$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: QP6KwgteCrCiMWgQ9P+ypckM1yxOJnhUCYRufnoSMWU= Subject key identifier: 0E:B8:AE:B9:62:B2:99:E9:11:9F:B5:88:6B:4A:22:45:C6:81:38:52 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 210C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20FA Signing time: Fri 08 Aug 2025 16:01:48 +0000 Manifest this update: Fri 08 Aug 2025 16:01:48 +0000 Manifest next update: Fri 15 Aug 2025 16:01:48 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: OZJcjoCJOsUfyqEtftZoJJei90I9P0DUA+Pqa51u8o4=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8460 (0x210c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Aug 8 16:01:48 2025 GMT Not After : Aug 15 16:01:48 2025 GMT Subject: CN=68961f6c-ad35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:96:93:c9:74:c4:f0:1c:5e:6c:ac:ce:de:7e: 53:e4:24:5e:f3:ce:d7:df:2a:6f:1e:68:26:7b:78: 39:37:74:41:86:c6:b2:f8:80:2e:e6:70:12:77:f4: 76:ec:6a:13:83:93:0e:83:7e:64:eb:31:b1:3d:a1: a6:e7:45:5b:67:d3:f6:fc:b1:ee:f5:84:00:fa:f7: 59:5d:23:29:04:c8:72:03:1a:4c:09:05:c7:f3:87: 8b:8b:49:08:76:95:fd:54:a7:65:50:a5:99:c4:d4: 5c:8e:46:04:e5:2d:01:d6:25:2b:00:5e:c5:22:0a: 44:57:41:d0:2a:1b:b8:ca:bc:0a:80:59:d1:4f:06: d5:db:e1:f7:8d:d6:48:d2:a1:59:5f:2e:8e:a4:58: e6:a4:bb:99:ba:8f:c2:ef:57:13:a9:a9:6a:d9:96: 2c:3e:5c:af:a5:26:a8:18:88:40:8f:7f:c2:30:db: e4:9a:7c:70:01:b9:26:f2:7d:73:4d:1b:2d:c5:f7: 65:56:64:f3:26:92:55:70:d7:61:f5:44:14:eb:da: 3c:1a:59:51:13:d1:d5:7a:a4:f2:ec:50:8e:41:a9: d7:aa:59:67:13:04:0c:17:78:06:a2:04:a6:1f:ab: 5d:b5:91:52:d9:e0:2c:9b:8b:23:d1:9e:68:6f:81: ed:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B8:AE:B9:62:B2:99:E9:11:9F:B5:88:6B:4A:22:45:C6:81:38:52 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c7:b4:36:23:f3:d0:81:b6:a3:a1:8b:cc:da:5d:bc:f9:35: 28:6a:3f:0f:82:46:43:7a:c4:ab:81:1c:11:d4:ad:7c:0c:e2: d9:69:fe:74:73:c3:8c:d6:28:48:4f:39:15:65:01:09:b5:d1: bb:5d:25:0f:4d:b4:f2:fb:a5:62:e8:4c:8d:57:90:2a:67:83: 36:71:b3:bd:40:b7:51:e2:9b:27:da:f4:fd:b6:f4:07:5e:74: c6:e8:7c:fc:12:12:79:b2:da:2e:84:36:78:d4:d3:11:e8:b4: 46:40:ad:f5:08:a2:7a:bd:67:2a:62:4c:e6:86:24:fd:87:6d: f5:fd:00:ce:c7:f4:ae:d9:23:60:e0:9b:b3:cc:01:ed:ff:c6: 24:06:c8:75:1b:3b:ae:f8:d0:45:1b:62:94:15:ee:14:27:d4: 00:09:0c:73:f2:9b:b1:c9:61:b9:bd:14:cb:fe:20:ad:ea:f9: 67:dd:a7:d9:bc:8c:a9:a5:90:e1:c0:a0:67:e6:d2:f5:51:24: ac:4f:58:3e:10:88:2c:82:ac:9c:41:a9:13:b3:74:b4:07:a6: 22:47:56:6b:8f:bd:e4:56:13:91:36:23:c0:b9:f0:13:d0:63: 8c:82:3e:1d:69:39:ea:49:2c:d7:38:27:f3:7d:da:28:e9:bf: 12:2e:af:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwODA4MTYwMTQ4WhcNMjUwODE1MTYwMTQ4WjAYMRYwFAYD VQQDEw02ODk2MWY2Yy1hZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZaTyXTE8BxebKzO3n5T5CRe887X3ypvHmgme3g5N3RBhsay+IAu5nASd/R2 7GoTg5MOg35k6zGxPaGm50VbZ9P2/LHu9YQA+vdZXSMpBMhyAxpMCQXH84eLi0kI dpX9VKdlUKWZxNRcjkYE5S0B1iUrAF7FIgpEV0HQKhu4yrwKgFnRTwbV2+H3jdZI 0qFZXy6OpFjmpLuZuo/C71cTqalq2ZYsPlyvpSaoGIhAj3/CMNvkmnxwAbkm8n1z TRstxfdlVmTzJpJVcNdh9UQU69o8GllRE9HVeqTy7FCOQanXqllnEwQMF3gGogSm H6tdtZFS2eAsm4sj0Z5ob4HtmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA64rrli spnpEZ+1iGtKIkXGgThSMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAux7Q2I/PQgbajoYvM2l28+TUoaj8PgkZDesSrgRwR1K18DOLZaf50 c8OM1ihITzkVZQEJtdG7XSUPTbTy+6Vi6EyNV5AqZ4M2cbO9QLdR4psn2vT9tvQH XnTG6Hz8EhJ5stouhDZ41NMR6LRGQK31CKJ6vWcqYkzmhiT9h231/QDOx/Su2SNg 4JuzzAHt/8YkBsh1Gzuu+NBFG2KUFe4UJ9QACQxz8puxyWG5vRTL/iCt6vln3afZ vIyppZDhwKBn5tL1USSsT1g+EIgsgqycQakTs3S0B6YiR1Zrj73kVhORNiPAufAT 0GOMgj4daTnqSSzXOCfzfdoo6b8SLq// -----END CERTIFICATE-----Generated at Sat Aug 9 01:13:22 2025 by rpki-client