$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: Kq9xB63AtQw6pqzPP3719X5DpC9H63fI2+lHY3FhNUo= Subject key identifier: E3:D7:D4:B9:89:F0:11:5B:BC:42:1F:19:53:7E:BF:7F:B9:B2:E5:8B Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 050E Signing time: Thu 07 Aug 2025 00:08:34 +0000 Manifest this update: Thu 07 Aug 2025 00:08:33 +0000 Manifest next update: Thu 14 Aug 2025 00:08:33 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: RsFSVTYxfJrVhHDhrRhR/89RmcYEulz0A56g83+4yXk=) 2: 5EAA75CC28E511F0BE4DF317C4F9AE02.roa (hash: aZ97R0qET0w8nFTTAAMLi629/SQxZPM4icyK4OVkGiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Aug 7 00:08:33 2025 GMT Not After : Aug 14 00:08:33 2025 GMT Subject: CN=6893ee81-c4ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:03:6d:27:b4:7b:d6:9b:42:0d:a5:e6:22:8c: 96:db:15:bf:1b:8e:a8:64:e5:39:97:7e:53:45:d1: ee:4d:ed:58:01:47:ee:9e:89:10:48:33:7a:91:46: 44:15:e3:33:f3:99:c7:a9:89:76:41:6b:64:ea:29: 0b:1a:2f:f1:1e:22:c2:27:15:60:47:cd:4c:ae:e3: 2d:f5:27:7a:c8:59:aa:86:f2:63:f0:5d:d8:47:d5: 3d:ea:d2:73:b0:b4:f5:57:75:1b:1f:8c:15:ea:76: ab:b6:76:3c:51:59:ca:85:ed:08:b8:52:32:fb:fa: 58:79:3b:f9:b3:94:e7:0d:00:97:b7:b4:b1:9b:ab: 93:de:b2:95:05:66:84:0c:b5:77:90:e6:9b:03:93: 7b:ac:13:0a:a2:0c:01:bd:ab:af:bd:d0:5f:c4:fc: 27:01:08:30:88:f9:2f:3e:ff:bc:1c:df:8c:1c:82: 6b:95:8c:0f:43:24:41:8e:70:63:46:45:07:9c:09: db:a2:bd:51:95:c7:d8:94:99:11:c2:31:0d:b9:d4: ba:4b:14:89:ea:6a:69:cb:4f:19:01:76:71:93:13: 8d:b4:6d:d9:ee:c1:ad:c3:57:ca:34:40:49:c9:3a: 29:ad:6d:f4:8d:23:4e:9f:1b:bc:04:b7:5b:86:a8: 08:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D7:D4:B9:89:F0:11:5B:BC:42:1F:19:53:7E:BF:7F:B9:B2:E5:8B X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:3c:dc:30:e0:75:50:4b:1f:68:3a:26:0a:a9:bd:ee:60:6a: 50:27:c5:25:23:6f:2c:45:52:46:fb:4d:b4:8f:b7:40:df:3b: c5:fb:ae:ea:0a:c3:80:b0:4c:44:0b:ae:76:6c:6b:3f:87:e8: 5d:35:64:2c:97:6a:ba:22:44:94:42:6a:b0:b7:76:0b:c0:af: 76:33:74:da:3b:b7:fd:b7:a9:78:60:44:6e:06:d1:f6:be:51: 9a:9d:12:d5:fc:78:1f:9c:41:84:c4:95:ae:4a:6f:a0:b5:d7: 76:f5:aa:2e:bf:ab:b4:92:89:1f:1d:34:fe:ad:79:e2:55:e5: 46:94:7e:dc:d0:b1:67:76:64:de:d1:bc:f5:c1:40:6e:1f:8c: 18:8d:d1:1b:47:a8:45:c5:56:e0:60:a1:ef:d3:cb:69:21:2a: a5:69:9b:ab:4f:c5:1f:07:d8:cc:6a:7d:98:d4:3b:47:55:0e: db:21:ea:6d:2c:e7:63:56:fd:51:34:b7:4c:b6:ac:8d:1f:23: 02:7a:d8:83:6a:c8:81:4a:1b:64:2c:ad:f2:a6:bc:b0:8a:28: dd:5b:0b:11:a7:15:4d:05:8f:c1:b8:dd:58:b1:11:c0:6e:6b: f1:7a:aa:a3:c3:7a:6c:94:91:45:b0:f2:11:6f:c5:4e:5a:cd: 6f:0c:d5:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjUwODA3MDAwODMzWhcNMjUwODE0MDAwODMzWjAYMRYwFAYD VQQDEw02ODkzZWU4MS1jNGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gNtJ7R71ptCDaXmIoyW2xW/G46oZOU5l35TRdHuTe1YAUfunokQSDN6kUZE FeMz85nHqYl2QWtk6ikLGi/xHiLCJxVgR81MruMt9Sd6yFmqhvJj8F3YR9U96tJz sLT1V3UbH4wV6nartnY8UVnKhe0IuFIy+/pYeTv5s5TnDQCXt7Sxm6uT3rKVBWaE DLV3kOabA5N7rBMKogwBvauvvdBfxPwnAQgwiPkvPv+8HN+MHIJrlYwPQyRBjnBj RkUHnAnbor1RlcfYlJkRwjENudS6SxSJ6mppy08ZAXZxkxONtG3Z7sGtw1fKNEBJ yToprW30jSNOnxu8BLdbhqgIJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPX1LmJ 8BFbvEIfGVN+v3+5suWLMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAPNww4HVQSx9oOiYKqb3uYGpQJ8UlI28sRVJG+020j7dA3zvF+67q CsOAsExEC652bGs/h+hdNWQsl2q6IkSUQmqwt3YLwK92M3TaO7f9t6l4YERuBtH2 vlGanRLV/HgfnEGExJWuSm+gtdd29aouv6u0kokfHTT+rXniVeVGlH7c0LFndmTe 0bz1wUBuH4wYjdEbR6hFxVbgYKHv08tpISqlaZurT8UfB9jMan2Y1DtHVQ7bIept LOdjVv1RNLdMtqyNHyMCetiDasiBShtkLK3yprywiijdWwsRpxVNBY/BuN1YsRHA bmvxeqqjw3pslJFFsPIRb8VOWs1vDNVY -----END CERTIFICATE-----Generated at Thu Aug 7 03:27:55 2025 by rpki-client