$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: ZF4eRXJW4RqWSJYdKtUkpOvK+BL7x8amucP/yCeZU/4= Subject key identifier: E2:DF:3B:CA:30:13:F2:3C:B1:91:8F:D5:28:B2:28:52:5E:B9:AD:B1 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1814 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17FC Signing time: Sat 06 Sep 2025 16:38:12 +0000 Manifest this update: Sat 06 Sep 2025 16:38:12 +0000 Manifest next update: Sat 13 Sep 2025 16:38:12 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: wpzjRcxuR1drk5D9jDAo4RNx22RTtRVDcZYs9HJ9BuY=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6164 (0x1814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Sep 6 16:38:12 2025 GMT Not After : Sep 13 16:38:12 2025 GMT Subject: CN=68bc6374-3266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a6:8e:6a:75:dd:fb:74:5d:74:fc:0d:5f:b3: 0f:eb:cd:ab:fc:29:b2:66:43:2b:4b:10:2f:0b:71: 06:5f:cf:af:47:54:ee:53:20:30:46:e3:19:32:03: 9b:fd:32:29:0d:23:c5:35:ad:c0:c0:e1:ee:f4:99: 3c:57:fe:38:e0:5e:b6:33:2c:23:79:26:0d:16:0b: 52:ee:4b:64:ee:b7:f2:b5:32:fb:1a:fe:1d:ba:15: 42:71:83:28:bd:6f:bf:f3:7e:38:1c:d0:ae:43:83: 23:48:80:be:d7:b6:fa:ca:57:1a:7a:75:b8:7a:3f: 7e:4b:e8:2c:ec:9f:c2:8b:b2:6f:87:c6:b3:bd:f7: b4:18:46:06:41:be:51:d0:70:50:64:1a:e7:a6:d8: 88:6f:f5:e0:a6:7c:6a:84:33:cc:df:2a:06:8d:aa: e9:c9:a6:4b:e1:5c:83:55:0f:7a:eb:25:aa:5c:af: d4:8b:d1:d9:46:62:a5:88:a7:42:a5:e0:0b:52:85: bd:00:04:11:43:8d:ba:e1:c9:ad:7f:95:12:be:fb: 02:c6:38:52:6a:23:c3:03:ff:15:4a:66:90:74:b2: f7:30:84:73:21:78:ba:5c:e8:9b:f5:df:97:6f:85: 8b:83:9b:43:2b:5b:b6:29:29:46:4a:6b:20:e3:f3: 0a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DF:3B:CA:30:13:F2:3C:B1:91:8F:D5:28:B2:28:52:5E:B9:AD:B1 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3d:b3:f3:ac:b1:8d:b7:99:37:8c:50:13:b0:91:d2:30:b8: c3:3b:0a:e7:16:d0:ef:7b:bd:f5:8f:ec:84:2e:a0:d6:37:54: 38:4c:13:3b:4d:4d:bc:f6:82:e4:ca:2c:61:3e:c3:fa:14:18: 76:70:46:9a:75:dd:f3:f1:18:bb:fc:4d:2c:12:c2:ac:53:bd: 65:84:05:29:2a:b8:f5:2e:9a:f2:3c:c0:cb:a3:53:07:1c:95: 94:75:22:44:86:f6:9a:5e:c9:d7:57:77:02:ca:8e:06:94:26: 2a:48:1e:1c:68:ff:00:76:ad:54:4e:09:98:99:7a:b2:74:6b: 64:3a:d2:50:50:d9:fc:04:d1:c8:7e:db:6a:6c:89:d1:1e:8c: f0:c6:cb:1a:ac:38:a0:bd:f7:9c:05:04:13:08:44:e2:50:b3: 6b:e8:c3:0f:18:23:ff:27:86:2b:cb:26:38:45:e1:4a:9e:43: 82:45:d8:4c:47:da:54:35:10:02:ac:66:8f:14:bf:0c:2e:5e: 89:17:41:17:75:6d:9a:aa:36:63:04:e6:b7:2f:9d:63:fc:46: f3:5f:4a:f8:82:e3:15:4d:ee:f3:d8:4d:16:a1:75:27:03:7e: 27:d8:05:f9:81:40:cc:49:a6:bd:07:7c:cd:10:20:8f:7e:dd: 92:b8:3a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwOTA2MTYzODEyWhcNMjUwOTEzMTYzODEyWjAYMRYwFAYD VQQDEw02OGJjNjM3NC0zMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaaOanXd+3RddPwNX7MP682r/CmyZkMrSxAvC3EGX8+vR1TuUyAwRuMZMgOb /TIpDSPFNa3AwOHu9Jk8V/444F62MywjeSYNFgtS7ktk7rfytTL7Gv4duhVCcYMo vW+/8344HNCuQ4MjSIC+17b6ylcaenW4ej9+S+gs7J/Ci7Jvh8azvfe0GEYGQb5R 0HBQZBrnptiIb/XgpnxqhDPM3yoGjarpyaZL4VyDVQ966yWqXK/Ui9HZRmKliKdC peALUoW9AAQRQ4264cmtf5USvvsCxjhSaiPDA/8VSmaQdLL3MIRzIXi6XOib9d+X b4WLg5tDK1u2KSlGSmsg4/MKnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLfO8ow E/I8sZGP1SiyKFJeua2xMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGPbPzrLGNt5k3jFATsJHSMLjDOwrnFtDve731j+yELqDWN1Q4TBM7 TU289oLkyixhPsP6FBh2cEaadd3z8Ri7/E0sEsKsU71lhAUpKrj1LpryPMDLo1MH HJWUdSJEhvaaXsnXV3cCyo4GlCYqSB4caP8Adq1UTgmYmXqydGtkOtJQUNn8BNHI fttqbInRHozwxssarDigvfecBQQTCETiULNr6MMPGCP/J4YryyY4ReFKnkOCRdhM R9pUNRACrGaPFL8MLl6JF0EXdW2aqjZjBOa3L51j/EbzX0r4guMVTe7z2E0WoXUn A34n2AX5gUDMSaa9B3zNECCPft2SuDpR -----END CERTIFICATE-----Generated at Mon Sep 8 00:07:36 2025 by rpki-client