$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft File: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft (raw, json) Hash identifier: IDXnupLlfJGlfS4n7yh+TKPuVBiaqsC7FTWjfDj5f1c= Subject key identifier: BA:85:C6:D3:48:81:C1:BB:BB:41:AF:86:2A:C1:41:94:D7:62:64:44 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1B92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft Manifest number: 1B50 Signing time: Tue 16 Sep 2025 16:22:32 +0000 Manifest this update: Tue 16 Sep 2025 16:22:32 +0000 Manifest next update: Tue 23 Sep 2025 16:22:32 +0000 Files and hashes: 1: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl (hash: //vq/fNPNIy77y/ECnc6aUi7op0KGWcyuzmiJM3XllM=) 2: 65486DA81F8411E79BCB6D54C4F9AE02.roa (hash: 4xV+J3CmmdCpDaEFPGjRsDGwUIL2Vy4kSy5m15MGfXg=) 3: 634556A61F8411E79BCB6D54C4F9AE02.roa (hash: 4IDng3Lrs8lhaOUdN7yvdIjmCJWMny3fPwZTXINqHBU=) 4: AA54657A880E11ED9BE52B17C4F9AE02.roa (hash: UVvEuCytrfCrphts5UpSNqcuRE3wm/rQR1W1CXxy/Rw=) 5: A842EEAA880E11ED9BE52B17C4F9AE02.roa (hash: 4Q6EmcPQKZH/+9z09btDyZRmVTuV1a4n3djNOV7Om64=) 6: A93E93C2880E11ED9BE52B17C4F9AE02.roa (hash: KB78mB/+BtWr5xn0d2YgdyzOTI8fLFM20j2nckGLtwU=) 7: 66914122CEAB11E796AC671AC4F9AE02.roa (hash: 9nJsdnxbQLzrLx2EZCka7q5S0FAqMVpfxB+cnZiwYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 16:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7058 (0x1b92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB, serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: Sep 16 16:22:32 2025 GMT Not After : Sep 23 16:22:32 2025 GMT Subject: CN=68c98ec8-fc7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5f:01:30:f6:0f:09:2a:c1:aa:be:6a:53:dd: ec:1a:2c:ab:90:eb:4f:72:8b:32:56:9a:0a:07:8c: cd:fc:23:19:10:a3:9d:15:11:a0:21:56:00:69:31: 5f:38:8f:40:ff:cc:e2:e3:67:4b:da:5a:fc:62:14: ad:f9:3f:d7:84:6e:1e:73:25:68:a1:43:a2:43:9a: 97:e0:1e:9c:42:c9:aa:00:56:e6:a5:5e:73:27:5a: 8a:c5:6e:ea:7d:9c:5a:c7:e3:7c:3c:5f:96:d6:04: 7a:36:97:04:55:46:74:b7:e6:37:e1:e1:6f:d5:4f: e8:04:ef:ba:43:e9:a8:04:85:17:b9:e3:8f:e8:11: 2f:91:d5:2d:57:a5:73:e0:54:b9:a8:2e:98:f6:7b: b1:29:f7:52:4c:af:90:80:d5:27:a4:91:85:e6:05: 0e:d6:e3:53:fa:5b:31:46:f6:a9:f7:91:61:6f:b0: 27:57:2f:c2:2a:75:2c:9a:5f:75:c7:db:94:17:9d: bf:03:ff:a8:ea:ab:44:5f:ee:5f:b0:11:70:a1:15: 64:4b:ee:02:ed:a3:99:b9:4b:1b:9f:3d:2e:4a:65: 62:25:a3:24:d6:7c:e8:97:7e:4b:30:3f:49:9b:90: a8:5e:33:50:e5:ab:e4:d5:55:28:19:41:49:41:06: 8e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:85:C6:D3:48:81:C1:BB:BB:41:AF:86:2A:C1:41:94:D7:62:64:44 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:3c:60:07:68:ec:31:d5:55:0d:ee:69:38:16:8c:db:92:68: 9a:8d:09:82:6e:5e:e8:68:b3:6f:0e:a9:e3:c4:75:14:32:17: 61:5a:5d:b1:47:3f:75:16:2a:10:ac:f7:d4:f7:79:32:b4:7a: 1f:1c:f6:9e:01:ae:eb:1b:8c:eb:73:9a:a3:57:ad:af:67:56: aa:2d:fa:ab:3c:a4:b3:23:09:23:be:16:4c:3e:9a:5d:15:61: 5f:54:74:5c:32:0b:23:c5:25:92:fb:ac:a4:85:11:d6:4e:02: 0d:34:23:d8:14:25:18:c7:50:59:5e:8a:27:0c:f5:20:c2:ff: 3b:b3:53:cb:dc:53:36:63:9a:92:d6:dc:6c:fc:b2:dc:de:a6: 73:19:4a:78:d6:cb:dc:69:5d:2f:66:15:71:06:a8:56:84:53: 3e:e3:29:d6:99:38:14:3b:7d:2a:f2:3a:61:a4:79:26:3a:87: 61:87:ae:be:e4:e0:2d:73:b8:5a:bd:f8:9c:18:f2:65:bb:af: 7c:e4:0a:bb:c7:e5:07:e1:70:3a:51:cb:24:be:68:db:5e:10: c0:a9:ec:a1:63:bb:8a:b6:db:5c:18:76:71:fe:a9:84:36:ce: 3d:7c:a6:26:f8:1b:7e:d5:ac:59:48:9c:4e:8b:f7:0e:82:f9: 78:f2:91:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUwOTE2MTYyMjMyWhcNMjUwOTIzMTYyMjMyWjAYMRYwFAYD VQQDEw02OGM5OGVjOC1mYzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4V8BMPYPCSrBqr5qU93sGiyrkOtPcosyVpoKB4zN/CMZEKOdFRGgIVYAaTFf OI9A/8zi42dL2lr8YhSt+T/XhG4ecyVooUOiQ5qX4B6cQsmqAFbmpV5zJ1qKxW7q fZxax+N8PF+W1gR6NpcEVUZ0t+Y34eFv1U/oBO+6Q+moBIUXueOP6BEvkdUtV6Vz 4FS5qC6Y9nuxKfdSTK+QgNUnpJGF5gUO1uNT+lsxRvap95Fhb7AnVy/CKnUsml91 x9uUF52/A/+o6qtEX+5fsBFwoRVkS+4C7aOZuUsbnz0uSmViJaMk1nzol35LMD9J m5CoXjNQ5avk1VUoGUFJQQaOowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqFxtNI gcG7u0GvhirBQZTXYmREMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QkVEQi81RDg2N0VCQzFGODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtM elNyak5sRTRHOTRmMEh4ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoPGAHaOwx1VUN7mk4FozbkmiajQmCbl7oaLNvDqnjxHUUMhdhWl2x Rz91FioQrPfU93kytHofHPaeAa7rG4zrc5qjV62vZ1aqLfqrPKSzIwkjvhZMPppd FWFfVHRcMgsjxSWS+6ykhRHWTgINNCPYFCUYx1BZXoonDPUgwv87s1PL3FM2Y5qS 1txs/LLc3qZzGUp41svcaV0vZhVxBqhWhFM+4ynWmTgUO30q8jphpHkmOodhh66+ 5OAtc7havficGPJlu6985Aq7x+UH4XA6UcskvmjbXhDAqeyhY7uKtttcGHZx/qmE Ns49fKYm+Bt+1axZSJxOi/cOgvl48pEh -----END CERTIFICATE-----Generated at Wed Sep 17 07:11:30 2025 by rpki-client