$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: EFvz8bWqsqUjcJGFFYsmthlImRxDkZ3TRP3sylXiAx0= Subject key identifier: AA:8A:A4:D9:C3:26:7C:1C:F9:B7:59:CA:EB:08:5F:52:E9:2F:CF:AD Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0BE5 Signing time: Sun 10 Aug 2025 18:50:06 +0000 Manifest this update: Sun 10 Aug 2025 18:50:05 +0000 Manifest next update: Sun 17 Aug 2025 18:50:05 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: esU4MKYIbN9kuUgLUYJsv94lcOgCLIJgvhv0yRi/xJo=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 18:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Aug 10 18:50:05 2025 GMT Not After : Aug 17 18:50:05 2025 GMT Subject: CN=6898e9de-2997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ed:8c:ee:b4:43:0a:58:54:49:6e:dd:a9:45: 3c:3d:f6:5d:98:d7:17:a8:c5:21:07:75:70:4d:13: f1:48:bf:b4:35:2a:11:d9:36:7b:b1:ee:e9:6c:0e: c2:64:16:d2:e1:53:97:67:5c:e6:26:ab:73:c8:ab: 87:25:fb:db:bd:fd:df:03:72:ad:72:88:e9:fd:2e: 41:2a:c1:b7:f2:59:11:5b:a6:01:87:bc:9e:fb:d5: 78:e9:29:e8:01:ce:86:a4:7b:28:78:b4:c8:5a:9e: 28:e1:c1:12:e5:cc:f7:bc:5d:dc:ad:ba:dd:eb:93: e8:22:77:71:21:97:3c:4d:e3:b6:53:4c:01:27:e2: a1:bd:fa:b0:a6:ac:4c:af:f6:d6:64:e8:62:36:0d: 1a:87:2b:ea:33:d6:ad:ef:00:ae:51:4c:39:81:57: 5d:ee:45:4a:23:f2:0e:b3:e0:73:6b:fa:93:9c:d9: 9d:11:d8:91:9c:8d:5d:43:fa:51:21:ac:fd:57:d4: fa:a9:65:d1:c7:16:d1:cb:c9:ea:c1:1f:1a:56:e1: cc:b4:4e:83:b3:17:83:f3:a2:ad:d0:66:ac:bf:8b: 9d:86:e6:16:b9:58:61:0b:4f:4e:e5:ee:c8:9d:f7: 18:ab:50:80:41:4f:44:40:7f:84:61:0a:8d:db:7d: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8A:A4:D9:C3:26:7C:1C:F9:B7:59:CA:EB:08:5F:52:E9:2F:CF:AD X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:2a:dd:98:11:59:5a:42:64:13:ea:0f:40:50:dd:6b:96:fa: e0:c8:0a:b7:29:6a:1a:f6:ed:c9:6b:b9:3e:c5:69:8c:64:29: e5:90:84:82:12:b8:28:57:63:85:28:20:ab:21:2a:49:ec:47: cf:ff:77:1f:0e:c6:47:d0:69:d1:43:66:e1:89:c5:87:48:8a: 98:2e:44:7f:de:fe:02:27:7f:cd:42:a7:02:ae:f0:fc:c7:7e: 4e:5c:1f:8c:18:1c:99:19:21:9c:c0:e4:9d:44:fa:6c:23:a3: 61:1b:b0:a4:32:1f:b2:d8:0e:65:6b:a6:39:cd:3f:5c:a4:fa: fb:06:74:fb:17:e2:6b:6e:c5:00:e5:8d:30:31:6c:05:79:75: 3c:cd:c2:33:68:5c:94:2f:58:8c:a4:3c:2c:c0:f9:3d:09:e9: 3e:e8:e6:c9:77:94:81:01:4e:06:5a:fd:e2:50:ea:36:01:48: 50:3a:de:79:99:4d:b6:c0:cd:43:12:e8:b9:17:24:19:f9:3e: 19:b6:d0:10:38:58:e9:e1:f0:e4:83:4f:81:96:32:23:f5:46: 2c:5e:b9:71:5f:39:e9:dc:99:3a:b8:7b:d9:88:a4:a1:87:fb: d0:15:ea:55:65:3d:75:5b:54:60:0c:a4:93:77:0c:17:1a:a5: 9c:ec:be:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwODEwMTg1MDA1WhcNMjUwODE3MTg1MDA1WjAYMRYwFAYD VQQDEw02ODk4ZTlkZS0yOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO2M7rRDClhUSW7dqUU8PfZdmNcXqMUhB3VwTRPxSL+0NSoR2TZ7se7pbA7C ZBbS4VOXZ1zmJqtzyKuHJfvbvf3fA3Ktcojp/S5BKsG38lkRW6YBh7ye+9V46Sno Ac6GpHsoeLTIWp4o4cES5cz3vF3crbrd65PoIndxIZc8TeO2U0wBJ+KhvfqwpqxM r/bWZOhiNg0ahyvqM9at7wCuUUw5gVdd7kVKI/IOs+Bza/qTnNmdEdiRnI1dQ/pR Iaz9V9T6qWXRxxbRy8nqwR8aVuHMtE6DsxeD86Kt0Gasv4udhuYWuVhhC09O5e7I nfcYq1CAQU9EQH+EYQqN2332kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqKpNnD Jnwc+bdZyusIX1LpL8+tMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGKt2YEVlaQmQT6g9AUN1rlvrgyAq3KWoa9u3Ja7k+xWmMZCnlkISC ErgoV2OFKCCrISpJ7EfP/3cfDsZH0GnRQ2bhicWHSIqYLkR/3v4CJ3/NQqcCrvD8 x35OXB+MGByZGSGcwOSdRPpsI6NhG7CkMh+y2A5la6Y5zT9cpPr7BnT7F+JrbsUA 5Y0wMWwFeXU8zcIzaFyUL1iMpDwswPk9Cek+6ObJd5SBAU4GWv3iUOo2AUhQOt55 mU22wM1DEui5FyQZ+T4ZttAQOFjp4fDkg0+BljIj9UYsXrlxXznp3Jk6uHvZiKSh h/vQFepVZT11W1RgDKSTdwwXGqWc7L50 -----END CERTIFICATE-----Generated at Tue Aug 12 18:55:33 2025 by rpki-client