$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: 4JqDPmmGKMdfbAcSNqHFRNvCwfr+LZ1h/DUX+J2Xfyc= Subject key identifier: DE:75:71:E5:7B:0D:57:03:94:D7:E6:78:7F:E1:CD:3A:CF:BF:34:86 Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 8B Signing time: Fri 05 Sep 2025 07:03:56 +0000 Manifest this update: Fri 05 Sep 2025 07:03:55 +0000 Manifest next update: Fri 12 Sep 2025 07:03:55 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: 8p42282KtKmgf74uZ/bl7qKqnI7C9ugxcC9krvcGjSI=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Sep 5 07:03:55 2025 GMT Not After : Sep 12 07:03:55 2025 GMT Subject: CN=68ba8b5c-6814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f4:12:e5:1f:c0:0d:6f:b6:0d:82:91:c8:4b: 42:52:c6:de:12:e2:28:af:0c:f0:dd:af:f0:5d:0c: 2b:61:1e:a5:fd:c0:41:0e:c1:fd:f6:a1:8b:11:e9: 5b:1e:97:e8:c3:46:8e:48:ef:37:26:b5:53:89:a0: 70:8b:cc:6c:57:a5:8c:71:63:9e:ae:67:62:50:35: 0a:8d:01:65:64:6e:94:d7:34:de:36:e9:3c:fb:5b: 9f:99:65:84:25:a1:6c:9d:9a:78:10:79:7d:bc:67: 68:70:88:ff:41:b8:c6:6e:8e:c6:b5:f4:5a:69:3e: a3:5b:ca:08:cd:98:03:01:d2:84:5e:08:ce:70:67: 5d:8e:d2:82:c6:81:70:b2:fa:ee:0c:0a:a2:e7:41: 5a:24:3b:23:98:7c:d6:5d:5b:42:45:5a:1c:92:be: f3:6c:e9:cc:7b:b3:56:a7:90:31:5b:fb:00:b3:01: 36:48:b8:e6:e6:01:f8:e0:fd:0e:ce:e8:29:35:73: 6e:d1:7b:de:49:e9:de:11:5f:63:b1:9f:90:38:97: d4:b2:6c:af:16:f1:43:9c:30:be:e9:d5:96:e7:bc: 43:c4:e8:0e:c2:a5:2c:85:f6:39:18:85:0f:94:52: 23:0c:bc:ae:86:9e:38:57:0d:1f:98:ff:e8:af:e2: d7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:75:71:E5:7B:0D:57:03:94:D7:E6:78:7F:E1:CD:3A:CF:BF:34:86 X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a5:44:0c:7b:84:80:46:fa:57:00:c5:18:41:72:90:62:3f: 45:63:e7:69:f3:0b:9c:b4:f7:f0:8e:e0:76:e3:eb:4b:39:ac: eb:a7:f7:95:37:b5:7d:29:d4:1c:b0:f6:55:02:41:0c:70:09: bd:ee:bc:fe:95:83:ca:13:e9:ca:4b:fe:d4:7f:08:60:43:a1: 03:bb:6f:5f:65:6f:14:15:e9:8e:bb:da:53:1a:cc:86:61:91: 8e:26:b1:9d:a1:b6:fe:58:c0:fb:ca:da:b3:78:3d:1c:d8:f0: b5:8a:ec:1b:84:16:b9:d0:3b:e1:2a:8a:c1:9e:50:53:f7:7e: 31:82:58:58:aa:68:fc:c0:d0:f6:98:ce:24:d7:7a:8e:36:68: b2:fc:bd:40:93:36:2d:19:be:76:36:aa:6e:be:df:89:28:59: 96:30:ee:cb:33:bb:a7:ba:53:56:19:00:12:5e:f2:8f:a5:25: fa:3d:4c:2e:66:72:74:37:87:d9:2c:17:2e:01:bf:b7:b5:95: ea:27:15:6d:9a:62:16:49:2b:61:85:65:c7:f6:23:bd:14:74: 55:61:bd:5b:98:f0:db:16:44:cc:cf:34:2e:30:e5:96:67:ed: 04:6e:a4:e6:86:55:4d:a7:3e:26:15:61:71:9f:f9:a4:a2:dd: 1e:d7:b4:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUwOTA1MDcwMzU1WhcNMjUwOTEyMDcwMzU1WjAYMRYwFAYD VQQDEw02OGJhOGI1Yy02ODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/QS5R/ADW+2DYKRyEtCUsbeEuIorwzw3a/wXQwrYR6l/cBBDsH99qGLEelb Hpfow0aOSO83JrVTiaBwi8xsV6WMcWOermdiUDUKjQFlZG6U1zTeNuk8+1ufmWWE JaFsnZp4EHl9vGdocIj/QbjGbo7GtfRaaT6jW8oIzZgDAdKEXgjOcGddjtKCxoFw svruDAqi50FaJDsjmHzWXVtCRVockr7zbOnMe7NWp5AxW/sAswE2SLjm5gH44P0O zugpNXNu0XveSeneEV9jsZ+QOJfUsmyvFvFDnDC+6dWW57xDxOgOwqUshfY5GIUP lFIjDLyuhp44Vw0fmP/or+LXGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN51ceV7 DVcDlNfmeH/hzTrPvzSGMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4pUQMe4SARvpXAMUYQXKQYj9FY+dp8wuctPfwjuB24+tLOazrp/eV N7V9KdQcsPZVAkEMcAm97rz+lYPKE+nKS/7UfwhgQ6EDu29fZW8UFemOu9pTGsyG YZGOJrGdobb+WMD7ytqzeD0c2PC1iuwbhBa50DvhKorBnlBT934xglhYqmj8wND2 mM4k13qONmiy/L1AkzYtGb52Nqpuvt+JKFmWMO7LM7unulNWGQASXvKPpSX6PUwu ZnJ0N4fZLBcuAb+3tZXqJxVtmmIWSSthhWXH9iO9FHRVYb1bmPDbFkTMzzQuMOWW Z+0EbqTmhlVNpz4mFWFxn/mkot0e17R/ -----END CERTIFICATE-----Generated at Sat Sep 6 13:33:07 2025 by rpki-client