$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: 9IcMhiyuI1cf/F96P+TV0QoPMlvPVVaTXeN3oFgPDug= Subject key identifier: B2:1B:52:6A:87:4B:06:49:97:87:B0:FD:EA:4A:01:E7:C3:4D:DE:4C Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 153B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 152A Signing time: Sun 10 Aug 2025 16:47:44 +0000 Manifest this update: Sun 10 Aug 2025 16:47:44 +0000 Manifest next update: Sun 17 Aug 2025 16:47:44 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: 3/yo9S07kmXwhOnEFUatXQCVA4nDrtLOg1dSQgXpFDw=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5435 (0x153b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Aug 10 16:47:44 2025 GMT Not After : Aug 17 16:47:44 2025 GMT Subject: CN=6898cd30-0bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0c:75:a6:f5:a3:66:07:84:8e:c4:34:cf:48: 59:23:24:61:9e:db:c0:4e:42:66:31:2f:e3:68:8e: 98:6a:cd:88:f7:6a:5c:1c:36:48:7a:ec:49:af:32: 07:37:6b:a8:ee:ab:c7:12:0d:65:f7:67:f0:66:6e: 52:66:c3:dd:04:51:48:b4:50:92:32:49:1e:f4:42: d2:20:50:d3:3e:23:b4:e4:a5:7a:82:7d:30:5a:b5: 36:fc:27:d5:bf:13:8c:1b:43:0b:10:36:e6:45:0a: 1a:a3:df:21:64:98:c4:d3:e1:ee:cb:83:b9:03:9e: dd:29:6d:68:bd:3f:f9:9d:54:6b:1c:43:4e:78:92: d4:a1:0e:a9:c5:40:9f:c6:6f:c2:b9:ee:05:92:66: 48:8a:4e:6a:46:7e:18:ad:66:b5:84:97:90:0d:09: 8d:79:de:59:9a:b7:7e:c4:ff:e2:68:ed:c1:37:1d: c2:b5:a2:2a:0f:a4:57:10:e2:d7:f2:dc:18:05:71: 06:e4:d7:5f:c3:cc:67:31:90:44:33:50:99:6c:cc: d5:b3:d3:00:50:75:c6:23:98:92:66:5f:fe:56:4d: 3f:8b:19:6e:12:3f:30:b2:2c:f1:ab:3b:41:dd:44: f3:c6:db:15:8e:2c:91:82:3e:dc:5e:9a:73:d3:6d: 52:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1B:52:6A:87:4B:06:49:97:87:B0:FD:EA:4A:01:E7:C3:4D:DE:4C X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:74:fa:d3:ab:38:e9:b3:c0:24:7f:41:64:34:bc:c0:b4:91: 6a:b6:f3:28:3e:8a:0b:6b:7e:6e:b8:03:70:e4:95:53:06:36: be:c3:eb:e5:55:67:6a:8c:5f:7b:da:68:ee:ad:27:fa:90:59: 04:2a:d4:cc:fd:bb:39:af:90:2f:80:b1:ff:0d:b2:5b:4b:9b: 20:31:50:d2:92:83:96:41:79:c0:c6:bf:9f:a6:62:c7:10:44: 19:e9:21:e0:10:78:32:53:10:fa:8b:e5:cf:15:b7:ca:d5:f5: fd:76:6f:c0:3b:47:59:d6:a1:39:01:b7:00:ac:77:b0:76:b4: 98:b3:7d:19:f0:b6:e7:03:44:d6:b4:ee:ee:c9:b1:65:7e:95: 3a:91:ec:ea:e3:59:f4:66:2e:d0:67:dd:e0:e5:e8:f0:e6:7d: 2d:b9:cd:a4:f2:33:90:cc:d3:61:37:60:27:be:50:ea:ce:18: 61:37:6b:88:30:37:2e:cd:ab:09:97:61:db:b3:f0:e9:76:5e: f2:1d:a5:76:2a:06:b8:a0:63:3b:a9:d5:69:79:6c:a6:2d:95: 0d:82:59:83:c8:1b:0d:db:7a:13:99:12:a8:49:d6:10:2a:0b: 5f:cd:5c:b5:d8:23:d7:18:b3:fd:30:cc:36:92:85:84:84:4d: af:6d:e8:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwODEwMTY0NzQ0WhcNMjUwODE3MTY0NzQ0WjAYMRYwFAYD VQQDEw02ODk4Y2QzMC0wYmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ax1pvWjZgeEjsQ0z0hZIyRhntvATkJmMS/jaI6Yas2I92pcHDZIeuxJrzIH N2uo7qvHEg1l92fwZm5SZsPdBFFItFCSMkke9ELSIFDTPiO05KV6gn0wWrU2/CfV vxOMG0MLEDbmRQoao98hZJjE0+Huy4O5A57dKW1ovT/5nVRrHENOeJLUoQ6pxUCf xm/Cue4FkmZIik5qRn4YrWa1hJeQDQmNed5Zmrd+xP/iaO3BNx3CtaIqD6RXEOLX 8twYBXEG5Ndfw8xnMZBEM1CZbMzVs9MAUHXGI5iSZl/+Vk0/ixluEj8wsizxqztB 3UTzxtsVjiyRgj7cXppz021SeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIbUmqH SwZJl4ew/epKAefDTd5MMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABdPrTqzjps8Akf0FkNLzAtJFqtvMoPooLa35uuANw5JVTBja+w+vl VWdqjF972mjurSf6kFkEKtTM/bs5r5AvgLH/DbJbS5sgMVDSkoOWQXnAxr+fpmLH EEQZ6SHgEHgyUxD6i+XPFbfK1fX9dm/AO0dZ1qE5AbcArHewdrSYs30Z8LbnA0TW tO7uybFlfpU6kezq41n0Zi7QZ93g5ejw5n0tuc2k8jOQzNNhN2AnvlDqzhhhN2uI MDcuzasJl2Hbs/Dpdl7yHaV2Kga4oGM7qdVpeWymLZUNglmDyBsN23oTmRKoSdYQ KgtfzVy12CPXGLP9MMw2koWEhE2vbehs -----END CERTIFICATE-----Generated at Mon Aug 11 01:48:09 2025 by rpki-client