$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: CTv5+n7An6VX9HRRV8F7B+ITpbfwWO4YaBaMwiZRjlw= Subject key identifier: 49:DB:E5:6F:5A:06:67:4D:25:2F:83:1D:33:B4:39:E7:42:88:2D:AD Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 74 Signing time: Thu 21 Aug 2025 07:01:15 +0000 Manifest this update: Thu 21 Aug 2025 07:01:15 +0000 Manifest next update: Thu 28 Aug 2025 07:01:15 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: wiQgVu2qc2c3fIyiRMs9n3Ak3HCndNgfq5tN4cH+NwI=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Aug 21 07:01:15 2025 GMT Not After : Aug 28 07:01:15 2025 GMT Subject: CN=68a6c43b-43e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:29:01:8c:0d:62:cc:67:0e:19:03:bf:83:4b: 72:9d:3a:6a:6f:3a:ae:99:ee:1c:b9:2f:b5:8b:a8: b1:89:0c:10:6c:d1:a7:7e:26:2c:3a:4e:54:f8:a5: 4d:60:1f:29:01:06:68:3a:67:e4:b5:bf:7e:e5:45: 6c:80:eb:26:af:a0:e0:ea:b5:4d:c9:db:11:2f:2d: 98:48:c7:7b:ec:53:13:e6:29:0f:b8:2b:b0:b5:2b: e4:4e:30:38:78:dc:d4:8a:2a:fb:59:04:bb:8e:89: 0c:2f:86:18:87:32:f6:83:53:dd:61:8b:9e:19:e2: a0:9e:b0:24:8f:68:a2:6f:f1:cf:04:e4:18:c7:68: 6e:dd:22:31:9a:9a:da:c0:20:b0:19:61:77:61:d0: bd:5f:be:d9:cf:2f:23:df:33:5a:59:55:bc:34:91: 6f:cb:be:64:20:15:f7:2d:06:bf:7b:ca:fb:8a:37: 3f:32:86:39:20:54:0b:72:3d:c2:a2:0a:19:68:92: 31:62:61:2f:e9:80:3e:77:f8:17:77:c4:f8:eb:fb: b7:8b:4a:d2:ca:0a:f9:20:e5:f6:e1:36:fe:11:fe: 29:ac:e9:2a:5d:c5:75:da:06:25:45:bf:f6:d9:a0: 72:df:54:fb:cc:ab:47:71:73:e0:61:7a:8a:7c:34: 5b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DB:E5:6F:5A:06:67:4D:25:2F:83:1D:33:B4:39:E7:42:88:2D:AD X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:52:56:07:71:66:a7:ec:e5:38:b9:82:f2:17:26:68:81:36: 37:90:6a:5c:7e:32:7d:a3:6a:d3:d6:60:67:42:56:5e:a7:1e: 1e:1a:2c:06:de:51:11:7d:f5:c3:dc:53:ae:ff:45:c7:44:fe: 62:88:f0:62:b1:62:4a:49:bb:72:3d:57:85:6c:73:94:a4:83: 80:7e:92:d8:b3:3c:4d:5d:34:62:a1:c9:bd:f4:bb:ac:40:60: 36:22:71:dc:10:3e:8f:54:e1:a9:c4:f0:b8:73:2c:c0:b1:d6: 93:63:96:3a:f8:f7:d7:3a:87:f9:ce:16:c9:ef:80:90:89:a1: 76:49:ac:0b:85:e8:26:b8:9a:76:5e:af:62:94:a0:8b:d3:e6: ab:6e:95:b0:5c:91:b1:8b:82:10:9e:2e:5e:e7:e0:39:cd:73: e1:f3:19:b1:88:16:80:a8:bd:4f:ba:a2:8c:2b:ec:7b:9a:ed: 56:9c:c0:c8:94:d7:88:a0:b4:16:fb:03:60:93:94:e1:e2:a4: 06:06:af:d7:47:f7:f9:1f:60:92:8e:94:d4:f4:04:ac:4c:08: b5:f6:e2:3f:0f:a3:36:7a:90:dc:14:14:86:d3:ce:d5:0f:a5: 51:cc:2f:b9:ff:13:e7:3e:73:92:63:7f:7e:90:d9:5f:dd:99: 50:db:f8:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTA4MjEwNzAxMTVaFw0yNTA4MjgwNzAxMTVaMBgxFjAUBgNV BAMTDTY4YTZjNDNiLTQzZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVKQGMDWLMZw4ZA7+DS3KdOmpvOq6Z7hy5L7WLqLGJDBBs0ad+Jiw6TlT4pU1g HykBBmg6Z+S1v37lRWyA6yavoODqtU3J2xEvLZhIx3vsUxPmKQ+4K7C1K+ROMDh4 3NSKKvtZBLuOiQwvhhiHMvaDU91hi54Z4qCesCSPaKJv8c8E5BjHaG7dIjGamtrA ILAZYXdh0L1fvtnPLyPfM1pZVbw0kW/LvmQgFfctBr97yvuKNz8yhjkgVAtyPcKi ChlokjFiYS/pgD53+Bd3xPjr+7eLStLKCvkg5fbhNv4R/ims6SpdxXXaBiVFv/bZ oHLfVPvMq0dxc+Bheop8NFvvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSdvlb1oG Z00lL4MdM7Q550KILa0wHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABpSVgdxZqfs5Ti5gvIXJmiBNjeQalx+Mn2jatPWYGdCVl6nHh4aLAbe URF99cPcU67/RcdE/mKI8GKxYkpJu3I9V4Vsc5Skg4B+ktizPE1dNGKhyb30u6xA YDYicdwQPo9U4anE8LhzLMCx1pNjljr499c6h/nOFsnvgJCJoXZJrAuF6Ca4mnZe r2KUoIvT5qtulbBckbGLghCeLl7n4DnNc+HzGbGIFoCovU+6oowr7Hua7VacwMiU 14igtBb7A2CTlOHipAYGr9dH9/kfYJKOlNT0BKxMCLX24j8PozZ6kNwUFIbTztUP pVHML7n/E+c+c5Jjf36Q2V/dmVDb+C0= -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:16 2025 by rpki-client