$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft File: hrKx0eeCRIuE9pgY8WofcHtUyGw.mft (raw, json) Hash identifier: 1g3LQ2aq0R7CnHqgK0mL57eCrUm1fShYJQsgw8J7cI4= Subject key identifier: 85:8D:84:7A:C0:35:BF:36:78:63:72:14:68:84:D3:82:76:C1:75:47 Authority key identifier: 86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C Certificate issuer: /CN=A91EC979/serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C Certificate serial: 06EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft Manifest number: 06DB Signing time: Fri 18 Jul 2025 22:21:15 +0000 Manifest this update: Fri 18 Jul 2025 22:21:14 +0000 Manifest next update: Fri 25 Jul 2025 22:21:14 +0000 Files and hashes: 1: hrKx0eeCRIuE9pgY8WofcHtUyGw.crl (hash: gFbWHBgcDiDqV9qZCXxKL5dV+D7bAHrlLdxD1xE6D3Q=) 2: 956449BEFBF411EDBEAD0A26C4F9AE02.roa (hash: dsXz2lfcHryblqx1Ukw1H9WGMnpRDnzyM9OTmUgJl/0=) 3: 7A27A6E45FDB11EBA5C9EA7CC4F9AE02.roa (hash: W63Eb+30MCK+wn3+q84oKaizsJ4BNesWyN0s9mJY3b8=) 4: C5186FA283D311EEADE09225C4F9AE02.roa (hash: 6R33YrxpQxTL0tryG4KL8AOz8hxoPlF0ceIkKdbUGro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC979, serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C Validity Not Before: Jul 18 22:21:14 2025 GMT Not After : Jul 25 22:21:14 2025 GMT Subject: CN=687ac8da-2fce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:21:f6:25:d8:66:d1:a5:9a:10:92:a8:80:51: 17:5c:f4:3d:46:15:87:39:68:1b:f5:39:04:f1:98: c1:16:80:29:d3:4a:92:68:48:a8:f6:cc:e5:72:9b: c8:0e:02:6d:6a:be:a2:dc:f2:6a:95:16:f6:e9:8a: c7:f1:5f:24:b9:6e:bf:64:91:21:65:00:e7:18:1b: c4:fb:a3:1a:fe:38:a9:a8:cd:d1:fa:56:65:84:cd: 91:f3:2c:bd:1c:ef:49:55:6d:2f:dd:06:e8:ec:e5: 8a:a4:85:30:5a:1a:43:c2:fd:dd:8e:7a:b8:b2:00: 78:1d:55:42:91:e1:36:e6:e4:dd:a9:8c:97:1e:d1: d3:4d:a9:30:34:bc:05:d7:96:37:b1:8e:56:69:da: e7:d1:d4:aa:60:5f:2b:1f:14:b7:85:f3:3a:25:be: 46:5c:01:c8:ad:03:15:0a:6d:5e:4d:16:ec:1d:7d: 89:d6:72:be:59:9e:5a:a5:29:f0:e1:ea:85:49:cc: 64:f7:fe:df:96:6b:dc:de:c0:e4:6f:6a:9d:76:eb: 22:b4:df:fc:79:55:57:3d:8c:f1:1e:4f:a9:10:61: 68:f6:cd:6b:f5:55:a8:fa:9f:1a:2b:82:97:70:d3: ac:6a:08:7a:9b:22:32:2a:16:73:8d:99:6a:32:56: 3a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8D:84:7A:C0:35:BF:36:78:63:72:14:68:84:D3:82:76:C1:75:47 X509v3 Authority Key Identifier: keyid:86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:85:2f:45:73:bb:e8:e5:86:7f:c7:2a:68:5d:61:67:80:e2: 