$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: jcB4JfsgrsAQUy9P4ug7TrAUVJW55ETLyABvJyCk2bw= Subject key identifier: 85:CE:58:C1:BD:F3:3E:73:22:48:AD:05:B8:B0:F5:B1:E1:7E:E5:15 Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 0650 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 064A Signing time: Sun 10 Aug 2025 22:42:16 +0000 Manifest this update: Sun 10 Aug 2025 22:42:15 +0000 Manifest next update: Sun 17 Aug 2025 22:42:15 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: DgmmfVx9xBhuxoUJ8Eu8zalBNxjsLYRKSyECNmFIpxc=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: tc+HUzngZ7VVMdvUKEWM7ZZWawGnaExqZ4p3l2kRuv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: Aug 10 22:42:15 2025 GMT Not After : Aug 17 22:42:15 2025 GMT Subject: CN=68992047-979a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3f:60:fa:4e:8b:70:4b:0a:da:ea:85:e2:72: 46:58:69:1f:0b:55:18:60:76:78:c6:07:31:a1:62: 7b:2e:8c:51:20:2c:7b:3a:fd:17:31:02:82:e0:8c: c2:05:a2:90:c3:e1:db:54:bc:74:44:f1:e9:2e:82: c3:be:24:78:d0:9f:93:5c:67:f2:aa:70:35:88:22: 6b:c1:6a:f4:8e:be:ab:be:c9:4a:5b:2b:f5:59:8d: d6:76:5a:7f:91:af:5a:09:e4:98:0c:63:73:14:13: 90:e1:21:da:cf:07:a0:35:07:3d:dc:10:1d:b5:a4: 38:61:80:01:90:82:1c:b7:e2:ea:d1:c5:99:e3:b6: fd:2b:6e:2d:09:f5:5e:ef:4e:fc:70:fc:ed:80:ba: 92:65:15:82:6a:9f:55:b7:43:d9:1a:4c:51:15:f6: 42:8b:8b:4e:2e:e9:57:70:ab:9f:23:d7:65:22:2e: a9:73:5f:59:a9:58:5d:aa:dc:23:5f:4f:19:e1:64: 7c:2d:45:98:46:10:ae:f0:f4:69:16:a0:02:6e:51: 2d:e4:32:13:bf:e8:16:48:11:1f:e5:f5:15:2a:a1: a6:61:8c:d5:d9:ca:d9:8e:91:39:1f:c4:ae:3d:32: b4:62:14:e9:94:8b:44:ed:b7:1e:8f:9a:8e:64:73: ef:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CE:58:C1:BD:F3:3E:73:22:48:AD:05:B8:B0:F5:B1:E1:7E:E5:15 X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:fc:43:d7:ca:d2:2f:aa:44:55:e7:b6:35:cc:73:5d:3b:5d: 67:aa:ba:88:e2:17:fe:7a:fc:f7:42:d5:3e:a1:04:8a:8d:36: b3:26:4b:6a:d8:98:50:0f:c0:c1:fd:b4:6d:da:48:85:d2:c3: 4d:63:ae:41:c0:bf:55:bb:a3:04:16:d0:40:cc:ae:82:ce:89: 98:c0:8b:e9:2e:53:46:05:af:1b:32:6a:6d:12:de:f5:55:16: 15:04:1c:7e:59:98:db:88:2c:2a:11:ea:b6:2f:cf:f4:08:c2: 57:38:95:a1:a1:1c:af:cc:d1:e4:7a:ed:5e:50:22:20:88:d9: b7:b7:4a:1a:fa:be:24:c6:c3:1b:3c:6e:9b:0e:14:2b:12:1d: 5c:85:d0:e1:48:ee:e2:d7:64:94:c6:bc:a4:93:be:14:2a:41: 84:ca:14:81:42:09:f6:87:fb:13:2f:ba:2d:9b:21:cf:5c:50: 07:a8:b0:ab:d2:df:72:6c:b0:1d:77:3f:5f:59:67:0f:95:72: 7b:18:96:ee:84:89:9b:06:73:a6:2b:49:61:9c:4d:e7:eb:85: 53:9f:6f:ae:7e:90:2d:bf:ae:2d:55:b5:95:73:e8:6b:ab:49: 9d:9e:51:d9:08:3a:1d:72:d0:69:04:5e:47:83:62:83:1a:3a: fa:67:d8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjUwODEwMjI0MjE1WhcNMjUwODE3MjI0MjE1WjAYMRYwFAYD VQQDEw02ODk5MjA0Ny05NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT9g+k6LcEsK2uqF4nJGWGkfC1UYYHZ4xgcxoWJ7LoxRICx7Ov0XMQKC4IzC BaKQw+HbVLx0RPHpLoLDviR40J+TXGfyqnA1iCJrwWr0jr6rvslKWyv1WY3Wdlp/ ka9aCeSYDGNzFBOQ4SHazwegNQc93BAdtaQ4YYABkIIct+Lq0cWZ47b9K24tCfVe 7078cPztgLqSZRWCap9Vt0PZGkxRFfZCi4tOLulXcKufI9dlIi6pc19ZqVhdqtwj X08Z4WR8LUWYRhCu8PRpFqACblEt5DITv+gWSBEf5fUVKqGmYYzV2crZjpE5H8Su PTK0YhTplItE7bcej5qOZHPv0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXOWMG9 8z5zIkitBbiw9bHhfuUVMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5/EPXytIvqkRV57Y1zHNdO11nqrqI4hf+evz3QtU+oQSKjTazJktq 2JhQD8DB/bRt2kiF0sNNY65BwL9Vu6MEFtBAzK6CzomYwIvpLlNGBa8bMmptEt71 VRYVBBx+WZjbiCwqEeq2L8/0CMJXOJWhoRyvzNHkeu1eUCIgiNm3t0oa+r4kxsMb PG6bDhQrEh1chdDhSO7i12SUxrykk74UKkGEyhSBQgn2h/sTL7otmyHPXFAHqLCr 0t9ybLAddz9fWWcPlXJ7GJbuhImbBnOmK0lhnE3n64VTn2+ufpAtv64tVbWVc+hr q0mdnlHZCDodctBpBF5Hg2KDGjr6Z9iO -----END CERTIFICATE-----Generated at Mon Aug 11 07:48:39 2025 by rpki-client