$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft File: kHuyYrVxYj40suIMYKcYwXOcw70.mft (raw, json) Hash identifier: cxw+WdyGSZmBQLPio4rKF1fNJytLn+t+RwrNcN0c1ro= Subject key identifier: C5:67:17:73:7C:91:A8:E2:00:01:4E:93:27:C1:D0:7C:A9:2A:23:93 Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft Manifest number: 03C9 Signing time: Thu 21 Aug 2025 00:47:31 +0000 Manifest this update: Thu 21 Aug 2025 00:47:30 +0000 Manifest next update: Thu 28 Aug 2025 00:47:30 +0000 Files and hashes: 1: kHuyYrVxYj40suIMYKcYwXOcw70.crl (hash: k916JQEeze0KN7Hnfr0F7o7iXHHvPhTX5tDN1ZoXh8U=) 2: 5B92665E9ADD11ECA5401423C4F9AE02.roa (hash: ys9QvzSFj3FhbpKZdlZ1B6mYP128OL/SXk3uErxC5zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64, serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: Aug 21 00:47:30 2025 GMT Not After : Aug 28 00:47:30 2025 GMT Subject: CN=68a66ca2-ff70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a1:52:65:ff:31:c1:2c:76:6c:61:9d:44:ba: ba:99:d1:ea:93:e7:a6:fd:e1:79:92:e5:1c:40:77: aa:cf:fe:bb:7b:73:1d:c6:8e:08:c4:46:58:42:fe: ce:e2:28:23:09:95:ad:4b:5d:aa:3a:ef:84:8f:f8: 6f:49:92:3f:58:99:02:75:84:2c:a0:05:df:ec:3a: a3:ed:a3:b5:e2:93:b8:23:ff:bc:7d:de:63:f7:5c: ee:bf:2c:df:aa:f6:b0:f5:87:2d:5c:b3:3c:1e:fc: 53:20:ba:71:fa:05:50:84:d8:69:f1:74:85:38:f0: 58:89:05:73:86:f2:bf:19:38:ed:cb:67:6d:fd:8b: 3c:01:73:f5:46:d8:be:44:4e:cb:1b:d1:c2:4d:4f: 0c:ab:dc:3b:39:85:cf:7c:96:71:43:02:af:da:45: f6:05:7f:d4:53:31:93:7a:76:12:8b:dd:dd:7c:c3: b6:37:ae:4d:f8:02:81:cc:ae:c4:cf:e5:e1:f1:ff: f3:46:91:70:5e:e5:16:ce:cc:b2:6e:4b:60:e5:af: e1:b3:ef:68:2b:d8:4d:e3:dc:4e:5b:e3:0d:32:69: a3:96:61:d1:4c:0a:0e:0f:58:48:a0:60:b3:ae:1d: 0f:a0:ed:de:a0:91:ac:d3:89:02:e4:b5:4c:99:a8: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:67:17:73:7C:91:A8:E2:00:01:4E:93:27:C1:D0:7C:A9:2A:23:93 X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:78:ca:58:37:2c:89:bb:aa:fd:e2:86:9a:3a:68:67:02:17: e6:6d:6c:da:09:3d:1e:a8:fc:98:16:cb:7f:d6:41:ab:5d:8f: 41:96:07:6c:f9:0c:0d:ac:9c:54:ee:39:db:1a:26:b5:56:48: 4e:d9:38:f0:fd:d1:57:de:e0:f9:5d:94:7b:39:a1:d5:fa:f2: e2:69:df:e0:49:2b:b8:38:ef:a7:c3:52:0e:43:13:9f:9b:9a: f1:a8:8a:8a:4d:ca:da:8c:6b:d0:b9:36:27:4d:53:3e:53:73: 7d:fd:e3:08:b3:92:18:24:56:fd:1e:9f:0b:dd:0a:e6:05:27: 4e:d8:01:f3:cf:3f:01:bd:e1:fc:6d:c0:bd:76:45:9f:3f:05: a9:60:da:14:3e:11:a5:dd:f1:b1:e1:c0:23:df:bf:81:ba:27: e0:a5:36:28:8a:82:d8:f5:f8:3b:e0:d3:1b:7a:ec:32:f4:5e: 2a:6c:f1:4d:cc:ac:2c:e2:29:87:f4:6a:e7:1a:40:a3:cc:67: c6:62:30:12:7d:9d:d1:a0:d2:47:e1:fc:3e:6e:d9:95:0d:56: c8:11:d8:2a:ad:70:e0:eb:f7:42:c3:54:de:8e:f6:a5:a1:79: 95:2f:c6:8b:fc:14:e3:fb:94:e1:18:14:1a:15:3f:5d:d5:c7: 12:51:32:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjUwODIxMDA0NzMwWhcNMjUwODI4MDA0NzMwWjAYMRYwFAYD VQQDEw02OGE2NmNhMi1mZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aFSZf8xwSx2bGGdRLq6mdHqk+em/eF5kuUcQHeqz/67e3Mdxo4IxEZYQv7O 4igjCZWtS12qOu+Ej/hvSZI/WJkCdYQsoAXf7Dqj7aO14pO4I/+8fd5j91zuvyzf qvaw9YctXLM8HvxTILpx+gVQhNhp8XSFOPBYiQVzhvK/GTjty2dt/Ys8AXP1Rti+ RE7LG9HCTU8Mq9w7OYXPfJZxQwKv2kX2BX/UUzGTenYSi93dfMO2N65N+AKBzK7E z+Xh8f/zRpFwXuUWzsyybktg5a/hs+9oK9hN49xOW+MNMmmjlmHRTAoOD1hIoGCz rh0PoO3eoJGs04kC5LVMmag+QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVnF3N8 kajiAAFOkyfB0HypKiOTMB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0E2NC8zNThDNjdCRTlBREExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlq NDBzdUlNWUtjWXdYT2N3NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjeMpYNyyJu6r94oaaOmhnAhfmbWzaCT0eqPyYFst/1kGrXY9Blgds +QwNrJxU7jnbGia1VkhO2Tjw/dFX3uD5XZR7OaHV+vLiad/gSSu4OO+nw1IOQxOf m5rxqIqKTcrajGvQuTYnTVM+U3N9/eMIs5IYJFb9Hp8L3QrmBSdO2AHzzz8BveH8 bcC9dkWfPwWpYNoUPhGl3fGx4cAj37+BuifgpTYoioLY9fg74NMbeuwy9F4qbPFN zKws4imH9GrnGkCjzGfGYjASfZ3RoNJH4fw+btmVDVbIEdgqrXDg6/dCw1Tejval oXmVL8aL/BTj+5ThGBQaFT9d1ccSUTLO -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:14 2025 by rpki-client