$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: KhSULSz673Ql2ooHPgGcdJfi1bsUrIXVdhNV1pC1xDc= Subject key identifier: B1:EF:2C:7E:7F:66:5B:44:46:81:4C:A8:2F:1D:33:30:A9:C3:FA:16 Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: 51 Signing time: Sat 09 Aug 2025 07:47:51 +0000 Manifest this update: Sat 09 Aug 2025 07:47:50 +0000 Manifest next update: Sat 16 Aug 2025 07:47:50 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: p6RBxBAGldLDqUEfqelLcDQ/itaHWIay2aDtn18kFwA=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: LMQmjwLQrmdrjw5ITfcjjvXTHrCvldYng4+Bqh2xDu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Aug 9 07:47:50 2025 GMT Not After : Aug 16 07:47:50 2025 GMT Subject: CN=6896fd27-c6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:de:38:c8:45:a6:95:27:da:82:cb:86:90:50: 0f:26:d3:c1:d0:94:bd:01:aa:c3:67:af:f7:fd:ba: 33:bc:20:cf:7c:7b:00:8f:f2:3d:10:ef:43:e2:1e: 08:e8:2e:20:80:6f:64:60:0c:a1:a7:00:27:27:83: 7a:e1:25:95:54:cd:83:51:33:a3:91:32:b0:76:45: bf:b3:8b:37:aa:2d:48:d5:21:81:1e:cf:85:4a:a5: d0:b3:5b:9b:8f:29:7b:c3:d7:fd:b2:a4:2a:8b:8b: 26:29:02:72:81:98:da:c8:63:60:4a:bc:ed:6a:d3: dd:df:2c:58:ab:9b:5f:2c:64:a7:af:51:44:9e:1d: f6:5b:1e:44:27:80:c4:05:47:aa:39:71:a3:06:67: bf:82:7c:83:32:80:79:8f:5f:e6:89:d7:68:e0:06: df:fa:2f:4b:30:c7:93:09:51:89:93:7d:99:8a:6d: 72:34:4f:c0:ee:12:2f:57:d9:c4:ee:6a:23:20:9d: 84:fe:54:67:47:1f:e8:5d:c5:8c:45:db:43:e6:57: c9:51:ac:77:4a:f2:5d:89:32:0e:08:8a:fa:61:d2: a5:a3:77:96:e9:8e:66:d3:14:42:2b:51:22:65:98: 1b:b3:9e:d1:6d:8c:43:3b:ef:12:04:0e:cf:15:27: 05:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EF:2C:7E:7F:66:5B:44:46:81:4C:A8:2F:1D:33:30:A9:C3:FA:16 X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:48:bd:ab:4b:56:8a:05:f9:98:26:b8:4c:2b:b1:f5:0e:23: 95:03:b0:06:90:f2:d4:d3:71:19:83:5c:fb:74:7b:8e:47:4e: ed:d5:16:a6:c9:9b:31:57:be:1a:e6:2c:e9:6d:21:d1:9a:a1: 96:0c:30:04:e7:5b:d1:63:cf:ca:ce:de:7b:0d:40:81:83:d9: 5d:b5:13:1c:b6:11:8b:ac:31:dd:23:d0:0b:3c:05:7b:af:f4: c0:84:bb:49:f1:dd:06:c8:3f:e7:96:02:12:ee:0d:60:0b:54: 8b:33:78:e5:39:1f:ab:16:66:97:22:b0:50:8e:ae:b1:fc:09: 74:24:3e:17:be:0b:62:d0:05:ef:9f:86:58:60:e0:7f:bb:fd: a5:c4:d0:42:f3:94:82:94:0e:52:75:61:f5:28:cb:dc:21:52: 21:cc:97:1c:a8:77:b9:a2:e4:0d:f5:7f:ae:cc:69:82:eb:64: ef:fd:0a:d9:84:51:20:66:52:27:bf:87:0d:d8:3b:e7:d5:7f: 86:1a:b6:67:0e:fe:c7:22:96:a5:cb:35:b0:fe:9d:a8:84:2d: 61:39:27:ff:14:ef:6f:4a:78:0d:9d:a9:51:14:ab:24:ef:d9: 98:e6:59:ce:a4:61:8a:fe:79:ea:cc:67:75:e7:c1:a3:98:04: 7b:3c:86:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoMUY0RENFMzQzOUIxRjQwMzVGRkY4QzcxQ0UzNTlFNUQy MEU2OUEyNDAeFw0yNTA4MDkwNzQ3NTBaFw0yNTA4MTYwNzQ3NTBaMBgxFjAUBgNV BAMTDTY4OTZmZDI3LWM2YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI3jjIRaaVJ9qCy4aQUA8m08HQlL0BqsNnr/f9ujO8IM98ewCP8j0Q70PiHgjo LiCAb2RgDKGnACcng3rhJZVUzYNRM6ORMrB2Rb+zizeqLUjVIYEez4VKpdCzW5uP KXvD1/2ypCqLiyYpAnKBmNrIY2BKvO1q093fLFirm18sZKevUUSeHfZbHkQngMQF R6o5caMGZ7+CfIMygHmPX+aJ12jgBt/6L0swx5MJUYmTfZmKbXI0T8DuEi9X2cTu aiMgnYT+VGdHH+hdxYxF20PmV8lRrHdK8l2JMg4Iivph0qWjd5bpjmbTFEIrUSJl mBuzntFtjEM77xIEDs8VJwW5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUse8sfn9m W0RGgUyoLx0zMKnD+hYwHwYDVR0jBBgwFoAUH03ONDmx9ANf/4xxzjWeXSDmmiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzJGMjUzQzFBRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1p US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSDAzT05EbXg5QU5mXzR4eHpqV2VYU0RtbWlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzJGMjUzQzFBRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFO Zl80eHh6aldlWFNEbW1pUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD9IvatLVooF+ZgmuEwrsfUOI5UDsAaQ8tTTcRmDXPt0e45HTu3VFqbJ mzFXvhrmLOltIdGaoZYMMATnW9Fjz8rO3nsNQIGD2V21Exy2EYusMd0j0As8BXuv 9MCEu0nx3QbIP+eWAhLuDWALVIszeOU5H6sWZpcisFCOrrH8CXQkPhe+C2LQBe+f hlhg4H+7/aXE0ELzlIKUDlJ1YfUoy9whUiHMlxyod7mi5A31f67MaYLrZO/9CtmE USBmUie/hw3YO+fVf4YatmcO/scilqXLNbD+naiELWE5J/8U729KeA2dqVEUqyTv 2ZjmWc6kYYr+eerMZ3XnwaOYBHs8hkY= -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:20 2025 by rpki-client