$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft File: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft (raw, json) Hash identifier: TYmUYdyLFSHkUWTEcYgKlRyqjTxSHLdgh0/F5pIFX/0= Subject key identifier: 5F:B3:02:8D:8D:49:9E:F4:CD:3B:4B:C8:E7:9D:57:E0:80:A2:90:A3 Authority key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C Certificate issuer: /CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Certificate serial: 1004 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft Manifest number: 0FFB Signing time: Fri 08 Aug 2025 17:39:38 +0000 Manifest this update: Fri 08 Aug 2025 17:39:38 +0000 Manifest next update: Fri 15 Aug 2025 17:39:38 +0000 Files and hashes: 1: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl (hash: 23/gdiiEJard0nNtTeeNdf/LZD7FFP0OqtX4OqDFA8s=) 2: DB63DD0C511311E998B6E814C4F9AE02.roa (hash: Mh1zi5YD9Zt1qZTGwDKJ/p09AgZsGk5KhqRaFO5mGTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7BE4, serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Validity Not Before: Aug 8 17:39:38 2025 GMT Not After : Aug 15 17:39:38 2025 GMT Subject: CN=6896365a-d704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:a2:c0:f5:41:08:34:38:f8:58:dd:97:3f: 57:a2:14:50:e7:ca:f9:2c:93:49:70:a2:74:b8:55: 52:b9:aa:89:07:9e:ec:fa:a1:af:03:6b:fc:6e:a9: 9e:c5:65:eb:e6:13:42:88:dc:5e:10:0f:74:0d:27: be:61:32:91:c3:2c:78:8a:04:8e:0e:45:0a:03:ca: 3f:ee:eb:47:1f:1c:c0:47:18:ed:56:df:47:a8:d4: be:df:fe:0f:de:b1:36:f7:c7:a4:a2:a2:3b:47:1d: 28:6e:fc:26:b5:db:70:bd:96:33:8b:37:e1:70:95: b4:9c:ac:28:b1:53:a0:95:f5:c1:c0:9d:e2:86:78: f2:7b:f1:46:f3:7f:f4:98:e9:e4:7c:f5:53:a9:9a: b7:40:8c:8e:f6:9e:5d:0d:8a:4f:44:60:3c:ce:41: 70:14:10:45:44:99:1e:d7:0d:1e:b2:ee:32:2b:91: 0f:14:87:c7:71:db:f3:a0:61:24:74:37:06:ad:9d: d0:f9:e0:1e:e5:3d:34:2e:a7:c5:ab:f2:ce:44:4f: 2f:f0:40:d2:dd:3a:fd:b8:00:d0:0b:f8:06:4a:27: 2f:d6:df:72:b8:cf:ec:e9:78:a6:38:a6:53:0f:23: bf:0f:31:66:b8:34:7d:fa:f6:32:2f:b8:69:c3:d6: c5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B3:02:8D:8D:49:9E:F4:CD:3B:4B:C8:E7:9D:57:E0:80:A2:90:A3 X509v3 Authority Key Identifier: keyid:1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a4:69:92:a3:d9:db:71:4e:50:f9:db:2a:f2:a0:0c:97:6c: 61:d8:54:41:88:07:b1:ca:7c:c4:71:ed:35:24:ec:3c:b7:b9: 18:fd:7e:b9:ad:35:62:a1:27:90:11:13:d7:1d:a4:01:7c:13: 76:c6:e6:f4:04:f1:ca:d2:34:e3:c6:4b:74:3d:20:ad:3f:35: fd:37:37:8a:3a:ec:00:c5:fe:71:8f:c6:ee:04:2b:49:8c:f3: 0b:59:de:12:da:90:ad:3e:bb:59:81:92:93:ef:75:89:f7:d0: 3e:d4:25:85:08:b0:59:96:e4:7a:72:2d:f7:51:d1:11:76:3a: eb:7b:72:95:db:07:5c:2c:7b:3d:d9:61:38:39:95:fb:bd:65: 5d:bc:0e:bb:be:2f:01:c6:a8:11:bf:d0:24:d3:f1:8a:85:91: 0d:54:ac:02:c0:98:99:ee:b3:bd:82:8d:12:2a:4d:fd:e0:1e: fd:9b:b8:2f:5c:12:61:8e:b7:49:4f:7f:d9:ba:6f:45:60:a1: 33:ba:7f:bb:b0:ae:90:e9:6b:b9:bd:a5:41:0f:47:0a:b1:9c: 1e:8b:2a:08:09:9f:4c:b6:4c:31:71:4f:dd:a3:cd:a8:76:c9: 6e:45:bf:bb:f5:86:22:33:b6:85:f8:e8:e4:a5:e3:21:31:84: 14:ab:14:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCRTQxMTAvBgNVBAUTKDFFNkIzOTQ0QjY3ODhFOTBFOTk3RDhBOEU4MDY3QzU5 NjlCODg5OEMwHhcNMjUwODA4MTczOTM4WhcNMjUwODE1MTczOTM4WjAYMRYwFAYD VQQDEw02ODk2MzY1YS1kNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC2iwPVBCDQ4+Fjdlz9XohRQ58r5LJNJcKJ0uFVSuaqJB57s+qGvA2v8bqme xWXr5hNCiNxeEA90DSe+YTKRwyx4igSODkUKA8o/7utHHxzARxjtVt9HqNS+3/4P 3rE298ekoqI7Rx0obvwmtdtwvZYzizfhcJW0nKwosVOglfXBwJ3ihnjye/FG83/0 mOnkfPVTqZq3QIyO9p5dDYpPRGA8zkFwFBBFRJke1w0esu4yK5EPFIfHcdvzoGEk dDcGrZ3Q+eAe5T00LqfFq/LORE8v8EDS3Tr9uADQC/gGSicv1t9yuM/s6XimOKZT DyO/DzFmuDR9+vYyL7hpw9bFPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+zAo2N SZ70zTtLyOedV+CAopCjMB8GA1UdIwQYMBaAFB5rOUS2eI6Q6ZfYqOgGfFlpuImM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0JFNC9BMDYzMDVDMjUx MTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpwRHBsOWlvNkFaOFdXbTRp WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htczVSTFo0anBEcGw5aW82QVo4V1dtNGlZdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0JFNC9BMDYzMDVDMjUxMTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpw RHBsOWlvNkFaOFdXbTRpWXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBepGmSo9nbcU5Q+dsq8qAMl2xh2FRBiAexynzEce01JOw8t7kY/X65 rTVioSeQERPXHaQBfBN2xub0BPHK0jTjxkt0PSCtPzX9NzeKOuwAxf5xj8buBCtJ jPMLWd4S2pCtPrtZgZKT73WJ99A+1CWFCLBZluR6ci33UdERdjrre3KV2wdcLHs9 2WE4OZX7vWVdvA67vi8BxqgRv9Ak0/GKhZENVKwCwJiZ7rO9go0SKk394B79m7gv XBJhjrdJT3/Zum9FYKEzun+7sK6Q6Wu5vaVBD0cKsZweiyoICZ9MtkwxcU/do82o dsluRb+79YYiM7aF+OjkpeMhMYQUqxQB -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:20 2025 by rpki-client