$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: oFjgMRkfLfdx/o/oBmXyNbNYdfu5VX71DkNamA54cK4= Subject key identifier: E4:F1:D4:05:11:56:BB:EE:AF:2C:8B:CA:31:43:A9:91:A9:51:53:17 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 01A0 Signing time: Thu 07 Aug 2025 03:48:00 +0000 Manifest this update: Thu 07 Aug 2025 03:48:00 +0000 Manifest next update: Thu 14 Aug 2025 03:48:00 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: DO58JDJzja9YKlVKsK5VD0Lkc7DNJuJ+Q+Wr1MOWjf8=) 2: C369BA98260D11F082934618C4F9AE02.roa (hash: Iy42QwXSYupuqL3QvzsRCg121JGBmvoKUxVedTulj7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Aug 7 03:48:00 2025 GMT Not After : Aug 14 03:48:00 2025 GMT Subject: CN=689421f0-d74a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:57:c0:9b:13:0d:0c:2e:dc:d1:85:1f:80:48: d7:ea:a1:4d:f0:15:9e:e0:fb:a3:c4:ff:85:32:91: a4:db:ba:d3:66:7a:8b:a2:6f:70:5a:d4:cc:ad:6f: 29:58:47:64:37:6d:a6:85:f2:2e:20:ff:e7:54:cd: d8:3e:af:08:35:80:2d:3f:87:46:f7:84:d7:b1:f7: 4e:d4:0f:63:e4:0a:7a:24:50:b5:d7:98:d8:24:3c: 37:4f:08:41:e5:23:7c:3d:dc:80:53:b2:22:f7:0b: 56:4c:b5:00:12:01:fc:16:80:a6:e8:6e:2a:dd:51: 29:87:ef:79:86:32:7f:33:4f:64:ad:c4:9e:db:35: ac:03:fe:64:74:c0:02:e5:70:e4:58:6d:c8:15:4a: 06:9d:ee:9b:55:67:a6:c5:2a:20:4d:1f:16:bc:80: 02:77:01:e5:df:83:aa:98:70:dd:5e:12:df:5b:7e: 2b:e7:32:93:45:e9:95:b4:3c:e7:88:4e:60:41:81: 3b:0e:c9:a4:42:6f:89:f0:f0:35:6e:f5:d5:57:95: 63:87:8b:96:ad:88:c6:1a:07:19:99:d9:34:a3:11: 4d:22:21:64:29:43:55:dd:94:74:d5:1d:a4:6b:33: da:63:0e:a2:ff:c2:e4:78:36:4b:bc:8d:4d:2a:a3: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F1:D4:05:11:56:BB:EE:AF:2C:8B:CA:31:43:A9:91:A9:51:53:17 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:b6:cb:36:0a:ab:08:69:b5:cb:f0:70:91:f3:e3:50:4d:21: 7c:66:ad:0f:af:91:d1:f5:1b:06:2d:4b:2f:85:3b:9c:6c:f6: df:0a:61:4e:b9:b6:c8:26:9b:6e:d6:c5:78:ff:bc:a9:c9:3d: 53:1c:f7:cb:ce:eb:51:e9:eb:b1:6f:2c:4c:80:f5:fd:bd:ef: 53:80:1e:55:05:da:fd:fe:86:b8:0b:6b:9c:55:62:2a:a5:e5: 14:2c:90:a6:d2:cf:bb:31:58:ca:1a:83:a3:5d:df:8e:56:f2: f8:46:10:a9:d1:83:bb:94:ad:41:cc:02:90:87:2b:91:de:2e: 20:8f:2d:f8:0e:6c:24:57:12:b3:34:69:68:49:00:02:33:08: 40:bd:ec:e5:5a:ca:81:4e:14:62:ed:b4:54:e5:6d:c5:03:bb: a1:65:38:9e:d6:14:df:65:b3:d4:46:a2:3f:07:b8:c2:af:60: 99:aa:6c:3d:22:97:bd:35:cd:8e:5d:c7:92:4c:af:dc:6c:db: 21:ab:2b:5a:dc:30:d2:e1:ff:61:22:31:aa:74:3f:6c:0f:44: 4a:84:6c:a7:2f:49:7c:f7:b7:00:02:13:23:f2:9e:49:44:3c: 7e:37:da:33:28:91:4d:38:c9:95:63:8c:41:29:40:6e:9c:d5: 46:70:cf:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUwODA3MDM0ODAwWhcNMjUwODE0MDM0ODAwWjAYMRYwFAYD VQQDEw02ODk0MjFmMC1kNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlfAmxMNDC7c0YUfgEjX6qFN8BWe4PujxP+FMpGk27rTZnqLom9wWtTMrW8p WEdkN22mhfIuIP/nVM3YPq8INYAtP4dG94TXsfdO1A9j5Ap6JFC115jYJDw3TwhB 5SN8PdyAU7Ii9wtWTLUAEgH8FoCm6G4q3VEph+95hjJ/M09krcSe2zWsA/5kdMAC 5XDkWG3IFUoGne6bVWemxSogTR8WvIACdwHl34OqmHDdXhLfW34r5zKTRemVtDzn iE5gQYE7DsmkQm+J8PA1bvXVV5Vjh4uWrYjGGgcZmdk0oxFNIiFkKUNV3ZR01R2k azPaYw6i/8LkeDZLvI1NKqO6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTx1AUR VrvuryyLyjFDqZGpUVMXMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVtss2CqsIabXL8HCR8+NQTSF8Zq0Pr5HR9RsGLUsvhTucbPbfCmFO ubbIJptu1sV4/7ypyT1THPfLzutR6euxbyxMgPX9ve9TgB5VBdr9/oa4C2ucVWIq peUULJCm0s+7MVjKGoOjXd+OVvL4RhCp0YO7lK1BzAKQhyuR3i4gjy34DmwkVxKz NGloSQACMwhAvezlWsqBThRi7bRU5W3FA7uhZTie1hTfZbPURqI/B7jCr2CZqmw9 Ipe9Nc2OXceSTK/cbNshqyta3DDS4f9hIjGqdD9sD0RKhGynL0l897cAAhMj8p5J RDx+N9ozKJFNOMmVY4xBKUBunNVGcM/m -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:53 2025 by rpki-client