$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft File: hDJHwKwYH8NmZqRDchryHZ2mUNo.mft (raw, json) Hash identifier: m3hZ5TWp+KD4O58zrBRZmCusfWPf5JL+1GGxF8OEpb4= Subject key identifier: 81:74:CA:53:76:5E:20:ED:F9:09:0D:E1:09:48:1E:F2:DB:3E:EF:21 Authority key identifier: 84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA Certificate issuer: /CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft Manifest number: E8 Signing time: Tue 05 Aug 2025 05:54:09 +0000 Manifest this update: Tue 05 Aug 2025 05:54:09 +0000 Manifest next update: Tue 12 Aug 2025 05:54:09 +0000 Files and hashes: 1: hDJHwKwYH8NmZqRDchryHZ2mUNo.crl (hash: yx/W+dv8wP0KubG7qlueaSkI8TapS+lBdcLOt5mKnWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Validity Not Before: Aug 5 05:54:09 2025 GMT Not After : Aug 12 05:54:09 2025 GMT Subject: CN=68919c81-8c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:8b:b5:81:90:41:a1:06:07:ce:25:7d:ba: 75:bc:15:63:57:41:43:c1:e8:c5:ed:72:98:4d:4a: a0:c4:bc:7f:8d:f6:ac:a7:e4:24:c1:fc:2a:41:ae: e7:00:29:f8:23:34:48:d7:50:ba:8b:3c:5f:b4:11: 1e:34:9e:49:70:8e:16:13:f8:22:19:f7:a1:25:21: 65:e9:28:0d:fe:1c:a0:ec:49:72:49:39:8e:2d:9f: 0e:c3:d6:48:c3:1f:88:28:91:33:29:29:62:cb:43: 71:7b:6d:e6:03:47:1e:df:62:34:78:0c:4d:b0:46: 3f:95:ea:52:d7:47:1a:64:bd:a7:94:9c:f5:c6:09: 44:d3:a5:9a:3c:72:19:8e:f7:9a:35:ca:f1:fe:88: 25:f0:ce:c2:6a:f7:86:bb:f2:8c:40:91:1f:66:6e: f0:9f:38:8d:96:7b:6f:bf:43:b8:c7:c1:87:6c:5a: 40:d0:ef:8c:c7:16:1b:86:01:79:dc:05:8b:4b:d3: 74:0d:fe:16:84:44:85:68:97:70:f4:a8:b9:d6:68: 58:71:9f:bc:9d:3e:4b:1a:3d:d7:6d:f5:04:5a:01: f3:b0:9d:e9:87:8f:15:0e:97:6c:8a:9e:69:1b:ee: ec:00:c8:f1:af:ec:6a:de:27:ee:96:63:e8:38:d3: 9c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:74:CA:53:76:5E:20:ED:F9:09:0D:E1:09:48:1E:F2:DB:3E:EF:21 X509v3 Authority Key Identifier: keyid:84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a8:a3:d6:64:b0:82:12:92:2b:c7:90:4e:3e:c5:7a:81:0f: 94:93:f7:b0:af:a9:c3:2a:8c:47:61:8c:64:1c:54:18:7f:05: 30:43:85:b1:23:27:68:89:a0:c9:c3:69:96:8c:eb:da:19:d2: 11:37:ec:76:2f:f7:36:f6:45:e7:a1:5e:ef:d7:85:62:0d:11: 4a:40:d8:42:fb:94:c4:0e:6e:39:07:41:0d:67:43:13:1a:54: a8:23:0a:0f:98:1d:df:bc:fd:a7:6b:ee:0a:77:04:00:44:25: 59:7b:f1:ca:47:d4:b1:e2:d1:6d:82:4c:8c:dc:2d:57:e9:60: ac:ad:84:a8:44:c0:8e:dd:b2:21:8b:d1:0a:f9:b7:43:08:45: 44:90:79:dd:cc:ce:82:a9:be:24:01:f2:e4:83:c8:ae:6b:1e: 46:55:9d:1a:a3:cc:bb:30:97:63:12:12:5c:60:e8:26:e0:18: 25:39:0c:71:30:71:ef:ef:a6:ee:49:3f:fe:31:60:10:4d:af: e1:97:2b:49:55:db:08:82:84:cd:2b:1c:78:79:32:f8:6b:60: e1:a3:6b:87:af:03:7b:43:d0:77:6a:e9:06:4a:5f:8e:e8:c0: c2:71:64:5e:7a:da:73:62:9a:a7:3d:d7:80:12:3f:5a:3b:ff: 34:61:49:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDg0MzI0N0MwQUMxODFGQzM2NjY2QTQ0MzcyMUFGMjFE OURBNjUwREEwHhcNMjUwODA1MDU1NDA5WhcNMjUwODEyMDU1NDA5WjAYMRYwFAYD VQQDEw02ODkxOWM4MS04YzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVuLtYGQQaEGB84lfbp1vBVjV0FDwejF7XKYTUqgxLx/jfasp+QkwfwqQa7n ACn4IzRI11C6izxftBEeNJ5JcI4WE/giGfehJSFl6SgN/hyg7ElySTmOLZ8Ow9ZI wx+IKJEzKSliy0Nxe23mA0ce32I0eAxNsEY/lepS10caZL2nlJz1xglE06WaPHIZ jveaNcrx/ogl8M7CaveGu/KMQJEfZm7wnziNlntvv0O4x8GHbFpA0O+MxxYbhgF5 3AWLS9N0Df4WhESFaJdw9Ki51mhYcZ+8nT5LGj3XbfUEWgHzsJ3ph48VDpdsip5p G+7sAMjxr+xq3ifulmPoONOctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIF0ylN2 XiDt+QkN4QlIHvLbPu8hMB8GA1UdIwQYMBaAFIQyR8CsGB/DZmakQ3Ia8h2dplDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9CQzUyMUE1NDE5 MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4Tm1acVJEY2hyeUhaMm1V Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hESkh3S3dZSDhObVpxUkRjaHJ5SFoybVVOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9CQzUyMUE1NDE5MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4 Tm1acVJEY2hyeUhaMm1VTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaqKPWZLCCEpIrx5BOPsV6gQ+Uk/ewr6nDKoxHYYxkHFQYfwUwQ4Wx IydoiaDJw2mWjOvaGdIRN+x2L/c29kXnoV7v14ViDRFKQNhC+5TEDm45B0ENZ0MT GlSoIwoPmB3fvP2na+4KdwQARCVZe/HKR9Sx4tFtgkyM3C1X6WCsrYSoRMCO3bIh i9EK+bdDCEVEkHndzM6Cqb4kAfLkg8iuax5GVZ0ao8y7MJdjEhJcYOgm4BglOQxx MHHv76buST/+MWAQTa/hlytJVdsIgoTNKxx4eTL4a2Dho2uHrwN7Q9B3aukGSl+O 6MDCcWReetpzYpqnPdeAEj9aO/80YUnm -----END CERTIFICATE-----Generated at Wed Aug 6 10:13:32 2025 by rpki-client