$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: vvPWxePunn8Sv63QXC08mW7ECBhiWgXQK6giYmTj8Qk= Subject key identifier: 60:35:2D:39:C2:4B:0C:A3:D7:A1:F0:23:6B:A8:C4:E1:FC:AB:A7:46 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 2104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20F2 Signing time: Thu 24 Jul 2025 16:02:31 +0000 Manifest this update: Thu 24 Jul 2025 16:02:30 +0000 Manifest next update: Thu 31 Jul 2025 16:02:30 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: +CF2L3Wc28m+WLaMc+e3SUFX5SZSUsejq2hAN4ohIeE=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 16:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8452 (0x2104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Jul 24 16:02:30 2025 GMT Not After : Jul 31 16:02:30 2025 GMT Subject: CN=68825917-9d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:84:3d:8d:69:4f:65:98:d0:c2:2f:62:34:23: 1e:a1:06:81:23:33:89:4f:c7:40:ec:41:ef:d0:5c: 91:29:5d:e0:2a:fe:7a:75:d5:23:0d:e8:21:00:19: e7:24:65:2e:16:f8:f1:18:0a:0b:5f:1c:93:e1:39: d7:7e:79:90:9f:b1:f0:3e:bd:a7:d2:a2:49:e3:73: 09:a4:e3:ab:93:cf:a1:24:bb:9d:1c:e1:9c:d4:a5: 31:40:e7:ed:1c:75:6b:a9:f6:2c:90:2a:e2:75:5c: 85:fb:65:95:d5:a6:a1:9d:d2:37:49:72:3e:8c:f8: 48:43:0a:81:46:21:0f:6e:3b:2b:fc:68:10:db:07: b2:75:02:78:70:41:2c:11:a5:52:9a:8e:f9:7f:e0: 11:e7:c3:46:9e:c3:51:b6:c8:13:cd:f7:f1:88:12: 69:ea:fe:b5:51:2a:bd:a8:86:e4:aa:9a:e4:7a:be: 65:0d:e0:03:6c:6c:52:d7:44:9e:05:1b:78:40:f4: 35:e8:c0:76:b2:87:74:55:4a:74:76:99:3c:10:bb: 28:00:8f:21:2a:a4:0f:1c:c4:46:9d:21:44:0d:60: 78:87:a7:a8:ff:58:29:af:05:94:37:5a:a0:92:97: fd:c5:64:3f:ee:a7:5e:db:fa:7f:f6:10:45:21:56: 17:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:35:2D:39:C2:4B:0C:A3:D7:A1:F0:23:6B:A8:C4:E1:FC:AB:A7:46 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ed:27:45:d0:2a:9b:16:cb:d4:25:04:5a:e4:72:ce:30:4a: b1:d7:28:a9:36:df:09:fc:11:5f:b8:04:c3:ae:ac:bf:0a:1c: fa:c0:47:1b:a6:42:7f:ee:b1:ff:1a:1f:bd:eb:19:18:12:bc: 3a:ca:df:b4:ca:85:ab:3b:24:f1:1b:50:7d:63:23:f1:5e:6d: 4c:6b:60:84:30:b8:79:c2:02:c5:4c:15:86:99:d5:13:a0:bd: d1:bb:b1:13:a6:f9:b8:47:eb:4c:fb:89:58:4e:95:df:df:7d: b4:67:84:e3:01:da:a9:f7:e5:5c:a9:bc:08:da:ab:39:ea:a3: 52:11:e0:6e:bd:29:ff:0f:43:8d:92:8e:a2:86:20:42:13:fc: 55:a6:5e:9b:d4:15:88:53:00:41:9e:d2:88:43:46:d6:ee:ce: c2:8d:46:72:8a:1d:a1:2a:76:a1:29:63:74:31:59:a4:75:34: 24:a9:2c:f5:0a:18:2f:e8:d1:99:ef:7d:f4:10:86:e5:4d:b9: b7:ff:b3:4f:e0:9f:4d:58:5d:2d:67:85:4a:8e:e4:b9:d7:7c: bc:52:9c:b4:19:80:c0:53:f0:83:88:6e:32:0d:c8:e7:7a:71: 89:9c:0e:e1:96:5c:19:e6:b1:73:02:68:55:01:46:28:b3:aa: 81:1e:d7:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwNzI0MTYwMjMwWhcNMjUwNzMxMTYwMjMwWjAYMRYwFAYD VQQDEw02ODgyNTkxNy05ZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4Q9jWlPZZjQwi9iNCMeoQaBIzOJT8dA7EHv0FyRKV3gKv56ddUjDeghABnn JGUuFvjxGAoLXxyT4TnXfnmQn7HwPr2n0qJJ43MJpOOrk8+hJLudHOGc1KUxQOft HHVrqfYskCridVyF+2WV1aahndI3SXI+jPhIQwqBRiEPbjsr/GgQ2weydQJ4cEEs EaVSmo75f+AR58NGnsNRtsgTzffxiBJp6v61USq9qIbkqprker5lDeADbGxS10Se BRt4QPQ16MB2sod0VUp0dpk8ELsoAI8hKqQPHMRGnSFEDWB4h6eo/1gprwWUN1qg kpf9xWQ/7qde2/p/9hBFIVYX5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGA1LTnC Swyj16HwI2uoxOH8q6dGMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD7SdF0CqbFsvUJQRa5HLOMEqx1yipNt8J/BFfuATDrqy/Chz6wEcb pkJ/7rH/Gh+96xkYErw6yt+0yoWrOyTxG1B9YyPxXm1Ma2CEMLh5wgLFTBWGmdUT oL3Ru7ETpvm4R+tM+4lYTpXf3320Z4TjAdqp9+VcqbwI2qs56qNSEeBuvSn/D0ON ko6ihiBCE/xVpl6b1BWIUwBBntKIQ0bW7s7CjUZyih2hKnahKWN0MVmkdTQkqSz1 Chgv6NGZ7330EIblTbm3/7NP4J9NWF0tZ4VKjuS513y8Upy0GYDAU/CDiG4yDcjn enGJnA7hllwZ5rFzAmhVAUYos6qBHtd3 -----END CERTIFICATE-----Generated at Fri Jul 25 07:01:50 2025 by rpki-client