$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: fygP5aZwyqPCRC8notcevDPHkCz3KqTIJ9VivOumWPM= Subject key identifier: 7C:74:B1:87:F5:DF:11:4F:D6:CE:77:FD:ED:EB:14:4E:9E:82:F1:78 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 6F Signing time: Mon 11 Aug 2025 07:08:19 +0000 Manifest this update: Mon 11 Aug 2025 07:08:19 +0000 Manifest next update: Mon 18 Aug 2025 07:08:19 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: 2O+8p81LiSsame6JXldQmWhseAJnyLU3aPtZZRoOhmw=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Aug 11 07:08:19 2025 GMT Not After : Aug 18 07:08:19 2025 GMT Subject: CN=689996e3-5201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1d:61:f8:87:d9:38:6c:3b:67:c6:58:13:2e: e5:13:b4:a9:51:81:4c:0d:b9:d2:76:d3:a9:16:5a: de:03:77:d5:3f:ed:ca:82:26:6f:64:02:9c:98:9b: c6:35:b1:79:e4:71:fd:50:e3:97:40:f0:12:38:71: 1e:2c:fc:a2:30:36:14:0a:f1:80:c1:8d:58:de:7b: e0:4a:cf:8e:62:87:6a:95:03:fd:7b:da:38:a0:da: d7:e4:28:15:ff:b5:56:5b:e2:a1:60:6c:3a:6e:c5: 45:d4:66:70:f5:ac:20:d1:52:7c:e1:9a:f6:f9:23: 29:35:4b:b0:8c:91:28:09:75:24:8a:db:b0:6c:1f: f3:8c:ec:85:14:3c:1d:90:dc:b1:96:94:b6:18:0e: 38:f8:40:47:71:e4:70:de:99:3b:fb:48:72:c8:6d: 4c:e1:65:16:73:72:d6:8d:94:a0:8a:a5:59:7c:dd: 7c:dc:0f:e1:76:12:49:eb:10:9a:01:69:23:3c:ef: e4:59:f4:3c:c0:35:ce:74:5a:19:bc:25:db:f5:86: 58:a9:24:21:3a:a6:35:1b:44:99:7f:02:ef:73:62: 2c:b0:df:5a:b7:29:bb:2e:7d:a7:27:d6:6e:67:2d: 68:1a:63:85:14:a2:27:79:1d:fe:c4:93:a6:52:cf: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:74:B1:87:F5:DF:11:4F:D6:CE:77:FD:ED:EB:14:4E:9E:82:F1:78 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:3a:6c:d6:07:d7:3f:6d:1d:6e:7d:0f:88:21:31:4f:46:6b: 61:55:41:85:73:81:32:0a:29:3c:e0:05:4b:0f:6d:33:65:bd: 81:7b:8f:49:9e:61:8f:0d:17:fb:6d:db:87:b9:87:30:19:82: 3a:74:57:21:89:b7:ed:7d:fe:7d:7a:51:45:38:03:f0:05:a7: 1b:43:a5:ae:e6:63:a7:94:b1:7c:2e:b5:84:83:f7:d5:42:96: da:bd:dc:72:3b:44:fd:56:fa:5b:9f:ec:06:97:ef:fc:af:c7: 6a:ec:b0:f4:6d:cc:50:a1:0a:b0:b3:c5:6b:e0:49:4f:b5:ce: b0:b7:85:a0:4b:4b:e3:b8:0e:ef:4d:60:c0:26:da:9d:d9:f8: 32:73:bf:8c:11:11:d1:15:6e:5c:68:ad:10:8b:d5:67:87:9b: c0:73:68:fb:bf:57:bf:db:a8:25:0e:72:e5:6d:7d:71:54:ad: ab:3b:45:50:cf:ed:32:0b:72:74:bd:59:52:1e:86:3b:83:29: 1d:c1:b0:af:7b:e0:48:1e:96:84:43:02:cf:15:db:eb:38:59: 20:13:4f:18:be:ac:c4:38:0a:bf:f1:4b:e7:10:d1:06:c8:b5: 9e:9a:48:00:6a:88:a5:4e:41:9d:cf:cd:a1:03:b2:cd:64:fe: 60:ef:89:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTA4MTEwNzA4MTlaFw0yNTA4MTgwNzA4MTlaMBgxFjAUBgNV BAMTDTY4OTk5NmUzLTUyMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrHWH4h9k4bDtnxlgTLuUTtKlRgUwNudJ206kWWt4Dd9U/7cqCJm9kApyYm8Y1 sXnkcf1Q45dA8BI4cR4s/KIwNhQK8YDBjVjee+BKz45ih2qVA/172jig2tfkKBX/ tVZb4qFgbDpuxUXUZnD1rCDRUnzhmvb5Iyk1S7CMkSgJdSSK27BsH/OM7IUUPB2Q 3LGWlLYYDjj4QEdx5HDemTv7SHLIbUzhZRZzctaNlKCKpVl83XzcD+F2EknrEJoB aSM87+RZ9DzANc50Whm8Jdv1hlipJCE6pjUbRJl/Au9zYiyw31q3Kbsufacn1m5n LWgaY4UUoid5Hf7Ek6ZSz3tLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfHSxh/Xf EU/Wznf97esUTp6C8XgwHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHM6bNYH1z9tHW59D4ghMU9Ga2FVQYVzgTIKKTzgBUsPbTNlvYF7j0me YY8NF/tt24e5hzAZgjp0VyGJt+19/n16UUU4A/AFpxtDpa7mY6eUsXwutYSD99VC ltq93HI7RP1W+luf7AaX7/yvx2rssPRtzFChCrCzxWvgSU+1zrC3haBLS+O4Du9N YMAm2p3Z+DJzv4wREdEVblxorRCL1WeHm8BzaPu/V7/bqCUOcuVtfXFUras7RVDP 7TILcnS9WVIehjuDKR3BsK974EgeloRDAs8V2+s4WSATTxi+rMQ4Cr/xS+cQ0QbI tZ6aSABqiKVOQZ3PzaEDss1k/mDvic4= -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:12 2025 by rpki-client