$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: r8+USQrKVdFplifuhMWnKhdxpDTniT4OX7Qjtu0LBDo= Subject key identifier: 44:E9:47:AB:91:C8:4A:6E:27:25:D4:2B:5D:B9:0E:B6:90:F1:8C:E9 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BB1 Signing time: Sat 14 Jun 2025 18:48:51 +0000 Manifest this update: Sat 14 Jun 2025 18:48:51 +0000 Manifest next update: Sat 21 Jun 2025 18:48:51 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: NKr3HliSspubWrBWeRPCajYnpypxXCc+VddM2vbeALw=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3007 (0xbbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Jun 14 18:48:51 2025 GMT Not After : Jun 21 18:48:51 2025 GMT Subject: CN=684dc413-d7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c1:f9:6c:83:27:6c:d0:13:3b:3d:b5:88:a5: 8d:5a:0e:12:3c:66:16:98:1b:77:34:a7:30:cf:72: 2b:91:97:22:a2:a7:12:dc:3b:79:d7:c1:7e:eb:76: 95:59:83:59:cd:f0:26:66:d4:57:34:f2:b6:0b:9f: cf:92:2b:24:04:7c:fe:b9:88:2f:be:81:c6:9b:f5: 34:bd:5c:84:e0:af:d9:f0:85:f3:81:d2:d0:70:8e: 17:88:1e:b9:45:56:f8:b5:88:61:53:4f:21:8f:d2: 20:62:3c:a5:74:cb:1a:a4:1a:65:4d:e4:43:ea:e8: 37:bd:09:58:37:50:91:44:94:d4:5f:c0:2f:6c:46: 8e:34:fb:5d:2c:5f:be:d1:38:6b:ae:19:77:3e:7b: fb:d3:9d:01:f7:1e:87:cb:45:b0:b2:5a:ab:f5:78: 76:01:c4:c0:22:e2:f5:60:7f:50:10:32:b5:95:a1: 30:5b:13:c0:24:3a:da:e0:13:47:92:f6:4b:24:ec: 5c:1c:8a:7a:d7:51:93:99:8c:f1:9d:15:29:36:66: 2b:7a:66:b5:69:e7:31:15:e8:5e:f3:be:d0:08:ec: 74:47:b7:e7:26:97:14:07:d3:e6:83:1f:ae:36:85: 74:e6:4a:24:76:2c:54:fc:10:1f:93:78:7d:0e:bb: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E9:47:AB:91:C8:4A:6E:27:25:D4:2B:5D:B9:0E:B6:90:F1:8C:E9 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:c8:6b:5a:cc:7e:8f:c0:42:c0:cc:11:bb:37:9c:d1:c0:c5: 58:b3:f8:dd:5e:42:7d:9b:cb:ae:15:01:10:ee:95:e9:b1:6e: 69:48:1e:20:2d:5c:ef:ff:b3:5e:ae:16:43:55:44:b7:ba:5c: 4a:93:c5:01:ab:bd:aa:f6:b6:c4:3c:7c:63:e8:10:7b:0c:48: a8:8b:98:79:df:d4:f0:54:e6:07:3c:1a:8b:9f:f9:9e:8e:38: 5b:08:d5:17:cd:1a:90:e9:18:d6:8b:1b:19:58:49:ba:e7:db: 9b:f8:08:2d:12:ca:3a:93:15:9a:bf:36:f6:32:45:41:ee:3d: 10:bc:3f:58:78:c4:61:bf:46:79:1a:b9:ac:f5:e9:21:5a:2f: 49:9c:9e:87:8c:f3:44:a5:0b:25:95:e1:6f:a9:8a:e2:46:73: 2e:15:95:9b:1e:1b:2f:b0:34:66:e6:b3:42:f4:eb:80:b7:60: d3:1c:08:ae:6c:9b:8a:22:ee:93:03:1f:37:6d:ed:47:f0:3e: 85:a0:a2:52:3a:8a:14:92:d4:d3:85:bd:b5:90:2d:c1:0e:ef: 01:1b:b6:83:b6:cb:60:b0:85:0c:8a:ad:6b:1a:81:af:26:e6: 1d:b3:d3:10:15:58:f5:c3:00:50:b1:10:e9:ca:15:aa:2f:52: 08:32:cd:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwNjE0MTg0ODUxWhcNMjUwNjIxMTg0ODUxWjAYMRYwFAYD VQQDEw02ODRkYzQxMy1kN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMH5bIMnbNATOz21iKWNWg4SPGYWmBt3NKcwz3IrkZcioqcS3Dt518F+63aV WYNZzfAmZtRXNPK2C5/PkiskBHz+uYgvvoHGm/U0vVyE4K/Z8IXzgdLQcI4XiB65 RVb4tYhhU08hj9IgYjyldMsapBplTeRD6ug3vQlYN1CRRJTUX8AvbEaONPtdLF++ 0Thrrhl3Pnv7050B9x6Hy0Wwslqr9Xh2AcTAIuL1YH9QEDK1laEwWxPAJDra4BNH kvZLJOxcHIp611GTmYzxnRUpNmYrema1aecxFehe877QCOx0R7fnJpcUB9Pmgx+u NoV05kokdixU/BAfk3h9DruytwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETpR6uR yEpuJyXUK125DraQ8YzpMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3yGtazH6PwELAzBG7N5zRwMVYs/jdXkJ9m8uuFQEQ7pXpsW5pSB4g LVzv/7NerhZDVUS3ulxKk8UBq72q9rbEPHxj6BB7DEioi5h539TwVOYHPBqLn/me jjhbCNUXzRqQ6RjWixsZWEm659ub+AgtEso6kxWavzb2MkVB7j0QvD9YeMRhv0Z5 Grms9ekhWi9JnJ6HjPNEpQslleFvqYriRnMuFZWbHhsvsDRm5rNC9OuAt2DTHAiu bJuKIu6TAx83be1H8D6FoKJSOooUktTThb21kC3BDu8BG7aDtstgsIUMiq1rGoGv JuYds9MQFVj1wwBQsRDpyhWqL1IIMs0w -----END CERTIFICATE-----Generated at Sun Jun 15 09:37:47 2025 by rpki-client