$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: 3ZyClzXkJFuttg4SvYomehOIXL6684zUo/Kdo0P2eqE= Subject key identifier: 0A:8F:D4:03:95:42:D0:56:20:9E:03:C5:A4:A6:89:47:AE:4C:97:3D Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 0384 Signing time: Sat 23 Aug 2025 01:05:15 +0000 Manifest this update: Sat 23 Aug 2025 01:05:15 +0000 Manifest next update: Sat 30 Aug 2025 01:05:15 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: ESDyyOo2geGTmn4GUElfGUsdczejNC+JLYrMRnjOIk0=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: m/bIsnc72f+GKlsPAyrWqEs82wNRpWBNpwKZDStdnM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Aug 23 01:05:15 2025 GMT Not After : Aug 30 01:05:15 2025 GMT Subject: CN=68a913cb-c7a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:22:c2:34:82:41:60:4e:67:80:31:8e:07:e8: 42:d3:75:57:c1:5d:b2:90:b6:c0:0b:a8:1f:54:53: c7:0c:5a:20:26:bf:e9:04:eb:2d:94:de:97:b2:a5: 21:f0:6b:44:15:96:5e:68:3f:bc:fc:f9:e3:a9:d7: 8d:60:6c:92:aa:c6:d6:b2:78:7c:36:3c:91:8c:8a: d7:10:bd:10:9b:5e:36:d0:41:46:51:f9:39:c1:06: ab:c8:01:fe:c9:9d:de:4d:4b:ee:a4:41:16:b8:fc: 39:55:ab:f1:f0:ad:d9:a7:a3:af:17:ee:0d:1a:b7: bd:aa:d7:92:36:59:eb:5d:a0:a8:31:16:24:5a:a7: a1:2e:99:2c:6f:c0:2e:ac:8f:0f:b5:05:8a:67:79: 4d:43:a7:df:61:58:37:f5:e2:31:8b:38:11:55:26: 7b:3f:6a:ed:18:df:28:00:e0:71:b8:a3:53:2f:b5: a1:75:d7:26:8d:8e:bb:cc:64:eb:38:db:b3:a9:77: 79:f5:28:e3:0a:cc:84:7e:bd:9f:30:0e:94:6c:1b: 34:2b:49:09:91:75:b7:3b:03:5b:f1:73:f9:c7:a2: a0:3f:b0:b1:6e:25:60:9c:c8:08:eb:16:c4:e7:20: d4:cd:a4:2d:9e:26:76:84:03:1e:74:98:6e:40:21: 0b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8F:D4:03:95:42:D0:56:20:9E:03:C5:A4:A6:89:47:AE:4C:97:3D X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b5:8e:eb:29:ce:c0:b6:b8:ae:ef:3a:a1:97:a0:bc:78:cf: 2f:85:d7:7c:54:f9:88:f9:51:a2:9e:50:29:b3:9b:95:13:77: 9c:9e:05:43:1c:c5:83:ee:99:bf:c8:20:1b:ea:24:aa:ef:a7: 33:fd:20:d5:07:3c:c2:81:2a:0a:eb:4b:e6:15:4e:29:44:29: b0:b6:57:f0:41:5c:db:cd:2b:96:d5:59:c3:49:81:de:0f:b9: 84:8a:71:d6:9b:af:c4:e9:24:97:65:85:67:51:90:9a:19:e6: e4:1c:23:b0:e0:d9:21:74:c1:0a:e2:ce:8c:39:56:81:a2:ab: ee:fe:9b:25:d1:40:b7:7c:4c:fa:2e:5f:2d:65:68:75:57:7b: 00:ed:7d:e1:4c:f4:eb:cf:cb:84:85:42:91:7e:95:c1:b0:d3: 94:fc:3a:0f:88:12:85:51:4d:a0:2f:25:4b:dd:8b:98:4e:f6: 1c:9b:f1:63:df:f5:d9:d1:06:94:f6:37:15:66:45:db:31:e2: 1d:2e:8d:1e:01:7c:f6:9a:2c:c9:d7:65:3c:4a:ae:ea:d9:5b: 89:81:a8:c5:45:f9:f0:58:2b:05:41:1e:dc:6b:d5:2a:cd:3d: 93:74:79:f0:1c:35:23:55:1a:4d:c4:ee:fd:33:aa:16:70:33: d6:a2:f1:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjUwODIzMDEwNTE1WhcNMjUwODMwMDEwNTE1WjAYMRYwFAYD VQQDEw02OGE5MTNjYi1jN2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yLCNIJBYE5ngDGOB+hC03VXwV2ykLbAC6gfVFPHDFogJr/pBOstlN6XsqUh 8GtEFZZeaD+8/PnjqdeNYGySqsbWsnh8NjyRjIrXEL0Qm1420EFGUfk5wQaryAH+ yZ3eTUvupEEWuPw5Vavx8K3Zp6OvF+4NGre9qteSNlnrXaCoMRYkWqehLpksb8Au rI8PtQWKZ3lNQ6ffYVg39eIxizgRVSZ7P2rtGN8oAOBxuKNTL7WhddcmjY67zGTr ONuzqXd59SjjCsyEfr2fMA6UbBs0K0kJkXW3OwNb8XP5x6KgP7CxbiVgnMgI6xbE 5yDUzaQtniZ2hAMedJhuQCELEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqP1AOV QtBWIJ4DxaSmiUeuTJc9MB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBztY7rKc7Atriu7zqhl6C8eM8vhdd8VPmI+VGinlAps5uVE3ecngVD HMWD7pm/yCAb6iSq76cz/SDVBzzCgSoK60vmFU4pRCmwtlfwQVzbzSuW1VnDSYHe D7mEinHWm6/E6SSXZYVnUZCaGebkHCOw4NkhdMEK4s6MOVaBoqvu/psl0UC3fEz6 Ll8tZWh1V3sA7X3hTPTrz8uEhUKRfpXBsNOU/DoPiBKFUU2gLyVL3YuYTvYcm/Fj 3/XZ0QaU9jcVZkXbMeIdLo0eAXz2mizJ12U8Sq7q2VuJgajFRfnwWCsFQR7ca9Uq zT2TdHnwHDUjVRpNxO79M6oWcDPWovFc -----END CERTIFICATE-----Generated at Sun Aug 24 22:05:01 2025 by rpki-client