$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: xt3sMPnaxXrXfzPJAfMvyXW9vwIG9s1j4Z1lajwp90o= Subject key identifier: C9:DA:84:B4:65:85:52:DB:15:A6:35:65:80:DB:EF:00:7B:EF:20:64 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A04 Signing time: Fri 18 Jul 2025 20:04:20 +0000 Manifest this update: Fri 18 Jul 2025 20:04:20 +0000 Manifest next update: Fri 25 Jul 2025 20:04:20 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: V3xx3TYSniW6PnlUlTifvxILEbcgTmwCjH4fOyyR9z0=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2577 (0xa11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Jul 18 20:04:20 2025 GMT Not After : Jul 25 20:04:20 2025 GMT Subject: CN=687aa8c4-4c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:12:8d:92:3f:39:c7:6e:69:6d:51:25:84: 53:e5:d6:35:8a:98:fb:0e:5d:09:8f:82:fd:74:42: 0e:3b:5a:a6:7e:fa:8f:0f:80:58:b8:00:ec:2a:35: b3:b0:1b:9d:a0:e7:32:f6:25:28:90:0c:54:53:1e: 02:08:c2:ab:e6:10:86:8e:72:16:77:70:4b:3a:5e: 32:b0:08:0f:95:19:d3:6e:7f:98:68:27:c4:bd:5d: 45:56:f2:b5:2a:6e:60:c6:02:58:77:23:03:a7:dd: bd:80:2c:72:f2:40:46:d7:68:a4:d2:f9:75:bb:9c: 86:14:02:39:0f:43:3b:3e:cd:b9:a6:e6:4b:d1:9c: 4c:87:06:bb:2a:3f:8c:a3:42:ad:68:4d:d0:74:42: 27:44:65:a4:77:c2:72:75:ed:7e:21:72:7a:4b:77: 65:61:7f:35:c1:49:b4:34:07:05:11:26:51:5e:d1: 84:6a:ea:fa:63:61:f7:56:d8:1a:2b:71:41:2a:43: 1d:35:9d:6b:00:83:eb:fd:a9:29:9b:4a:c7:73:d2: 12:48:b4:d5:77:76:b0:77:6a:f8:8e:db:e5:03:bd: 16:b2:f4:d0:a9:15:90:9a:72:c7:95:b1:ca:d7:2b: d3:1a:8d:f1:55:a4:f9:e3:85:57:62:83:64:e0:a0: 43:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DA:84:B4:65:85:52:DB:15:A6:35:65:80:DB:EF:00:7B:EF:20:64 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ab:f8:cb:d3:15:e7:b4:2b:c9:52:04:e2:f4:0f:fd:13:84: 74:81:dc:fe:e9:5d:56:c2:da:99:2b:6f:97:33:ce:a3:2a:d3: d9:49:4c:40:ac:2f:b1:f1:6b:6b:95:5c:f7:db:c2:56:23:ff: 30:9c:3d:7a:19:ca:e0:99:9d:88:e4:21:0a:fc:fa:3c:0a:50: 65:bc:e2:58:07:a7:e3:78:ba:73:ab:ec:6e:bc:f2:4b:94:49: 76:b4:47:78:25:ef:4a:94:45:c3:00:eb:15:96:2b:21:e4:72: 39:29:77:7a:71:5e:13:bd:8a:bc:c4:f0:f7:28:9a:d1:c9:b2: ce:e9:d3:61:f0:94:a4:4b:ee:34:7c:e5:40:93:c2:ed:83:de: c4:b7:88:c2:d5:e3:bd:b1:de:81:cb:3c:4d:a1:dc:45:71:98: 13:ff:c2:7a:6b:81:74:74:9a:ec:43:db:dd:1e:03:56:a5:ee: 5b:61:1e:7a:9b:94:24:85:69:28:3d:0a:ca:e2:f0:a6:77:43: 32:ff:9a:32:26:a1:63:97:ab:10:05:a5:9e:23:46:72:59:d8: 2d:0c:d7:22:47:04:46:38:a1:b2:c0:f4:f2:d0:21:d8:f4:a7: 0e:86:d8:92:d5:66:9c:83:76:a5:9d:03:40:62:a7:6b:1e:e7: c8:32:15:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNzE4MjAwNDIwWhcNMjUwNzI1MjAwNDIwWjAYMRYwFAYD VQQDEw02ODdhYThjNC00YzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ecSjZI/OcduaW1RJYRT5dY1ipj7Dl0Jj4L9dEIOO1qmfvqPD4BYuADsKjWz sBudoOcy9iUokAxUUx4CCMKr5hCGjnIWd3BLOl4ysAgPlRnTbn+YaCfEvV1FVvK1 Km5gxgJYdyMDp929gCxy8kBG12ik0vl1u5yGFAI5D0M7Ps25puZL0ZxMhwa7Kj+M o0KtaE3QdEInRGWkd8Jyde1+IXJ6S3dlYX81wUm0NAcFESZRXtGEaur6Y2H3Vtga K3FBKkMdNZ1rAIPr/akpm0rHc9ISSLTVd3awd2r4jtvlA70WsvTQqRWQmnLHlbHK 1yvTGo3xVaT544VXYoNk4KBDkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnahLRl hVLbFaY1ZYDb7wB77yBkMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNq/jL0xXntCvJUgTi9A/9E4R0gdz+6V1WwtqZK2+XM86jKtPZSUxA rC+x8WtrlVz328JWI/8wnD16GcrgmZ2I5CEK/Po8ClBlvOJYB6fjeLpzq+xuvPJL lEl2tEd4Je9KlEXDAOsVlish5HI5KXd6cV4TvYq8xPD3KJrRybLO6dNh8JSkS+40 fOVAk8Ltg97Et4jC1eO9sd6ByzxNodxFcZgT/8J6a4F0dJrsQ9vdHgNWpe5bYR56 m5QkhWkoPQrK4vCmd0My/5oyJqFjl6sQBaWeI0ZyWdgtDNciRwRGOKGywPTy0CHY 9KcOhtiS1Wacg3alnQNAYqdrHufIMhXl -----END CERTIFICATE-----Generated at Sun Jul 20 19:02:58 2025 by rpki-client