$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: mdheFJChdVyH4MOFveS2QncZQjK4gh7NgSx8+dt8uN8= Subject key identifier: B4:35:A6:A4:7E:1D:13:6B:2C:DC:1C:55:0C:E2:CB:9A:4B:29:82:A3 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 01B1 Signing time: Mon 11 Aug 2025 03:25:20 +0000 Manifest this update: Mon 11 Aug 2025 03:25:20 +0000 Manifest next update: Mon 18 Aug 2025 03:25:20 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: EX2m1UMQ8AJWPPUhd/o9CfhEc0Kq7jU0/v8RMsxFQio=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Aug 11 03:25:20 2025 GMT Not After : Aug 18 03:25:20 2025 GMT Subject: CN=689962a0-eb23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:74:73:1d:d4:45:04:50:72:14:5b:8d:ba:27: 3b:e8:86:ec:6d:d0:70:fb:1c:90:eb:19:ed:f7:ad: 0a:ce:a0:dd:bb:61:c1:57:1c:0e:fa:ac:2e:54:85: 3e:64:01:a0:93:21:83:24:27:b8:9c:6b:8c:db:f2: ea:23:5f:96:39:2e:dc:74:39:00:ac:2f:3e:cb:be: d7:42:d1:53:6e:4f:07:c2:8a:2f:d7:53:83:07:dc: d7:85:dd:00:c2:c6:54:91:23:81:71:4a:4d:44:e7: 95:22:d7:b9:af:3e:48:7c:6b:31:8e:e7:65:7c:8d: b4:4d:f9:c8:55:25:b6:ee:95:00:2b:e2:85:61:b8: 17:e5:23:88:f8:38:28:f8:a2:8d:f0:d7:2d:20:b7: a9:5c:06:6d:a4:b7:57:6d:03:ec:53:c3:80:eb:b0: fc:0b:1c:d3:16:d0:ce:1a:8c:25:db:af:36:6d:87: 5a:e8:e2:96:14:ca:fd:90:41:1c:95:c9:45:76:b6: 77:8d:4f:18:58:ed:c2:cc:68:72:c0:18:3d:84:ce: f7:6c:78:4b:8c:52:8d:fc:d8:a7:40:ae:a9:81:3d: 85:fd:30:6f:97:c4:16:16:1b:84:9f:5e:01:cb:08: a1:15:dc:cd:12:43:81:d2:58:97:7c:38:8c:cf:7c: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:35:A6:A4:7E:1D:13:6B:2C:DC:1C:55:0C:E2:CB:9A:4B:29:82:A3 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:95:d0:7d:eb:69:e4:81:1b:fd:9c:30:6a:44:1e:75:76:d6: 99:4e:20:45:e0:d6:8e:bb:ad:3e:18:95:a5:7a:d9:2a:e0:92: bf:9b:75:2f:27:b2:cd:e0:6f:a7:33:4e:9a:64:b7:0f:6e:16: b3:48:ad:3d:05:ce:24:67:d8:e4:df:20:05:ba:cf:c6:4e:95: 9d:81:ba:ac:2e:c5:12:48:1a:ee:77:20:43:74:91:b1:4a:8f: 0c:de:4b:aa:93:b9:bf:2c:4b:70:c6:e3:eb:c5:d2:00:f0:2c: f9:7d:24:74:ac:2c:23:28:d9:e9:c2:47:e7:4e:f8:69:0b:9d: e2:c7:be:56:92:74:c2:93:d0:42:e8:94:f8:a8:05:07:b4:46: 3c:3b:7a:09:24:cf:6f:dc:37:71:30:0f:d3:46:13:8e:a8:e8: d1:a8:8e:39:e3:37:59:fc:33:bb:35:5e:8a:d7:b7:9f:0b:26: 75:d6:77:9d:13:b8:a7:21:05:50:3d:c4:ac:77:ab:68:c4:7a: 1a:a4:96:a8:a8:66:a4:2b:b5:50:3b:da:e1:ce:7f:3d:5c:f2: 9f:26:2b:f2:fd:a3:55:bb:d8:76:28:0b:3f:37:85:77:6c:ae: cf:b3:c2:b6:c8:39:10:70:9b:0f:fb:2d:65:f6:4f:4c:7f:22: 6b:56:bc:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwODExMDMyNTIwWhcNMjUwODE4MDMyNTIwWjAYMRYwFAYD VQQDEw02ODk5NjJhMC1lYjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HRzHdRFBFByFFuNuic76IbsbdBw+xyQ6xnt960KzqDdu2HBVxwO+qwuVIU+ ZAGgkyGDJCe4nGuM2/LqI1+WOS7cdDkArC8+y77XQtFTbk8Hwoov11ODB9zXhd0A wsZUkSOBcUpNROeVIte5rz5IfGsxjudlfI20TfnIVSW27pUAK+KFYbgX5SOI+Dgo +KKN8NctILepXAZtpLdXbQPsU8OA67D8CxzTFtDOGowl2682bYda6OKWFMr9kEEc lclFdrZ3jU8YWO3CzGhywBg9hM73bHhLjFKN/NinQK6pgT2F/TBvl8QWFhuEn14B ywihFdzNEkOB0liXfDiMz3zdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQ1pqR+ HRNrLNwcVQziy5pLKYKjMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEldB962nkgRv9nDBqRB51dtaZTiBF4NaOu60+GJWletkq4JK/m3Uv J7LN4G+nM06aZLcPbhazSK09Bc4kZ9jk3yAFus/GTpWdgbqsLsUSSBrudyBDdJGx So8M3kuqk7m/LEtwxuPrxdIA8Cz5fSR0rCwjKNnpwkfnTvhpC53ix75WknTCk9BC 6JT4qAUHtEY8O3oJJM9v3DdxMA/TRhOOqOjRqI454zdZ/DO7NV6K17efCyZ11ned E7inIQVQPcSsd6toxHoapJaoqGakK7VQO9rhzn89XPKfJivy/aNVu9h2KAs/N4V3 bK7Ps8K2yDkQcJsP+y1l9k9MfyJrVrwV -----END CERTIFICATE-----Generated at Tue Aug 12 22:48:16 2025 by rpki-client