$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: UgDa3QNSsIWP0aPcS5Hj47GGx5P4piNxbC2GPKfQ2lA= Subject key identifier: 19:A2:48:FD:46:60:E4:6A:EE:AC:F0:7B:E9:A2:5A:EF:16:A1:5D:A0 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: BD Signing time: Mon 11 Aug 2025 06:07:41 +0000 Manifest this update: Mon 11 Aug 2025 06:07:40 +0000 Manifest next update: Mon 18 Aug 2025 06:07:40 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: 5kmsBsZoKWtTg8AHJwavd1oL3+pmtwQXTmlIsPtk82o=) 2: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: 0Cf8THprMTDVV2fZezKAdgIeiPKZ9IZrYmhz+7CeQ7s=) 3: 1E732B3A50E411F0ABDE271FC4F9AE02.roa (hash: 0rHzN504abmW8+5p4rthLyu5jui2Rhd2WfHqWrsiokA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Aug 11 06:07:40 2025 GMT Not After : Aug 18 06:07:40 2025 GMT Subject: CN=689988ad-53a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:00:d9:58:b2:bc:d8:25:12:78:93:c7:55: d7:9f:d2:4f:3c:39:17:a2:ff:7a:15:33:3f:74:43: d5:dc:c1:9a:39:fa:61:a5:df:c9:19:1a:06:a2:c0: 84:17:eb:19:b4:4b:0f:4d:d5:03:5d:19:b1:27:9d: 06:97:8b:aa:34:9e:d0:f2:6e:e3:bc:fd:33:df:87: 3a:48:69:37:d9:e2:25:77:7e:55:e5:fd:03:03:27: 8d:d0:b5:57:3c:86:00:21:00:d6:62:f7:7f:63:a4: db:7d:91:02:f0:e9:26:4e:8b:84:e7:6e:b4:29:32: 7f:5c:3f:2b:42:11:9c:b7:a1:32:1b:b8:a4:5b:46: ae:43:33:da:87:32:82:76:21:87:b5:2f:be:bd:ec: aa:9f:85:49:5b:6f:c2:11:86:e2:6c:2d:00:b0:35: e4:f3:f2:c4:8d:5f:fd:2f:d4:7d:d6:39:b9:83:b7: 8d:63:a9:ed:6a:b1:34:ad:98:46:c1:08:8b:34:c7: a6:48:16:a0:60:3e:14:97:26:1b:96:26:83:07:3d: bb:15:04:52:4e:65:f4:9f:54:a3:6c:13:dd:e0:ee: 28:15:47:3b:5a:b9:7f:f5:65:05:f6:1d:53:81:e5: 75:c8:05:05:5e:08:9c:94:3c:05:27:d3:53:d3:98: 48:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A2:48:FD:46:60:E4:6A:EE:AC:F0:7B:E9:A2:5A:EF:16:A1:5D:A0 X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:28:cd:19:32:2c:45:16:63:56:8c:c1:b7:75:a5:53:9a:15: 09:1c:7d:f4:ff:e5:8c:98:4e:2d:0b:65:59:2a:b4:fc:06:98: db:03:b6:5c:0a:a6:fb:0f:17:01:88:47:1b:93:0e:7b:61:8d: 74:b1:86:32:67:31:15:66:ed:73:f8:92:7f:59:c5:5e:73:47: 48:b3:22:e8:32:c1:e8:68:b1:e3:97:f1:0e:8d:d2:51:06:64: 7a:60:37:d5:a0:c5:39:bf:39:a9:a9:df:da:41:ca:fd:a2:f7: 1b:35:70:ec:fa:67:43:f9:5d:c9:f9:4b:c3:76:e3:59:2d:63: 12:a6:2e:e3:5e:fb:85:ad:a4:e4:c4:a2:c3:54:90:15:bc:21: 93:3a:0a:f3:9a:1d:03:b0:94:f4:e0:8e:14:f7:a2:0b:54:fd: 12:01:20:ac:54:e3:f5:cc:69:4e:9c:a1:7f:a3:b9:65:70:e0: 99:f6:72:ae:79:7e:9d:3c:60:6b:4a:94:3f:ce:b7:48:8d:4d: 76:87:b7:89:41:89:f7:be:2a:0b:91:b3:3d:2f:af:89:1f:35: 4f:3a:2a:51:49:74:02:81:4e:64:35:42:de:6b:7e:cf:1b:2b: 17:32:e9:05:47:e5:5f:44:e4:1a:be:4d:b9:f6:5d:5f:1f:16: 7b:1c:3f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjUwODExMDYwNzQwWhcNMjUwODE4MDYwNzQwWjAYMRYwFAYD VQQDEw02ODk5ODhhZC01M2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqMA2ViyvNglEniTx1XXn9JPPDkXov96FTM/dEPV3MGaOfphpd/JGRoGosCE F+sZtEsPTdUDXRmxJ50Gl4uqNJ7Q8m7jvP0z34c6SGk32eIld35V5f0DAyeN0LVX PIYAIQDWYvd/Y6TbfZEC8OkmTouE5260KTJ/XD8rQhGct6EyG7ikW0auQzPahzKC diGHtS++veyqn4VJW2/CEYbibC0AsDXk8/LEjV/9L9R91jm5g7eNY6ntarE0rZhG wQiLNMemSBagYD4UlyYbliaDBz27FQRSTmX0n1SjbBPd4O4oFUc7Wrl/9WUF9h1T geV1yAUFXgiclDwFJ9NT05hIxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmiSP1G YORq7qzwe+miWu8WoV2gMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHKM0ZMixFFmNWjMG3daVTmhUJHH30/+WMmE4tC2VZKrT8BpjbA7Zc Cqb7DxcBiEcbkw57YY10sYYyZzEVZu1z+JJ/WcVec0dIsyLoMsHoaLHjl/EOjdJR BmR6YDfVoMU5vzmpqd/aQcr9ovcbNXDs+mdD+V3J+UvDduNZLWMSpi7jXvuFraTk xKLDVJAVvCGTOgrzmh0DsJT04I4U96ILVP0SASCsVOP1zGlOnKF/o7llcOCZ9nKu eX6dPGBrSpQ/zrdIjU12h7eJQYn3vioLkbM9L6+JHzVPOipRSXQCgU5kNULea37P GysXMukFR+VfROQavk259l1fHxZ7HD9M -----END CERTIFICATE-----Generated at Wed Aug 13 02:19:01 2025 by rpki-client