$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: dlREw6Fc4A+pPXjNeNs7N0jKz8P0jKSYvr6ylpPY6SM= Subject key identifier: B9:30:D0:68:5E:FA:E5:EF:50:D9:30:84:34:E7:78:83:A7:C3:93:E2 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 0E Signing time: Fri 19 Sep 2025 08:53:08 +0000 Manifest this update: Fri 19 Sep 2025 08:53:07 +0000 Manifest next update: Fri 26 Sep 2025 08:53:07 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: zI0YZzqhL7hoJq80qOdDyEFgLHrofmfRAEPKG8qHBW4=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 3: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Sep 19 08:53:07 2025 GMT Not After : Sep 26 08:53:07 2025 GMT Subject: CN=68cd19f4-ffb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:55:08:30:95:93:a6:0c:fa:5f:bd:da:8e:bd: c5:28:1e:d5:1f:48:1e:af:24:4f:5b:d5:cc:a7:a4: cf:80:ea:dc:aa:b9:cd:02:10:b9:ee:a5:bc:2c:8b: 6f:72:9b:0a:30:2b:de:a0:78:c6:e3:17:a9:d4:ea: 2a:6b:6c:b6:ac:bc:5d:db:b7:86:dc:60:a3:29:45: b4:2a:86:cd:02:74:2d:d3:06:bb:c1:d7:ab:25:56: 69:2c:20:32:1b:ee:13:08:e4:65:a9:1f:7f:85:b2: c7:cc:7a:f4:e4:64:b3:de:c2:9e:02:a6:d2:d9:85: 1c:03:ca:4d:da:b6:54:b9:34:32:1a:1e:be:01:d5: ed:4c:8d:0c:25:ae:0c:69:1d:a7:43:c1:e9:78:de: b2:ef:62:4b:83:df:9e:f5:b1:a6:f9:da:e4:5d:ce: 74:3b:ce:3e:49:8f:e0:d4:e8:61:3c:96:29:9f:07: 92:6d:e8:1e:d8:d1:45:af:50:d6:89:c1:81:77:e0: 90:bf:bc:e5:08:71:9f:a3:c7:df:88:51:f5:e7:cb: 52:f4:68:38:42:35:d4:62:3a:6e:f0:83:6a:b3:04: 08:fe:3e:02:f5:ba:fa:1e:72:4a:99:1a:ee:99:f2: 79:c9:8f:49:4a:a1:51:29:4a:a5:ec:f2:ed:2b:5a: 66:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:30:D0:68:5E:FA:E5:EF:50:D9:30:84:34:E7:78:83:A7:C3:93:E2 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:77:b8:a0:6f:14:75:85:78:3b:43:d1:b0:30:03:e2:65:5f: 88:8e:a3:05:68:ff:59:5e:99:0d:f2:8a:2a:97:38:81:46:ca: ed:19:e4:8c:89:31:02:fb:01:c0:1c:80:ed:7d:5b:d9:48:8a: 03:ee:23:8b:ef:7a:7b:e8:d3:2a:39:a1:40:e5:f7:4e:ed:1c: 13:80:fb:e9:9e:11:3f:57:65:ab:72:97:3e:b4:cd:9f:66:b9: 37:cc:2f:50:ad:5d:82:96:e2:4e:7e:2b:04:4e:f8:a0:19:21: 9b:3f:60:3a:25:c8:85:18:fc:f9:b8:00:ea:1d:1d:1a:1e:76: 73:b4:b3:1b:b6:a7:eb:c1:da:35:f4:a1:cb:b2:64:5f:02:89: ca:60:7f:92:7c:21:93:37:50:d8:fa:1c:af:ba:c3:cd:4e:4e: 5c:d4:eb:7e:cf:f7:3e:e3:dd:4a:fe:e3:f5:4c:a9:62:2d:fe: b5:6d:96:5a:a9:9f:a4:32:17:e9:f2:d6:2e:03:60:14:07:c6: 8e:2b:ac:e1:d2:73:0f:eb:c4:5c:d7:86:03:23:b1:9f:37:b6: 2e:cc:41:0c:f5:14:65:2a:ab:0d:50:e2:8d:cc:3d:3d:f2:76: e0:17:b6:e0:01:57:4d:23:81:ef:c1:e6:ac:aa:1e:89:3f:13: 3e:1a:0a:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTA5MTkwODUzMDdaFw0yNTA5MjYwODUzMDdaMBgxFjAUBgNV BAMTDTY4Y2QxOWY0LWZmYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGVQgwlZOmDPpfvdqOvcUoHtUfSB6vJE9b1cynpM+A6tyquc0CELnupbwsi29y mwowK96geMbjF6nU6iprbLasvF3bt4bcYKMpRbQqhs0CdC3TBrvB16slVmksIDIb 7hMI5GWpH3+FssfMevTkZLPewp4CptLZhRwDyk3atlS5NDIaHr4B1e1MjQwlrgxp HadDwel43rLvYkuD3571sab52uRdznQ7zj5Jj+DU6GE8limfB5Jt6B7Y0UWvUNaJ wYF34JC/vOUIcZ+jx9+IUfXny1L0aDhCNdRiOm7wg2qzBAj+PgL1uvoeckqZGu6Z 8nnJj0lKoVEpSqXs8u0rWmahAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuTDQaF76 5e9Q2TCENOd4g6fDk+IwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFh3uKBvFHWFeDtD0bAwA+JlX4iOowVo/1lemQ3yiiqXOIFGyu0Z5IyJ MQL7AcAcgO19W9lIigPuI4vvenvo0yo5oUDl907tHBOA++meET9XZatylz60zZ9m uTfML1CtXYKW4k5+KwRO+KAZIZs/YDolyIUY/Pm4AOodHRoednO0sxu2p+vB2jX0 ocuyZF8Cicpgf5J8IZM3UNj6HK+6w81OTlzU637P9z7j3Ur+4/VMqWIt/rVtllqp n6QyF+ny1i4DYBQHxo4rrOHScw/rxFzXhgMjsZ83ti7MQQz1FGUqqw1Q4o3MPT3y duAXtuABV00jge/B5qyqHok/Ez4aCk0= -----END CERTIFICATE-----Generated at Fri Sep 19 10:22:23 2025 by rpki-client