$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: yFEotSRHbz9sYBQ56VMUJzqwuMSBECgD9+6dfMmya4Q= Subject key identifier: 8E:75:C1:89:23:F0:6E:62:2B:69:BD:CE:25:07:58:F9:2C:B6:23:FD Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0214 Signing time: Sat 09 Aug 2025 02:35:00 +0000 Manifest this update: Sat 09 Aug 2025 02:34:59 +0000 Manifest next update: Sat 16 Aug 2025 02:34:59 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: TR5LKm4m8gY5q5gltp8OYLSxPHwsz+Qfw8VXG53GzW8=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: d2fZwjk/kReWJf7o+GQOO5RAjKTwIQ1B0ld4lPrAcBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Aug 9 02:34:59 2025 GMT Not After : Aug 16 02:34:59 2025 GMT Subject: CN=6896b3d3-d569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:61:98:c2:01:37:d2:9d:03:29:ba:5f:78:c5: aa:ec:09:51:a4:a7:07:90:ea:c7:26:04:09:1b:9b: 3c:6c:fc:94:83:4c:fd:04:a0:d4:89:ca:ab:8b:e3: 5e:8b:ac:71:7c:b5:31:26:5b:a0:bc:5f:72:66:95: 60:3a:37:c5:14:b0:6f:4b:90:c9:cb:c1:d4:54:ad: 4c:6a:2b:25:d4:79:18:bf:0c:d2:45:38:aa:67:97: ea:26:bb:4a:d1:da:18:51:97:bf:cc:a6:20:80:cf: 7a:32:9e:91:51:e9:b3:c5:55:02:0c:7d:5d:4b:44: 7f:f8:ba:7d:9a:ff:57:36:a8:31:1c:57:a3:c1:f1: 05:78:c9:a3:d6:b9:8b:6b:79:8d:e4:1f:c9:c8:c2: 4a:b4:9e:40:4c:a2:6b:f7:00:0a:e1:02:c1:ca:bc: 8a:d0:66:18:6c:f4:c1:68:86:ac:8d:42:ac:a2:e9: 2a:28:59:ca:e6:e6:cb:af:c6:7e:36:5a:2a:d7:67: 75:02:03:7b:c9:31:8e:38:1f:b5:f0:97:96:f8:a5: aa:29:33:03:5c:27:fd:8f:1a:8a:8e:f2:59:b3:1e: 59:0f:90:50:4d:1e:32:d2:20:e5:3f:15:36:8b:2f: df:6f:92:e4:81:ab:8e:be:96:38:48:08:2a:0a:fc: ad:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:75:C1:89:23:F0:6E:62:2B:69:BD:CE:25:07:58:F9:2C:B6:23:FD X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ff:b9:78:57:f8:1c:a2:44:d1:56:f0:32:a5:de:ee:12:a0: b0:88:9c:d2:63:47:84:86:1d:f4:73:44:f1:3e:16:38:fd:5b: ea:9c:be:88:09:c7:55:02:87:d1:e5:85:4e:ea:84:5a:03:b9: d6:85:ae:dd:5d:43:b9:9b:af:de:ad:ef:e0:7b:80:28:09:e2: 15:d0:49:c6:7c:c8:15:08:c1:9d:dd:d0:1b:e0:51:db:ab:b9: 53:cb:55:25:a7:98:06:65:08:11:ab:4a:92:d9:9e:de:a9:a8: 3c:ee:20:64:42:b9:94:3b:26:15:ca:e9:91:87:3e:f6:f5:ab: 39:8a:f6:eb:ae:47:00:eb:9d:e3:b9:c7:5f:9b:fd:94:60:44: e3:22:6b:c2:3a:7d:a9:e6:d4:e6:cd:81:9c:0f:e4:f5:77:4e: 00:ed:7f:34:79:08:5c:bb:e1:89:eb:6d:f1:b1:a1:74:34:00: 02:27:33:53:21:b0:89:de:63:fa:6e:84:af:c0:0b:00:f9:d4: 47:1a:7c:3d:c3:ff:b4:0c:27:66:77:f9:54:a9:3f:fe:d1:76: d9:b6:8d:5c:8c:7c:57:a8:36:89:35:9c:45:ac:54:3c:f7:b7: f9:10:fe:17:29:fd:7e:13:13:9c:88:f3:b4:8a:f0:d0:f2:11: 4b:40:b9:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwODA5MDIzNDU5WhcNMjUwODE2MDIzNDU5WjAYMRYwFAYD VQQDEw02ODk2YjNkMy1kNTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mGYwgE30p0DKbpfeMWq7AlRpKcHkOrHJgQJG5s8bPyUg0z9BKDUicqri+Ne i6xxfLUxJlugvF9yZpVgOjfFFLBvS5DJy8HUVK1Maisl1HkYvwzSRTiqZ5fqJrtK 0doYUZe/zKYggM96Mp6RUemzxVUCDH1dS0R/+Lp9mv9XNqgxHFejwfEFeMmj1rmL a3mN5B/JyMJKtJ5ATKJr9wAK4QLByryK0GYYbPTBaIasjUKsoukqKFnK5ubLr8Z+ Nloq12d1AgN7yTGOOB+18JeW+KWqKTMDXCf9jxqKjvJZsx5ZD5BQTR4y0iDlPxU2 iy/fb5LkgauOvpY4SAgqCvytRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI51wYkj 8G5iK2m9ziUHWPkstiP9MB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe/7l4V/gcokTRVvAypd7uEqCwiJzSY0eEhh30c0TxPhY4/VvqnL6I CcdVAofR5YVO6oRaA7nWha7dXUO5m6/ere/ge4AoCeIV0EnGfMgVCMGd3dAb4FHb q7lTy1Ulp5gGZQgRq0qS2Z7eqag87iBkQrmUOyYVyumRhz729as5ivbrrkcA653j ucdfm/2UYETjImvCOn2p5tTmzYGcD+T1d04A7X80eQhcu+GJ623xsaF0NAACJzNT IbCJ3mP6boSvwAsA+dRHGnw9w/+0DCdmd/lUqT/+0XbZto1cjHxXqDaJNZxFrFQ8 97f5EP4XKf1+ExOciPO0ivDQ8hFLQLla -----END CERTIFICATE-----Generated at Sun Aug 10 15:59:00 2025 by rpki-client