$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: DjJULdUM7spzid8mwryidGc40r7B1K35tQMXxGBBw88= Subject key identifier: 07:6E:35:7F:54:08:02:D9:D1:D1:3A:7B:D3:DF:38:16:94:F9:E3:B1 Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 0100 Signing time: Sun 24 Aug 2025 05:58:30 +0000 Manifest this update: Sun 24 Aug 2025 05:58:30 +0000 Manifest next update: Sun 31 Aug 2025 05:58:30 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: Tl9rosRZyr7dJ6ZwhjYnnN4gXtB8/wtip6UZsbu090Y=) 2: 35274C3080AF11F0BAFC1E65C4F9AE02.roa (hash: 4ybvDEw+ybpfGmixJrGgzd7Dw99nknebyCRa5+FGzd4=) 3: 5A69093E80AF11F091197D65C4F9AE02.roa (hash: o6UuTDEKWu9PLmiSOSK0leHko+fS7Xic7XGmw9sxKpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 05:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Aug 24 05:58:30 2025 GMT Not After : Aug 31 05:58:30 2025 GMT Subject: CN=68aaaa06-5a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:b1:2e:68:2b:28:4c:b1:f3:3f:d1:ee:ca: 42:76:ae:15:61:c9:4f:07:8a:ac:2e:7d:6a:67:e2: 76:88:96:0e:91:00:bb:09:ee:c6:c7:a4:cf:ab:44: f0:61:f1:11:26:66:4d:4e:31:66:b6:ac:4c:b4:ea: 20:32:06:6e:ec:09:d6:ca:5d:28:c0:85:45:d8:43: 06:de:34:6d:58:9b:ce:4e:71:25:e4:7d:bb:46:12: 75:57:89:7e:ca:16:ca:fd:7d:ae:f7:97:da:0e:52: b6:5f:04:38:91:d3:39:fb:ba:02:e4:4f:6e:07:b4: 26:d2:45:ab:99:68:f0:57:1a:60:1f:ea:18:b4:b5: 7d:d6:9c:bc:28:4e:7b:7f:89:a3:60:a8:a1:9c:51: 09:8f:d2:d0:98:e2:e3:10:c2:4a:b0:65:44:30:56: 8b:55:06:6b:47:0e:ff:c8:01:ce:71:47:16:92:d2: 47:46:ca:5c:1a:c8:fa:45:cc:fc:22:09:f0:ef:c0: 9c:80:47:c0:57:e2:4c:af:8c:53:4e:8a:63:11:db: c7:45:3c:ec:2c:cb:3e:dd:fa:8d:0e:02:2f:f1:e0: e4:85:36:d2:ef:15:96:51:fa:94:1a:3e:8e:5e:34: 03:9e:9b:53:e2:86:17:27:5d:95:87:dc:a0:fa:fe: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6E:35:7F:54:08:02:D9:D1:D1:3A:7B:D3:DF:38:16:94:F9:E3:B1 X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:26:ab:38:7a:8e:4c:35:a3:8f:d7:17:3c:ed:28:21:4d:f0: 6a:62:4e:69:c4:b6:a4:5b:8a:e5:c7:2f:d1:5b:aa:ab:7e:ad: be:e7:9f:9e:f6:68:c0:78:af:d3:c2:a0:ee:da:c5:51:20:66: bf:33:c0:20:32:9c:f9:66:9d:69:48:ab:86:42:69:00:ad:ff: 38:95:c5:60:12:ba:a1:65:bc:85:8a:9e:b1:61:f9:b6:74:81: 72:47:c8:88:1b:0f:49:9e:cb:d5:53:5d:bb:52:02:fa:ea:25: d6:f2:d4:3a:57:32:7c:b3:3e:16:92:f5:7f:28:46:2c:0b:4a: ae:8b:fa:b1:d2:95:16:b0:54:9a:d0:1e:08:8e:68:7a:9a:68: 39:a1:a9:8a:c6:52:62:b1:98:1b:61:0d:08:0a:f5:e2:b1:3b: b5:15:09:9d:37:aa:be:5c:6d:61:6d:a4:23:52:a2:9d:6a:62: af:36:27:45:dd:a3:b9:73:8d:0c:ce:3c:19:bf:70:5b:3c:fe: 3b:4b:53:6a:e4:27:19:a5:30:5d:d5:dd:22:f2:20:e7:4b:28: b4:5d:1a:b8:19:be:bd:ff:be:0f:b7:9d:64:2d:81:24:58:ce: 08:40:1b:3c:f4:c3:24:e2:93:0c:30:5f:5c:39:08:c2:68:82: 6b:30:d3:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUwODI0MDU1ODMwWhcNMjUwODMxMDU1ODMwWjAYMRYwFAYD VQQDEw02OGFhYWEwNi01YTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun+xLmgrKEyx8z/R7spCdq4VYclPB4qsLn1qZ+J2iJYOkQC7Ce7Gx6TPq0Tw YfERJmZNTjFmtqxMtOogMgZu7AnWyl0owIVF2EMG3jRtWJvOTnEl5H27RhJ1V4l+ yhbK/X2u95faDlK2XwQ4kdM5+7oC5E9uB7Qm0kWrmWjwVxpgH+oYtLV91py8KE57 f4mjYKihnFEJj9LQmOLjEMJKsGVEMFaLVQZrRw7/yAHOcUcWktJHRspcGsj6Rcz8 Ignw78CcgEfAV+JMr4xTTopjEdvHRTzsLMs+3fqNDgIv8eDkhTbS7xWWUfqUGj6O XjQDnptT4oYXJ12Vh9yg+v5+HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAduNX9U CALZ0dE6e9PfOBaU+eOxMB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRJqs4eo5MNaOP1xc87SghTfBqYk5pxLakW4rlxy/RW6qrfq2+55+e 9mjAeK/TwqDu2sVRIGa/M8AgMpz5Zp1pSKuGQmkArf84lcVgErqhZbyFip6xYfm2 dIFyR8iIGw9JnsvVU127UgL66iXW8tQ6VzJ8sz4WkvV/KEYsC0qui/qx0pUWsFSa 0B4Ijmh6mmg5oamKxlJisZgbYQ0ICvXisTu1FQmdN6q+XG1hbaQjUqKdamKvNidF 3aO5c40MzjwZv3BbPP47S1Nq5CcZpTBd1d0i8iDnSyi0XRq4Gb69/74Pt51kLYEk WM4IQBs89MMk4pMMMF9cOQjCaIJrMNOr -----END CERTIFICATE-----Generated at Sun Aug 24 21:56:22 2025 by rpki-client