0a:ca:0b:a2:60:3e:2a:84:5a:b7:11:46:4d:ae:35:ec:9e:4d: 6a:28:42:13:07:01:aa:73:35:f8:64:b0:e5:b5:c4:94:1b:08: 8b:10:4c:b5:47:5c:65:35:65:08:16:e2:ea:10:30:6a:3c:2c: 1b:a3:41:72:e1:f3:5a:38:06:36:39:16:70:ff:30:8b:ad:3e: 88:6d:97:3d:81:cb:b2:b2:39:84:26:05:bb:96:b6:06:e4:b4: 3d:01:81:57:a8:13:b4:60:36:0b:92:2a:ef:fb:fd:df:61:3b: 3f:06:dc:72:60:9f:0a:59:b6:98:51:54:a0:4a:a3:2a:bc:79: 7b:d4:ca:84:37:ad:20:c1:69:c6:f1:66:ab:bb:49:89:3b:35: c7:79:05:2f:7a:f7:bf:41:b0:84:03:a6:99:63:4d:54:11:cb: d1:ab:e0:ca:10:d9:e2:c8:f9:38:d2:9d:c6:18:e8:9a:7d:10: e8:ca:02:9c:8d:1f:fa:9d:be:96:63:56:e6:b9:8a:6b:f1:9d: d8:64:99:57:2d:2d:98:60:98:b1:4e:09:7e:d1:7c:c4:c0:1a: 39:31:0a:e5:7e:c0:67:fd:0b:dd:7e:67:d8:65:ec:0d:94:17: af:34:07:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5NzkxMTAvBgNVBAUTKDg2QjJCMUQxRTc4MjQ0OEI4NEY2OTgxOEYxNkExRjcw N0I1NEM4NkMwHhcNMjUwNzE4MjIyMTE0WhcNMjUwNzI1MjIyMTE0WjAYMRYwFAYD VQQDEw02ODdhYzhkYS0yZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CH2Jdhm0aWaEJKogFEXXPQ9RhWHOWgb9TkE8ZjBFoAp00qSaEio9szlcpvI DgJtar6i3PJqlRb26YrH8V8kuW6/ZJEhZQDnGBvE+6Ma/jipqM3R+lZlhM2R8yy9 HO9JVW0v3Qbo7OWKpIUwWhpDwv3djnq4sgB4HVVCkeE25uTdqYyXHtHTTakwNLwF 15Y3sY5Wadrn0dSqYF8rHxS3hfM6Jb5GXAHIrQMVCm1eTRbsHX2J1nK+WZ5apSnw 4eqFScxk9/7flmvc3sDkb2qddusitN/8eVVXPYzxHk+pEGFo9s1r9VWo+p8aK4KX cNOsagh6myIyKhZzjZlqMlY6qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWNhHrA Nb82eGNyFGiE04J2wXVHMB8GA1UdIwQYMBaAFIaysdHngkSLhPaYGPFqH3B7VMhs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzk3OS9FRDYzM0U4NjVG RDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVlQ1JJdUU5cGdZOFdvZmNIdFV5 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hyS3gwZWVDUkl1RTlwZ1k4V29mY0h0VXlHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Qzk3OS9FRDYzM0U4NjVGRDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVlQ1JJ dUU5cGdZOFdvZmNIdFV5R3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvhS9Fc7vo5YZ/xypoXWFngOIKyguiYD4qhFq3EUZNrjXsnk1qKEIT BwGqczX4ZLDltcSUGwiLEEy1R1xlNWUIFuLqEDBqPCwbo0Fy4fNaOAY2ORZw/zCL rT6IbZc9gcuysjmEJgW7lrYG5LQ9AYFXqBO0YDYLkirv+/3fYTs/BtxyYJ8KWbaY UVSgSqMqvHl71MqEN60gwWnG8Waru0mJOzXHeQUveve/QbCEA6aZY01UEcvRq+DK ENniyPk40p3GGOiafRDoygKcjR/6nb6WY1bmuYpr8Z3YZJlXLS2YYJixTgl+0XzE wBo5MQrlfsBn/QvdfmfYZewNlBevNAd9 -----END CERTIFICATE-----Generated at Sun Jul 20 16:23:35 2025 by rpki-client