$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: qQHa2X+JSWYLsFMNbLrBTbZ4Nh4tjR35L6LOj/C9SwM= Subject key identifier: 47:FC:44:7E:66:06:32:1C:B5:13:4A:C0:36:10:6D:E3:16:D7:67:4C Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 04A6 Signing time: Sat 23 Aug 2025 00:09:37 +0000 Manifest this update: Sat 23 Aug 2025 00:09:36 +0000 Manifest next update: Sat 30 Aug 2025 00:09:36 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: KNqOhWxermfn9hrgPghqgQE2IyUHGQ0uRqBU2wmjOS0=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: Ib+CF/sk+KvnPvMxoim8MHqeWZYKc+NyST1cJiaAhsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E, serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: Aug 23 00:09:36 2025 GMT Not After : Aug 30 00:09:36 2025 GMT Subject: CN=68a906c0-4ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4f:05:17:7a:2a:cb:0c:ac:ea:49:25:9f:4d: 1a:c9:ae:fe:80:b1:db:48:b3:9f:f1:56:66:61:ef: 31:fd:f9:82:cf:58:be:a7:b4:e1:a3:0a:14:23:dc: db:b8:6a:d0:3f:52:41:23:6c:c7:62:10:85:84:ad: cf:c8:2d:d1:2b:56:d4:b8:5d:2b:0e:86:c7:2c:51: 54:40:a1:52:e8:30:e2:24:45:ef:3e:d3:34:bc:e3: 89:82:c2:a7:d0:0b:08:29:24:bf:1f:97:cd:f0:1e: cc:30:be:9c:73:67:9a:dc:73:2b:c2:d5:07:e1:67: e6:a2:2a:a8:7c:00:b7:da:b7:12:58:38:b1:35:32: 24:be:80:b1:d0:8e:f6:18:6b:3c:8b:9c:e8:12:75: a8:ca:22:ce:e5:7f:6a:09:bb:90:23:b2:ae:62:e0: 66:59:cb:dd:d5:e9:d9:11:f3:f4:ca:92:e7:27:41: 13:02:90:ee:f0:c8:df:6f:ef:ff:87:dd:36:3e:83: 2f:4a:47:75:02:5f:71:c7:39:50:23:98:c7:ff:6a: 42:2c:3f:86:df:9b:12:83:47:95:34:d6:1d:7c:ea: 00:b0:3d:4a:ca:e8:09:db:0e:be:b0:54:e0:5c:7c: 3b:0b:36:fd:73:5f:93:d8:33:2f:08:af:83:88:6b: 4b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FC:44:7E:66:06:32:1C:B5:13:4A:C0:36:10:6D:E3:16:D7:67:4C X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:63:e4:ec:36:62:19:a4:72:bb:32:ce:c8:ef:a0:40:7d:e2: 78:ad:47:bb:31:24:53:ec:90:f7:20:2d:6e:ad:f2:fa:da:b6: b4:f7:3f:00:3b:b9:65:6f:8d:e3:82:d4:82:c7:34:eb:99:21: 4c:f6:41:7b:c3:d3:bd:60:e4:90:cd:7e:bb:46:f4:a7:0f:72: 83:9a:bd:52:81:b0:f8:51:76:fb:ea:ba:e0:60:fe:a0:39:51: b0:f0:9a:9b:0c:28:85:37:24:c8:00:b6:72:cb:ec:4a:18:18: 3b:c7:86:97:44:cb:c8:8a:ab:0c:b9:73:95:92:4f:4c:82:8e: 85:93:a7:41:2e:54:97:af:ad:42:1c:0f:e6:f2:aa:b1:e7:4c: 67:7f:a6:0e:d7:36:2e:6d:b7:47:c7:10:b8:6d:4f:3c:db:1b: fd:ca:56:a6:5f:30:d0:57:42:44:08:2a:72:e0:82:47:20:b2: 3d:c5:0b:f8:4e:5f:6f:91:95:75:ba:e4:c2:f3:33:6e:0a:7a: 30:90:19:45:5f:6e:55:5a:0b:bd:4b:97:5f:53:02:f8:44:a8: d3:9d:c9:45:59:1c:3d:bd:fe:81:1d:57:de:ee:36:a2:47:40: 44:38:26:32:1a:7c:2a:58:ca:aa:39:21:47:8e:1b:7e:18:ac: d0:25:d9:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjUwODIzMDAwOTM2WhcNMjUwODMwMDAwOTM2WjAYMRYwFAYD VQQDEw02OGE5MDZjMC00YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE8FF3oqywys6kkln00aya7+gLHbSLOf8VZmYe8x/fmCz1i+p7ThowoUI9zb uGrQP1JBI2zHYhCFhK3PyC3RK1bUuF0rDobHLFFUQKFS6DDiJEXvPtM0vOOJgsKn 0AsIKSS/H5fN8B7MML6cc2ea3HMrwtUH4WfmoiqofAC32rcSWDixNTIkvoCx0I72 GGs8i5zoEnWoyiLO5X9qCbuQI7KuYuBmWcvd1enZEfP0ypLnJ0ETApDu8Mjfb+// h902PoMvSkd1Al9xxzlQI5jH/2pCLD+G35sSg0eVNNYdfOoAsD1KyugJ2w6+sFTg XHw7Czb9c1+T2DMvCK+DiGtLaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEf8RH5m BjIctRNKwDYQbeMW12dMMB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Y+TsNmIZpHK7Ms7I76BAfeJ4rUe7MSRT7JD3IC1urfL62ra09z8A O7llb43jgtSCxzTrmSFM9kF7w9O9YOSQzX67RvSnD3KDmr1SgbD4UXb76rrgYP6g OVGw8JqbDCiFNyTIALZyy+xKGBg7x4aXRMvIiqsMuXOVkk9Mgo6Fk6dBLlSXr61C HA/m8qqx50xnf6YO1zYubbdHxxC4bU882xv9ylamXzDQV0JECCpy4IJHILI9xQv4 Tl9vkZV1uuTC8zNuCnowkBlFX25VWgu9S5dfUwL4RKjTnclFWRw9vf6BHVfe7jai R0BEOCYyGnwqWMqqOSFHjht+GKzQJdnf -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:47 2025 by rpki-client