$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: y+Kr+5atZsS6KSJ32LZWq33FDpR15q5TSL9pOif53D0= Subject key identifier: 1C:CA:45:64:2B:07:B0:DF:55:7D:96:C5:E4:59:B5:DD:13:EA:A4:F9 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 0196 Signing time: Sat 19 Jul 2025 03:37:28 +0000 Manifest this update: Sat 19 Jul 2025 03:37:28 +0000 Manifest next update: Sat 26 Jul 2025 03:37:28 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: 2V8L0BMCPJje6J/zXwW6heM29+0zcRQYcrFFDl8XQHY=) 2: C369BA98260D11F082934618C4F9AE02.roa (hash: Iy42QwXSYupuqL3QvzsRCg121JGBmvoKUxVedTulj7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Jul 19 03:37:28 2025 GMT Not After : Jul 26 03:37:28 2025 GMT Subject: CN=687b12f8-76eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:ed:36:5c:33:be:9f:33:61:4b:b2:47:58: 7d:c5:58:70:a1:ae:92:2b:b7:97:a0:23:c7:5b:2d: d5:ed:72:00:31:38:67:ad:5d:7d:30:6e:76:b7:d1: 48:2a:44:90:eb:f1:56:18:97:7b:2a:a9:30:e0:74: 47:8c:69:bb:58:a8:74:31:98:73:ad:ef:59:8a:5e: 0a:d2:e9:41:14:d9:3c:bc:02:ef:4a:2d:de:4f:5a: cb:1b:45:96:20:c7:4f:c3:74:96:d6:fa:33:8e:a7: e1:de:15:db:9f:9f:38:23:92:3b:b4:83:5b:71:63: 62:16:72:77:a3:83:84:89:c5:fc:8e:e4:e1:61:d2: 8f:e3:54:ab:c0:a8:9c:89:49:d1:bc:23:b8:7d:99: 0b:14:b7:11:58:c4:ef:56:40:21:70:5e:eb:7d:61: 7b:a1:b6:1f:d4:6e:3f:d7:89:bc:bc:66:64:2c:d4: b0:56:f2:5b:75:a5:29:08:6c:97:3e:58:9d:ab:be: 64:58:31:0a:e2:98:0a:fb:c3:00:0d:0f:d9:12:a6: 5e:b4:f4:40:76:19:28:35:b2:68:5a:0b:65:cd:df: d2:dc:3b:2e:17:44:5a:cc:b9:92:20:8b:b9:26:dd: 6e:19:62:90:23:0f:b1:c3:f7:b7:ec:75:99:be:76: 56:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:45:64:2B:07:B0:DF:55:7D:96:C5:E4:59:B5:DD:13:EA:A4:F9 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:43:83:b4:b2:19:ad:57:2c:48:d0:b4:69:74:f9:f3:be:fd: ea:ef:ae:5c:01:2c:f2:e1:2c:c0:66:85:bb:45:2a:75:e2:90: 70:a1:b2:75:27:ea:7d:08:22:a7:53:4f:35:51:97:fb:5a:47: a1:b2:a7:68:8c:a1:07:f9:71:57:77:a8:c2:f9:c4:41:7a:e7: e1:5c:c9:d0:aa:62:ee:08:e7:a9:2b:9e:67:5c:3d:00:c9:6c: e4:e9:45:e2:86:e3:be:a0:d2:08:1b:f0:17:89:e3:98:12:95: be:a4:61:24:b7:ef:f4:dc:c1:f7:89:cf:48:93:b4:f1:ae:1e: 66:cd:6b:54:e6:60:1f:43:7d:f8:44:fc:4d:f7:ed:33:54:4e: 3d:cf:ae:fb:ba:5f:c1:aa:bb:e0:11:40:9b:bb:81:f5:93:bf: f0:ce:a9:1c:56:c3:c5:64:aa:8a:3b:12:28:03:ee:75:51:66: b9:e4:dc:3b:e8:3b:e7:fc:a0:56:25:ae:3f:1c:e3:af:3b:eb: e2:30:a3:cf:44:0e:c8:1f:de:3e:b6:06:b0:f9:38:80:72:53: 68:58:c8:31:8e:15:f3:19:15:ec:5f:cd:49:63:00:99:25:33: 65:86:e4:35:86:e2:5a:47:53:9c:73:88:01:8f:3a:51:93:28: 54:58:b7:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUwNzE5MDMzNzI4WhcNMjUwNzI2MDMzNzI4WjAYMRYwFAYD VQQDEw02ODdiMTJmOC03NmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4ztNlwzvp8zYUuyR1h9xVhwoa6SK7eXoCPHWy3V7XIAMThnrV19MG52t9FI KkSQ6/FWGJd7Kqkw4HRHjGm7WKh0MZhzre9Zil4K0ulBFNk8vALvSi3eT1rLG0WW IMdPw3SW1vozjqfh3hXbn584I5I7tINbcWNiFnJ3o4OEicX8juThYdKP41SrwKic iUnRvCO4fZkLFLcRWMTvVkAhcF7rfWF7obYf1G4/14m8vGZkLNSwVvJbdaUpCGyX Plidq75kWDEK4pgK+8MADQ/ZEqZetPRAdhkoNbJoWgtlzd/S3DsuF0RazLmSIIu5 Jt1uGWKQIw+xw/e37HWZvnZWeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzKRWQr B7DfVX2WxeRZtd0T6qT5MB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyQ4O0shmtVyxI0LRpdPnzvv3q765cASzy4SzAZoW7RSp14pBwobJ1 J+p9CCKnU081UZf7WkehsqdojKEH+XFXd6jC+cRBeufhXMnQqmLuCOepK55nXD0A yWzk6UXihuO+oNIIG/AXieOYEpW+pGEkt+/03MH3ic9Ik7Txrh5mzWtU5mAfQ334 RPxN9+0zVE49z677ul/BqrvgEUCbu4H1k7/wzqkcVsPFZKqKOxIoA+51UWa55Nw7 6Dvn/KBWJa4/HOOvO+viMKPPRA7IH94+tgaw+TiAclNoWMgxjhXzGRXsX81JYwCZ JTNlhuQ1huJaR1Occ4gBjzpRkyhUWLcG -----END CERTIFICATE-----Generated at Sun Jul 20 07:33:14 2025 by rpki-client