$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: sCfFV9vycANH0FMAD2dnpXWt23/4dFMm18DE8++ga/Q= Subject key identifier: E7:B4:27:36:05:65:A2:3A:BC:BF:31:94:AC:3B:CB:5E:A7:90:6C:49 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BD4 Signing time: Fri 22 Aug 2025 19:01:55 +0000 Manifest this update: Fri 22 Aug 2025 19:01:55 +0000 Manifest next update: Fri 29 Aug 2025 19:01:55 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: 5zCsJz0kSByCmgKg6S//mXhpdSBpy1+rz2nencFhFRg=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3042 (0xbe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Aug 22 19:01:55 2025 GMT Not After : Aug 29 19:01:55 2025 GMT Subject: CN=68a8bea3-754c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:40:1b:2f:fb:6d:6e:56:97:c5:a7:24:4e: c9:0b:93:89:7e:e7:67:ec:4b:be:d8:7d:c1:6c:00: 76:92:fb:3f:42:64:dc:c1:0f:d0:d1:f4:97:c2:5d: 40:4e:a5:37:55:a7:73:b9:b2:a8:a0:72:76:46:29: 87:22:10:76:63:14:34:19:19:62:97:7c:3e:8d:8b: e1:c7:44:e4:e6:60:20:79:ed:21:fa:00:a3:bb:6d: 97:24:ea:95:bd:08:48:b1:ba:c8:76:4b:9c:fb:e4: ed:ec:f7:d3:87:41:da:7d:52:66:7f:8d:3e:78:4e: c8:60:3d:09:37:c1:9a:88:9a:d0:2a:06:00:80:55: 68:72:4f:b7:0a:24:d6:80:61:14:11:d3:b4:f5:dc: ee:32:29:de:0f:ee:78:ad:ef:90:9d:5e:cc:36:a0: ac:21:f5:25:f5:3a:34:02:db:5e:f3:66:89:d2:40: 20:eb:b2:86:94:40:3a:8a:9a:86:4a:9d:87:a0:70: e0:c4:08:e5:5b:ec:0d:f2:66:a2:24:c9:ca:5b:aa: 0e:57:65:d9:bd:d8:b5:7d:ae:79:7a:77:44:95:73: 11:66:40:c6:48:e2:0c:c9:68:7f:15:2f:7e:be:99: ff:c8:82:19:c8:e3:93:d5:1e:14:8c:ca:74:49:90: b4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B4:27:36:05:65:A2:3A:BC:BF:31:94:AC:3B:CB:5E:A7:90:6C:49 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9c:bf:a7:ca:09:e2:90:dc:1e:6d:66:cc:ee:26:41:4d:2d: 1f:36:cc:21:2e:16:59:4e:38:4e:5f:ec:2a:79:6f:ee:6f:75: 2c:b3:3f:21:c5:f4:60:6b:d6:88:ba:da:4c:7b:df:86:0e:58: 7b:28:80:e2:aa:2a:41:c4:e4:b8:c7:9d:43:6a:b4:4b:0a:c8: 62:9d:f6:5f:e3:70:87:30:21:83:cc:82:91:92:69:f1:81:c1: 02:13:3f:5b:f8:e6:62:f3:4f:00:75:20:78:b7:1d:39:5d:a2: a9:21:b7:e3:d0:db:81:d7:8d:be:30:be:4e:cd:01:a5:ad:de: 32:63:9c:dc:db:ad:6b:d1:17:41:70:33:72:42:2d:49:9e:3a: b5:a4:6e:85:78:74:06:66:c7:80:a6:00:da:c3:76:cb:c5:4a: ef:8b:42:d0:e3:a5:5b:20:70:b2:3b:00:21:ac:c0:e7:8f:41: aa:7f:96:64:ec:5f:90:b0:97:81:43:54:36:91:3b:41:9d:72: fb:59:f0:84:83:db:ba:4c:18:ce:5f:9a:59:78:88:9e:96:a2: ea:8f:6a:18:4b:b3:85:d2:63:d4:f7:cc:d7:b7:dc:41:a8:da: 08:44:bc:83:d8:bc:ec:15:be:c3:52:3d:8a:0c:8d:5b:85:67: a3:cd:ad:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwODIyMTkwMTU1WhcNMjUwODI5MTkwMTU1WjAYMRYwFAYD VQQDEw02OGE4YmVhMy03NTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8pxAGy/7bW5Wl8WnJE7JC5OJfudn7Eu+2H3BbAB2kvs/QmTcwQ/Q0fSXwl1A TqU3VadzubKooHJ2RimHIhB2YxQ0GRlil3w+jYvhx0Tk5mAgee0h+gCju22XJOqV vQhIsbrIdkuc++Tt7PfTh0HafVJmf40+eE7IYD0JN8GaiJrQKgYAgFVock+3CiTW gGEUEdO09dzuMineD+54re+QnV7MNqCsIfUl9To0Atte82aJ0kAg67KGlEA6ipqG Sp2HoHDgxAjlW+wN8maiJMnKW6oOV2XZvdi1fa55endElXMRZkDGSOIMyWh/FS9+ vpn/yIIZyOOT1R4UjMp0SZC0WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOe0JzYF ZaI6vL8xlKw7y16nkGxJMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtnL+nygnikNwebWbM7iZBTS0fNswhLhZZTjhOX+wqeW/ub3Ussz8h xfRga9aIutpMe9+GDlh7KIDiqipBxOS4x51DarRLCshinfZf43CHMCGDzIKRkmnx gcECEz9b+OZi808AdSB4tx05XaKpIbfj0NuB142+ML5OzQGlrd4yY5zc261r0RdB cDNyQi1Jnjq1pG6FeHQGZseApgDaw3bLxUrvi0LQ46VbIHCyOwAhrMDnj0Gqf5Zk 7F+QsJeBQ1Q2kTtBnXL7WfCEg9u6TBjOX5pZeIielqLqj2oYS7OF0mPU98zXt9xB qNoIRLyD2LzsFb7DUj2KDI1bhWejza0K -----END CERTIFICATE-----Generated at Sun Aug 24 11:04:58 2025 by rpki-client