$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: 4HBgVQkHlLpZwbC2qHFUlGepqLku88zd3eBSNLYQo68= Subject key identifier: 43:52:C0:92:E6:B1:4E:7C:AF:73:F3:72:D4:DC:67:AC:56:29:1D:4F Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 04D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04CF Signing time: Thu 07 Aug 2025 00:19:20 +0000 Manifest this update: Thu 07 Aug 2025 00:19:20 +0000 Manifest next update: Thu 14 Aug 2025 00:19:20 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: kzSyV/zMshTibohk1ta6slJXI0q0zRez/89Yqvvj1E8=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1236 (0x4d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Aug 7 00:19:20 2025 GMT Not After : Aug 14 00:19:20 2025 GMT Subject: CN=6893f108-55ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:d5:65:e8:25:08:c6:26:8a:08:a2:2f:6a: 74:bc:a3:18:fb:5c:49:c0:58:d3:11:5f:53:cf:13: e7:17:85:ce:0c:ec:b9:b6:70:6e:03:c9:24:b4:8f: 8e:a0:5f:68:19:68:f5:dc:1f:11:51:88:6b:21:c4: 5c:15:96:08:3f:6f:65:39:0f:91:12:f5:24:3b:a8: 94:c9:e7:c2:e8:dd:1f:22:cd:c6:9e:2f:9a:de:26: 99:7d:da:ba:4a:fd:f3:70:72:86:48:f2:39:e1:9f: 8b:44:6e:25:7b:cb:5d:a0:f3:50:2e:8a:fa:89:e2: 4d:59:f1:dc:82:6a:a4:d8:bc:b1:36:fd:7c:c1:b7: 51:ce:40:20:12:b3:d7:3d:36:cb:87:f7:0b:8a:1c: f3:99:65:ac:75:c9:0f:37:bf:c0:f4:e9:72:b2:e3: cc:d6:4d:57:4e:1c:de:aa:89:92:dd:b9:8e:86:6f: 62:03:55:56:10:3e:59:c5:2c:3a:57:2c:77:5e:67: 65:f8:f9:68:cc:88:64:04:a1:97:60:38:dd:62:2e: 08:ff:ae:2f:74:e7:0d:1e:e2:a5:fd:85:00:97:79: 07:04:a3:7d:51:63:00:c2:f6:1d:0c:c3:f5:39:b0: 62:f3:44:dc:02:ec:24:c6:fa:23:e1:a7:a1:59:a7: 28:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:52:C0:92:E6:B1:4E:7C:AF:73:F3:72:D4:DC:67:AC:56:29:1D:4F X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:a3:76:1a:01:84:78:b7:d8:2b:47:16:3c:31:dd:bc:56:9f: 63:c8:bd:a8:8a:e1:f6:24:00:4f:64:ec:fd:18:a3:4d:91:9b: 0b:44:40:a7:ea:fd:3b:13:57:15:22:9e:62:2a:d7:39:e2:72: 8d:5d:a2:f2:61:a0:66:ea:f3:a4:c7:13:44:9c:c0:f7:17:2a: 95:a7:a7:cf:7f:6e:05:53:22:e7:f1:f7:d1:35:29:56:17:b8: 7e:89:97:02:12:65:eb:64:80:59:a7:52:dd:c8:1b:45:db:28: 1b:92:2d:bb:e9:e4:14:89:a8:8e:68:b5:9e:37:93:e9:a4:8f: ee:ad:8f:20:f3:6a:e1:d4:e4:fb:bc:b6:4a:12:b7:cf:d2:71: 50:fb:0c:8a:9c:2d:f0:ff:b1:f8:3d:1c:5c:37:51:70:3c:78: 3c:a8:bd:47:60:c2:16:bb:91:50:86:9b:9e:d0:fa:72:fa:81: f6:02:c3:38:ad:47:2f:cd:72:95:a3:00:66:da:48:b2:39:73: c6:b2:ed:dc:d8:d7:4d:b4:a3:d1:ac:f0:e4:2b:37:ca:e0:a6: 60:02:b3:da:52:52:a9:09:04:cd:30:a6:af:b6:98:5d:81:73: 27:cb:86:11:50:72:cb:ab:5f:47:64:2e:c8:10:e0:9b:cd:91: b6:1c:ef:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUwODA3MDAxOTIwWhcNMjUwODE0MDAxOTIwWjAYMRYwFAYD VQQDEw02ODkzZjEwOC01NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ7VZeglCMYmigiiL2p0vKMY+1xJwFjTEV9TzxPnF4XODOy5tnBuA8kktI+O oF9oGWj13B8RUYhrIcRcFZYIP29lOQ+REvUkO6iUyefC6N0fIs3Gni+a3iaZfdq6 Sv3zcHKGSPI54Z+LRG4le8tdoPNQLor6ieJNWfHcgmqk2LyxNv18wbdRzkAgErPX PTbLh/cLihzzmWWsdckPN7/A9OlysuPM1k1XThzeqomS3bmOhm9iA1VWED5ZxSw6 Vyx3Xmdl+PlozIhkBKGXYDjdYi4I/64vdOcNHuKl/YUAl3kHBKN9UWMAwvYdDMP1 ObBi80TcAuwkxvoj4aehWacoRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENSwJLm sU58r3PzctTcZ6xWKR1PMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNo3YaAYR4t9grRxY8Md28Vp9jyL2oiuH2JABPZOz9GKNNkZsLRECn 6v07E1cVIp5iKtc54nKNXaLyYaBm6vOkxxNEnMD3FyqVp6fPf24FUyLn8ffRNSlW F7h+iZcCEmXrZIBZp1LdyBtF2ygbki276eQUiaiOaLWeN5PppI/urY8g82rh1OT7 vLZKErfP0nFQ+wyKnC3w/7H4PRxcN1FwPHg8qL1HYMIWu5FQhpue0Ppy+oH2AsM4 rUcvzXKVowBm2kiyOXPGsu3c2NdNtKPRrPDkKzfK4KZgArPaUlKpCQTNMKavtphd gXMny4YRUHLLq19HZC7IEOCbzZG2HO9u -----END CERTIFICATE-----Generated at Sat Aug 9 01:23:17 2025 by rpki-client