$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft File: ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft (raw, json) Hash identifier: tWl8ZoB3cTZr24N2Ueeh2+itQpLaJSkDXsanGmf7p0U= Subject key identifier: 37:3B:A3:80:E2:A3:48:A9:5F:BE:76:0A:03:B7:41:72:AC:CA:0C:AE Authority key identifier: 85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 Certificate issuer: /CN=A91E9EBA/serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft Manifest number: AF Signing time: Sat 19 Jul 2025 06:14:08 +0000 Manifest this update: Sat 19 Jul 2025 06:14:08 +0000 Manifest next update: Sat 26 Jul 2025 06:14:08 +0000 Files and hashes: 1: ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl (hash: 3eSDyupM6jlQAPmrtyZZvFqCyAAm0JuRrkU5dWR315E=) 2: 36C627945ADD11EF80893A3FC4F9AE02.roa (hash: SmnJr3cmtzrwi435sl7t5/Qk1K3MbfKQ5zVZNYo5M50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9EBA, serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4 Validity Not Before: Jul 19 06:14:08 2025 GMT Not After : Jul 26 06:14:08 2025 GMT Subject: CN=687b37b0-8100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a3:a2:2f:24:34:f5:12:b4:df:22:a5:9e:ea: a3:25:36:8b:bf:d3:be:d6:f6:cc:f4:bd:03:50:7b: 20:b7:1e:d1:51:e9:e3:9a:f9:ac:6c:2f:a2:29:6b: 77:19:c5:1b:00:4c:65:ed:b8:c5:0d:8e:04:9e:d6: 5a:9f:71:01:89:5f:26:2c:9b:c4:4f:cb:dd:c2:ca: c6:af:96:b3:aa:cc:a7:5e:c8:68:65:fe:2c:5a:b6: 64:0d:91:88:0a:5e:3e:02:23:00:5d:8b:37:13:ba: a8:5a:db:d1:d7:eb:f5:bc:85:9f:1b:8c:cc:98:da: e6:ad:94:32:af:de:75:fb:a6:75:f5:88:05:d5:b6: 92:48:d6:74:e4:33:af:47:e0:2c:66:ed:58:ae:22: 97:c3:c3:7f:42:fd:ef:80:18:d8:18:37:9d:46:c9: ef:f5:99:36:91:56:81:75:05:c3:65:8e:a6:0a:7f: eb:9d:65:1e:c4:9a:0c:ac:b2:5a:e9:4c:36:a5:49: 15:29:6d:2b:49:5e:c1:9d:cb:b0:16:56:69:2b:80: 21:02:6b:98:40:5d:87:96:ae:0e:59:a5:a5:3a:a5: 36:5e:77:32:f2:be:47:77:61:ba:76:72:22:f4:c4: d7:9f:9e:ef:60:6b:65:72:d7:80:59:37:74:2d:e2: af:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:3B:A3:80:E2:A3:48:A9:5F:BE:76:0A:03:B7:41:72:AC:CA:0C:AE X509v3 Authority Key Identifier: keyid:85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ea:1e:b2:4d:ba:c3:08:43:ae:af:89:5a:59:05:43:47:cf: c4:58:a8:29:3f:d7:34:14:8d:d3:a2:1e:cf:c0:c7:0a:1e:42: fd:80:5a:6a:80:bf:16:4a:2a:db:0d:ab:5b:90:d2:87:f8:6b: 45:a4:d4:1c:01:31:f6:9a:5a:e0:34:08:20:23:61:1c:d6:1a: 1f:af:27:19:05:46:30:e9:4f:a8:87:03:0d:18:b4:e7:28:0f: 8d:de:5c:7f:91:f1:79:a7:4d:17:fb:27:4c:70:53:9c:d7:d2: 2e:11:0b:7f:52:9d:59:74:a9:9b:3d:ba:85:07:fc:75:b7:ed: 40:8b:43:96:89:4e:36:42:4d:45:a7:64:84:91:8c:b2:40:98: 23:33:ea:b4:1a:40:b0:20:d1:7c:0f:37:51:c9:dd:48:c0:94: 04:ed:c1:8d:53:52:6d:f6:7d:01:d0:93:d6:85:78:8b:4c:07: 38:ad:cf:89:17:17:b2:11:df:4d:87:9c:9e:69:a0:03:51:a1: e7:08:52:b0:dc:90:d3:85:9e:77:e6:f8:3e:3f:7b:1d:4a:d0: 3e:61:25:46:4a:90:22:07:85:9b:ea:44:8f:0d:6e:ba:db:50: 79:7f:eb:4d:ed:27:b6:20:e2:19:f6:1c:ea:93:ce:0a:4e:f3: 20:80:5f:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlFQkExMTAvBgNVBAUTKDg1QUU2MjE5Rjg2MjY5NDE0QkUxNzZCNzgyNUYxNkNE REQ0MjQyRDQwHhcNMjUwNzE5MDYxNDA4WhcNMjUwNzI2MDYxNDA4WjAYMRYwFAYD VQQDEw02ODdiMzdiMC04MTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaOiLyQ09RK03yKlnuqjJTaLv9O+1vbM9L0DUHsgtx7RUenjmvmsbC+iKWt3 GcUbAExl7bjFDY4EntZan3EBiV8mLJvET8vdwsrGr5azqsynXshoZf4sWrZkDZGI Cl4+AiMAXYs3E7qoWtvR1+v1vIWfG4zMmNrmrZQyr951+6Z19YgF1baSSNZ05DOv R+AsZu1YriKXw8N/Qv3vgBjYGDedRsnv9Zk2kVaBdQXDZY6mCn/rnWUexJoMrLJa 6Uw2pUkVKW0rSV7BncuwFlZpK4AhAmuYQF2Hlq4OWaWlOqU2Xncy8r5Hd2G6dnIi 9MTXn57vYGtlcteAWTd0LeKvpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDc7o4Di o0ipX752CgO3QXKsygyuMB8GA1UdIwQYMBaAFIWuYhn4YmlBS+F2t4JfFs3dQkLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUVCQS9GQTMyMENEQTVB REMxMUVGQjU2MDY2MzdDNEY5QUUwMi9oYTVpR2ZoaWFVRkw0WGEzZ2w4V3pkMUNR dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhNWlHZmhpYVVGTDRYYTNnbDhXemQxQ1F0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUVCQS9GQTMyMENEQTVBREMxMUVGQjU2MDY2MzdDNEY5QUUwMi9oYTVpR2ZoaWFV Rkw0WGEzZ2w4V3pkMUNRdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo6h6yTbrDCEOur4laWQVDR8/EWKgpP9c0FI3Toh7PwMcKHkL9gFpq gL8WSirbDatbkNKH+GtFpNQcATH2mlrgNAggI2Ec1hofrycZBUYw6U+ohwMNGLTn KA+N3lx/kfF5p00X+ydMcFOc19IuEQt/Up1ZdKmbPbqFB/x1t+1Ai0OWiU42Qk1F p2SEkYyyQJgjM+q0GkCwINF8DzdRyd1IwJQE7cGNU1Jt9n0B0JPWhXiLTAc4rc+J FxeyEd9Nh5yeaaADUaHnCFKw3JDThZ535vg+P3sdStA+YSVGSpAiB4Wb6kSPDW66 21B5f+tN7Se2IOIZ9hzqk84KTvMggF/s -----END CERTIFICATE-----Generated at Sun Jul 20 15:22:46 2025 by rpki-client