$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: H6XxIBKfq7tGY6OBZatn5l2UCO2NQPM64yAihxAHBqk= Subject key identifier: D8:BC:2D:DA:13:82:A9:E6:56:C6:74:28:12:5B:3F:B2:D3:7B:FD:32 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 035E Signing time: Tue 05 Aug 2025 01:32:15 +0000 Manifest this update: Tue 05 Aug 2025 01:32:14 +0000 Manifest next update: Tue 12 Aug 2025 01:32:14 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: H1qUXkmc8+2aZbgr+jeQ61UCxS0QMzGPzInbypXW+iU=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Aug 5 01:32:14 2025 GMT Not After : Aug 12 01:32:14 2025 GMT Subject: CN=68915f1e-5a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:05:86:8b:ed:fe:8e:72:c8:63:28:7a:6e:03: 92:3e:0a:af:d4:84:25:f1:6d:2b:12:3a:70:c8:31: b4:55:c3:a6:c1:91:02:21:72:9e:c1:0f:2f:a1:12: cf:4d:7e:53:f7:f8:4c:32:72:d0:32:2c:b2:11:47: c3:81:be:3d:ba:fc:9d:90:18:22:c1:ce:3b:7b:66: ef:26:04:4a:73:61:89:b1:15:be:00:ac:d8:0f:3d: fb:21:ef:9c:da:28:9d:1d:96:ae:e6:31:03:e2:33: 38:e6:32:91:31:65:13:f4:31:51:76:78:1d:12:24: ce:77:f0:22:fa:e0:94:bd:09:35:a0:11:1a:57:dd: 64:bb:a0:c7:4b:42:1e:26:da:60:a0:2a:90:b7:09: 6d:ae:fb:9a:3b:aa:b0:ca:20:89:82:88:3d:79:9c: d3:7e:ad:53:10:90:1e:3e:47:89:ce:8b:4f:6f:0f: 05:0a:28:09:39:63:6b:7c:19:9c:6e:f6:1b:c2:c2: fe:08:ee:2f:32:26:4e:12:28:c9:38:92:61:d2:dc: 6a:47:83:b0:57:34:07:43:b0:5f:30:1a:a4:30:8b: 96:fe:bc:ea:55:60:59:98:4d:82:d7:68:6a:81:e8: 7b:03:7f:2e:12:66:de:7e:68:61:5d:85:bb:7f:13: 91:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BC:2D:DA:13:82:A9:E6:56:C6:74:28:12:5B:3F:B2:D3:7B:FD:32 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:96:2b:e9:2d:2f:79:9a:71:2f:3b:65:4f:11:72:78:66:32: bd:59:f3:a5:6e:6d:7f:05:68:6f:b3:9d:7d:7a:22:10:f7:18: 7f:1e:cf:92:a5:c1:ee:56:de:5c:99:92:39:de:07:f8:c3:00: 06:c2:2b:01:a9:3a:f5:a3:b0:53:45:18:bf:07:1f:cd:7c:51: b8:87:e7:b6:c8:94:e3:71:59:fc:d9:00:02:cc:40:0a:cb:e8: 26:e5:a2:8b:3f:74:19:4c:7c:99:4c:35:27:2a:79:ef:b3:c9: 59:2d:7f:d9:77:dc:6e:ee:3c:07:ec:b2:b5:49:94:0b:b8:97: d0:94:8d:6b:5d:38:0d:63:c2:a4:5d:91:f7:b7:59:97:a5:71: 35:41:95:3b:50:34:be:a1:3f:26:65:81:6a:e9:a2:17:fd:e2: f4:47:6b:22:f6:27:f7:05:38:89:4e:b0:56:d7:b6:f0:b7:6e: 10:55:49:33:7f:b0:1e:48:10:20:81:9f:7f:26:c6:7c:e3:d0: 0c:b7:1b:60:89:58:69:d5:23:79:d1:52:6b:e9:ca:07:8b:66: b7:52:6f:84:c6:10:23:06:d1:3a:d3:4f:c6:00:bc:04:a5:07: a7:89:77:57:5a:a3:7d:16:c9:21:6b:f6:ba:8c:86:ff:33:37: 8f:25:03:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwODA1MDEzMjE0WhcNMjUwODEyMDEzMjE0WjAYMRYwFAYD VQQDEw02ODkxNWYxZS01YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywWGi+3+jnLIYyh6bgOSPgqv1IQl8W0rEjpwyDG0VcOmwZECIXKewQ8voRLP TX5T9/hMMnLQMiyyEUfDgb49uvydkBgiwc47e2bvJgRKc2GJsRW+AKzYDz37Ie+c 2iidHZau5jED4jM45jKRMWUT9DFRdngdEiTOd/Ai+uCUvQk1oBEaV91ku6DHS0Ie JtpgoCqQtwltrvuaO6qwyiCJgog9eZzTfq1TEJAePkeJzotPbw8FCigJOWNrfBmc bvYbwsL+CO4vMiZOEijJOJJh0txqR4OwVzQHQ7BfMBqkMIuW/rzqVWBZmE2C12hq geh7A38uEmbefmhhXYW7fxORZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi8LdoT gqnmVsZ0KBJbP7LTe/0yMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAolivpLS95mnEvO2VPEXJ4ZjK9WfOlbm1/BWhvs519eiIQ9xh/Hs+S pcHuVt5cmZI53gf4wwAGwisBqTr1o7BTRRi/Bx/NfFG4h+e2yJTjcVn82QACzEAK y+gm5aKLP3QZTHyZTDUnKnnvs8lZLX/Zd9xu7jwH7LK1SZQLuJfQlI1rXTgNY8Kk XZH3t1mXpXE1QZU7UDS+oT8mZYFq6aIX/eL0R2si9if3BTiJTrBW17bwt24QVUkz f7AeSBAggZ9/JsZ849AMtxtgiVhp1SN50VJr6coHi2a3Um+ExhAjBtE600/GALwE pQeniXdXWqN9Fskha/a6jIb/MzePJQO7 -----END CERTIFICATE-----Generated at Thu Aug 7 01:56:25 2025 by rpki-client