$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: sMARSt65r0/+9Tx2xrkRDPYToWQHyiTzqgAAkXecyMc= Subject key identifier: B8:13:97:4D:3D:66:E2:46:6E:33:4D:25:54:62:C3:BE:4A:6F:70:9D Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 263B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2627 Signing time: Sun 24 Aug 2025 15:40:17 +0000 Manifest this update: Sun 24 Aug 2025 15:40:16 +0000 Manifest next update: Sun 31 Aug 2025 15:40:16 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: qcNU/y4E9pmLzADlJ1SCIqKQM3FnKPbKUdqKkaKpxkI=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9787 (0x263b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Aug 24 15:40:16 2025 GMT Not After : Aug 31 15:40:16 2025 GMT Subject: CN=68ab3261-c4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:48:a2:32:60:a4:3b:9a:fe:38:9c:fb:22: b8:d7:78:8f:2a:c7:46:34:ac:20:6f:77:9a:92:d4: 67:22:9d:10:03:c1:7e:fb:40:92:b7:7f:a2:c2:c2: 81:ec:6b:9e:16:c1:10:27:79:9e:89:12:05:9a:8f: fa:8f:05:96:a4:eb:a9:9d:e5:d1:54:2a:63:f7:7e: 12:7a:80:e9:14:16:f3:de:c8:d4:02:aa:b3:b9:50: b7:fd:26:c0:a7:b0:0f:ea:17:80:50:d3:de:9f:98: c7:50:ff:b9:66:1a:e6:e4:b2:58:84:74:3a:e8:d5: 63:78:5a:8f:10:18:06:50:3c:70:1c:f7:e8:9d:68: b6:1d:69:9a:a6:05:7e:40:ac:ab:d7:ed:c8:f9:c6: 0e:a3:29:74:a4:d8:0b:64:50:88:4f:19:38:e8:da: 41:d9:da:77:ce:b8:8a:f5:1a:d0:57:48:cb:ce:53: 06:f2:bd:6f:cd:92:e1:8f:5a:1d:1a:e9:d1:ec:8e: 84:6b:2b:5e:9c:2a:66:b8:1c:af:2e:73:4d:de:7b: 09:23:ab:32:65:e5:8d:26:bd:09:9e:57:07:c8:46: 1f:7d:1e:67:ba:22:7e:30:7c:b3:97:71:2d:48:e9: 73:af:ed:96:ca:18:28:9e:cc:03:32:e7:b4:80:e4: 6c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:13:97:4D:3D:66:E2:46:6E:33:4D:25:54:62:C3:BE:4A:6F:70:9D X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:85:3d:d1:86:b6:50:7f:b8:9a:4b:4f:39:0a:fd:e9:19:a9: 57:cc:95:a2:26:0b:47:b5:64:ac:43:10:ec:07:0c:ab:c8:44: d8:a3:e6:3c:cf:b8:9b:02:7f:b5:59:5d:3b:e5:31:a8:39:9e: 4d:0c:63:9a:93:4e:29:84:bc:e2:1b:86:3b:75:fa:01:0f:fd: 71:db:70:42:cf:4c:cf:3a:3c:d1:56:f2:4c:f1:5c:9c:50:8f: 01:5e:41:dd:9a:d3:fa:b3:ba:b8:bb:0a:fa:5e:7c:fb:57:bb: 4d:35:c5:6f:c5:fa:7a:05:ba:15:26:56:62:63:ba:b7:c2:7d: f6:26:b9:97:9a:db:f4:e3:43:6e:5f:72:95:64:c0:22:7f:51: cd:b4:26:e6:6a:bd:58:7f:8f:62:b1:57:25:ca:4b:2c:1b:ad: 78:e0:7e:2a:e3:74:58:af:94:de:8e:35:ae:60:90:c5:71:f2: 20:3a:60:39:64:da:9e:67:75:d2:14:e1:91:e5:93:93:c2:bb: d8:d8:ac:c7:cf:05:ad:18:0a:58:0d:5e:29:1c:0f:75:38:09: 9c:b8:fc:3a:82:09:52:f2:d6:9a:02:81:c4:9d:df:0c:4d:04: ec:82:54:bf:2e:70:dd:a2:49:1c:0a:04:95:1f:7d:d8:28:45: ab:e6:38:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwODI0MTU0MDE2WhcNMjUwODMxMTU0MDE2WjAYMRYwFAYD VQQDEw02OGFiMzI2MS1jNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHtIojJgpDua/jic+yK413iPKsdGNKwgb3eaktRnIp0QA8F++0CSt3+iwsKB 7GueFsEQJ3meiRIFmo/6jwWWpOupneXRVCpj934SeoDpFBbz3sjUAqqzuVC3/SbA p7AP6heAUNPen5jHUP+5Zhrm5LJYhHQ66NVjeFqPEBgGUDxwHPfonWi2HWmapgV+ QKyr1+3I+cYOoyl0pNgLZFCITxk46NpB2dp3zriK9RrQV0jLzlMG8r1vzZLhj1od GunR7I6EaytenCpmuByvLnNN3nsJI6syZeWNJr0JnlcHyEYffR5nuiJ+MHyzl3Et SOlzr+2WyhgonswDMue0gORsRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgTl009 ZuJGbjNNJVRiw75Kb3CdMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnhT3RhrZQf7iaS085Cv3pGalXzJWiJgtHtWSsQxDsBwyryETYo+Y8 z7ibAn+1WV075TGoOZ5NDGOak04phLziG4Y7dfoBD/1x23BCz0zPOjzRVvJM8Vyc UI8BXkHdmtP6s7q4uwr6Xnz7V7tNNcVvxfp6BboVJlZiY7q3wn32JrmXmtv040Nu X3KVZMAif1HNtCbmar1Yf49isVclykssG6144H4q43RYr5TejjWuYJDFcfIgOmA5 ZNqeZ3XSFOGR5ZOTwrvY2KzHzwWtGApYDV4pHA91OAmcuPw6gglS8taaAoHEnd8M TQTsglS/LnDdokkcCgSVH33YKEWr5jhs -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:41 2025 by rpki-client