$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: Uei8mbCm6f6/KNycFZIamvQnV34q3z1aScZjkr2XpWQ= Subject key identifier: 47:F4:74:1C:A9:54:F5:F1:BD:6E:A4:B2:64:4D:2A:DF:FB:71:5E:A6 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 044F Signing time: Mon 11 Aug 2025 00:24:46 +0000 Manifest this update: Mon 11 Aug 2025 00:24:46 +0000 Manifest next update: Mon 18 Aug 2025 00:24:46 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: CPnI4qkpYUg54e0u4qohX8bD2IZYiFzsmgXWq7jtZ3E=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Aug 11 00:24:46 2025 GMT Not After : Aug 18 00:24:46 2025 GMT Subject: CN=6899384e-bea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:92:d4:9d:c7:57:37:5c:77:9e:fa:2f:2b:1c: 59:c7:20:e8:bf:ba:be:80:68:a4:a4:8a:bc:47:e6: b4:be:bb:70:3d:72:97:79:79:f0:82:b1:3e:9d:fb: f6:0e:1a:76:a5:ba:1b:17:e5:c8:f4:3c:26:fa:dd: 06:a8:0c:cb:e3:66:02:7e:c5:4c:27:d5:74:2e:39: 10:cb:01:3c:7f:cc:4b:84:4e:8f:a2:a5:19:2d:85: 79:f8:c1:ca:f9:f3:42:2d:be:d7:0f:99:f1:cf:b4: a5:83:13:e0:f8:49:70:1a:6a:17:33:6b:1b:9a:29: dc:56:7d:2e:22:56:de:41:7f:7f:8d:68:01:23:af: 5f:7d:20:63:83:ab:60:4b:f0:f9:e8:af:75:bf:8f: cd:0f:83:4d:da:17:4a:a1:85:85:f2:4b:68:b0:fb: 3a:a5:3b:de:22:30:74:5b:cf:69:03:17:63:80:4c: c8:4d:45:f7:f6:ec:41:df:df:c7:3c:ee:14:43:0b: e0:ab:ca:05:62:57:3c:06:a5:ce:d6:63:6c:3b:e7: 7b:a3:a8:d0:63:7a:28:b3:ad:77:a0:91:5f:8a:06: ff:de:47:63:68:d6:62:94:84:71:35:cf:a5:f0:7d: 9a:d3:07:f3:f6:8d:ba:86:c5:64:6c:f5:ae:30:4a: 41:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F4:74:1C:A9:54:F5:F1:BD:6E:A4:B2:64:4D:2A:DF:FB:71:5E:A6 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d3:89:34:51:5c:81:14:ec:7c:f7:87:de:ab:91:b5:f8:37: 27:2c:5b:b2:e3:aa:d7:92:34:dc:46:02:1f:34:88:db:b4:42: 6d:18:83:90:80:99:3b:fa:3b:07:90:ee:e1:20:c2:b1:32:93: 9c:85:d3:a0:e6:61:eb:65:06:95:24:7e:5c:fa:4d:f8:d1:c5: 61:34:a3:18:c7:67:b1:7f:a1:cb:e2:50:66:f0:aa:3c:2f:2a: 09:0a:5c:db:d8:0a:e4:d6:dd:f0:b7:ba:4c:e1:31:bd:37:87: b7:b6:24:a9:ed:bc:66:74:3c:85:d0:2e:c3:69:78:ef:f9:4e: d1:8a:06:14:12:ef:ef:bb:43:48:bf:54:79:9f:11:76:8f:6b: fe:72:88:4a:25:c7:0c:b4:f5:70:06:71:71:e0:18:19:3d:ac: 0e:7f:ce:49:d6:b5:ea:66:fe:a8:14:a1:ba:ab:80:89:48:57: ff:5b:45:ad:3a:23:31:b2:5e:fb:0f:1f:a2:6e:bf:3b:a3:12: ae:3d:83:99:91:08:4f:cd:6a:2e:e7:77:59:e7:75:4d:bb:e9: d7:d8:ed:b1:bf:41:3e:56:fe:03:86:e2:1c:ac:73:dc:fc:2b: 6d:60:de:e8:d5:01:42:5f:6c:35:09:ce:5f:08:8e:9b:6b:90: 01:ba:7d:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwODExMDAyNDQ2WhcNMjUwODE4MDAyNDQ2WjAYMRYwFAYD VQQDEw02ODk5Mzg0ZS1iZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZLUncdXN1x3nvovKxxZxyDov7q+gGikpIq8R+a0vrtwPXKXeXnwgrE+nfv2 Dhp2pbobF+XI9Dwm+t0GqAzL42YCfsVMJ9V0LjkQywE8f8xLhE6PoqUZLYV5+MHK +fNCLb7XD5nxz7SlgxPg+ElwGmoXM2sbmincVn0uIlbeQX9/jWgBI69ffSBjg6tg S/D56K91v4/ND4NN2hdKoYWF8ktosPs6pTveIjB0W89pAxdjgEzITUX39uxB39/H PO4UQwvgq8oFYlc8BqXO1mNsO+d7o6jQY3oos613oJFfigb/3kdjaNZilIRxNc+l 8H2a0wfz9o26hsVkbPWuMEpBKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEf0dByp VPXxvW6ksmRNKt/7cV6mMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK04k0UVyBFOx894feq5G1+DcnLFuy46rXkjTcRgIfNIjbtEJtGIOQ gJk7+jsHkO7hIMKxMpOchdOg5mHrZQaVJH5c+k340cVhNKMYx2exf6HL4lBm8Ko8 LyoJClzb2Ark1t3wt7pM4TG9N4e3tiSp7bxmdDyF0C7DaXjv+U7RigYUEu/vu0NI v1R5nxF2j2v+cohKJccMtPVwBnFx4BgZPawOf85J1rXqZv6oFKG6q4CJSFf/W0Wt OiMxsl77Dx+ibr87oxKuPYOZkQhPzWou53dZ53VNu+nX2O2xv0E+Vv4DhuIcrHPc /CttYN7o1QFCX2w1Cc5fCI6ba5ABun2Q -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:41 2025 by rpki-client