zi00OWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBKcUX/8s8PAbAkqUudJiCGTWoOOlJmgma/KzjMTEw7//4r8Mpn4yYtD2TGK M38f0Wy74WcbqVJgQ/mp6jsOBwEz/cuw3GFUz1b1Dad5nQw/YGls6UkZPglpNDit 4Eo8Yt0z9FDO6LRMxyPOHZ67bLZPWCW6j1hGkMgnqdpSjox518vg5PAP49dM+zTq BHRo2GdmH3mUlm+nFSwYcmeZzC+uEjgeAd4lyvcgCNXe+cEmEO8qEtEwW2FTFf4D Fp8xudU2PfZs1VOHfFEsoJTOI9UN7tU0O6lQY2+Ioe1TqTPYGo4upAkTWxqzXMgB 88x9hrxnbDgcN1EN5c3cRTQmfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTjpo0Y QReio9ue1HrYe5YUboaMMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCra6JvAY/W4SKmUmaHFO2bEr2SF5ZISX3DvoaKssSWTQdCZRsTZZ4F /C+Ep6sWlvYLeiVVRW8Ja3c/gCAyAEK+es3ZzVG5c9+V93SHb6UafbrwPNqs8Cgs UWgIviAISXsitHyiw27ESz0but+9wXzuEOcNAZ1LfUS9KVY/WfzFUiN1dffDX9Xl fedqfLSWJ/i4agK5cRZflwcohBz6xpoFHB04O64btiP1Vo+bRwqUVDQhgN7iPTxh U0D5s1oN4ptt7vzDKxca5p4NsByXdj6UMr16kLLqfXtrKAh6eyOtdQ/WxWFVB2gW JCBz/zYMHfNHHMZjoW0k/lZDb4b4xNqR -----END CERTIFICATE-----Generated at Sat Aug 9 10:50:05 2025 by rpki-client