$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: CIdryysKeE2YEDA5qBaSX+TzRc/KkdpmxInHQ1qtNvs= Subject key identifier: 39:95:EA:BD:7C:F7:DE:5C:48:C4:92:4A:74:8E:19:26:AE:59:D1:67 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 6E Signing time: Thu 21 Aug 2025 07:06:58 +0000 Manifest this update: Thu 21 Aug 2025 07:06:58 +0000 Manifest next update: Thu 28 Aug 2025 07:06:58 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: MOO2IOXjy0p3yE44jBk2JlMcE9rE1/GUxQN7mHVS1Gw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Aug 21 07:06:58 2025 GMT Not After : Aug 28 07:06:58 2025 GMT Subject: CN=68a6c592-c431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:31:d3:a5:5d:31:3c:7d:1a:c0:51:40:37:70: a9:e5:e9:8f:b5:b3:65:88:cf:47:fd:6c:a1:7d:8c: 88:ed:ad:e4:2c:00:5b:08:bc:8b:5d:96:fc:fa:13: a4:0f:4e:42:11:b7:a4:f1:46:95:e2:7d:16:1d:0a: 7a:2f:b7:f7:98:12:3a:52:6c:7b:f6:7f:4d:f6:75: 9d:a0:6d:b5:b4:c9:d8:48:f0:f9:a5:dc:d2:2c:2e: 54:3b:91:6c:88:09:5f:4b:1e:2e:31:43:91:d1:cf: e9:6a:3b:1f:f0:ea:9f:32:eb:07:06:cd:96:76:72: 2b:50:2a:61:06:91:52:35:85:c0:97:d8:6d:d5:85: 3c:32:4c:de:15:47:00:d9:4f:78:92:01:a5:28:35: e3:d5:da:96:d3:c1:2e:a7:34:1d:79:0b:ee:c6:ab: 2b:82:0a:9f:04:bb:e7:e2:75:ac:2f:18:c0:5e:03: 30:38:a6:05:02:a6:8b:1b:03:6a:b3:2d:54:bb:9e: 5f:1d:2d:ec:52:08:7a:33:52:32:45:ee:e7:cd:ec: ed:6f:48:96:10:84:38:fb:3b:88:19:00:76:84:94: b5:5f:91:c6:c5:ff:79:b3:dd:89:0b:72:57:b3:4e: 21:a4:d6:20:4b:a7:4c:f1:d5:1c:78:56:2d:dd:32: 68:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:95:EA:BD:7C:F7:DE:5C:48:C4:92:4A:74:8E:19:26:AE:59:D1:67 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:9a:98:63:28:34:aa:5b:04:ce:dd:aa:6e:2d:73:26:6e:f3: f8:4b:d7:d0:76:99:97:96:e4:24:c8:15:84:12:e4:6a:7c:9e: 8a:85:8e:80:23:c4:37:7f:a1:63:dd:c7:eb:0f:c0:17:7d:e9: 2e:6b:68:4a:f4:b5:1c:23:65:4d:4d:eb:2a:30:76:be:c5:c7: 07:4d:c5:1b:78:d1:db:cb:94:6f:72:c9:ae:2b:64:1b:1f:7b: e6:78:0d:79:b1:e8:f6:83:83:6d:db:f7:50:22:9b:1b:9d:e9: 38:0f:28:32:56:b1:c9:8d:13:1a:39:90:07:f0:f1:9b:ff:bf: bc:88:c2:9f:d9:48:92:c1:50:e8:83:14:41:42:e8:d1:54:69: b8:a8:8d:03:c6:77:09:f9:48:18:c6:bf:af:00:24:2b:2f:e0: 18:f5:ff:dd:df:29:dd:a9:3f:ba:de:08:af:b6:23:84:5a:45: 6a:29:b8:af:46:87:67:78:53:a6:62:76:3d:03:1d:b9:d1:4a: e0:0b:61:fa:7e:27:f7:ea:38:00:92:01:c4:c9:7c:c7:8d:76: ef:51:b4:9d:3d:10:b0:11:5f:db:c0:c0:49:ff:ed:fd:58:2e: 22:1d:e0:68:35:4c:66:62:5e:3b:f1:9d:aa:06:50:16:81:b7: 0d:1b:b0:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoOTg3QTI0MDM1QzE1MzkxNzAyMEI2NTFEQjk4RjA5MUYw QUFBMzIyNzAeFw0yNTA4MjEwNzA2NThaFw0yNTA4MjgwNzA2NThaMBgxFjAUBgNV BAMTDTY4YTZjNTkyLWM0MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYMdOlXTE8fRrAUUA3cKnl6Y+1s2WIz0f9bKF9jIjtreQsAFsIvItdlvz6E6QP TkIRt6TxRpXifRYdCnovt/eYEjpSbHv2f032dZ2gbbW0ydhI8Pml3NIsLlQ7kWyI CV9LHi4xQ5HRz+lqOx/w6p8y6wcGzZZ2citQKmEGkVI1hcCX2G3VhTwyTN4VRwDZ T3iSAaUoNePV2pbTwS6nNB15C+7GqyuCCp8Eu+fidawvGMBeAzA4pgUCposbA2qz LVS7nl8dLexSCHozUjJF7ufN7O1vSJYQhDj7O4gZAHaElLVfkcbF/3mz3YkLclez TiGk1iBLp0zx1Rx4Vi3dMmi1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOZXqvXz3 3lxIxJJKdI4ZJq5Z0WcwHwYDVR0jBBgwFoAUmHokA1wVORcCC2UduY8JHwqqMicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0FGREVGRTU0RDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1p Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUhva0Exd1ZPUmNDQzJVZHVZOEpId3FxTWljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0FGREVGRTU0RDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1Jj Q0MyVWR1WThKSHdxcU1pYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA2amGMoNKpbBM7dqm4tcyZu8/hL19B2mZeW5CTIFYQS5Gp8noqFjoAj xDd/oWPdx+sPwBd96S5raEr0tRwjZU1N6yowdr7FxwdNxRt40dvLlG9yya4rZBsf e+Z4DXmx6PaDg23b91Aimxud6TgPKDJWscmNExo5kAfw8Zv/v7yIwp/ZSJLBUOiD FEFC6NFUabiojQPGdwn5SBjGv68AJCsv4Bj1/93fKd2pP7reCK+2I4RaRWopuK9G h2d4U6Zidj0DHbnRSuALYfp+J/fqOACSAcTJfMeNdu9RtJ09ELARX9vAwEn/7f1Y LiId4Gg1TGZiXjvxnaoGUBaBtw0bsE0= -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:44 2025 by rpki-client