$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: WEUpGzes52b9gj+jn2rXCr+PNzVBWYjilsWUqYn+PQo= Subject key identifier: F2:7D:DA:BE:8F:18:B2:56:53:22:CE:C9:9A:55:FD:17:72:6E:29:68 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: B9 Signing time: Wed 03 Sep 2025 06:37:52 +0000 Manifest this update: Wed 03 Sep 2025 06:37:52 +0000 Manifest next update: Wed 10 Sep 2025 06:37:52 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: NOH/vp/eAsT3PWUeil7axEeUUK8Rwso90VOReS5xL80=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: w4Rh9NpZ/IQ60xsdouCsCPn/eRzJ06RRF4GvfzZ5uwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Sep 3 06:37:52 2025 GMT Not After : Sep 10 06:37:52 2025 GMT Subject: CN=68b7e240-47a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:13:ce:ed:e9:6b:c7:ed:07:ad:44:ef:fe:07: b0:1b:dd:c0:85:66:a1:20:ae:33:41:43:78:c0:d8: b4:28:64:c2:b1:f5:85:8c:3b:09:30:47:a8:c9:79: 16:44:5f:5d:b6:35:34:42:3c:78:70:ea:2b:9e:b1: 66:45:47:4f:9b:69:4e:c7:04:c1:06:d7:17:15:ea: 13:4b:a2:69:2f:36:9e:d9:5e:e9:4e:db:3c:98:75: 28:a9:ce:01:dd:73:cb:bc:55:24:f7:e3:78:e6:a6: 7f:13:ad:8c:bc:ff:64:ae:7b:d6:37:de:f9:c9:6c: 52:5f:85:b2:d6:5e:a0:78:9f:f0:58:45:eb:71:41: 04:3e:bf:b5:5e:1a:fd:96:cd:ca:4b:81:b2:06:ac: 3e:75:09:0f:7a:a0:89:57:36:a0:e2:1e:42:83:b9: 6a:01:6a:d4:64:55:36:36:85:ac:0b:9a:50:76:e9: 0d:52:8a:6e:97:84:a2:d6:b4:29:e6:7f:30:36:fb: 6d:76:85:af:03:86:9c:21:48:89:e9:81:45:14:2e: 46:35:de:19:32:e2:92:07:bc:02:3a:51:7d:ae:29: e1:16:8b:f5:31:ae:c6:72:9b:b3:e3:e3:a1:41:e8: c0:dd:90:ee:18:86:b6:34:2b:03:ae:75:91:37:b4: bd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7D:DA:BE:8F:18:B2:56:53:22:CE:C9:9A:55:FD:17:72:6E:29:68 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:6e:cc:33:21:a3:02:3c:96:9c:c9:64:aa:48:e8:d1:d5:34: 9c:69:f0:46:f5:ce:7b:7d:d1:92:b4:9f:c3:7b:52:7b:9c:04: 70:5d:ed:20:3d:a0:e5:88:49:89:72:1c:2e:c0:52:91:b7:49: a0:49:9a:69:4a:12:ab:c4:ed:de:a2:b2:89:98:1e:22:05:7f: aa:23:91:9e:f2:a9:b2:91:01:5b:90:dc:da:6e:20:e5:58:f3: 61:34:1a:33:a3:9d:72:7d:fb:59:da:4b:61:39:bf:7b:ee:cb: b0:2d:c7:d5:41:39:34:80:e6:de:d5:04:80:c3:6c:8b:f2:a9: 17:75:e7:0b:a4:40:5a:4f:b3:6e:37:6f:24:96:b7:96:ff:8f: e7:49:8f:e8:7a:5b:5f:1f:d3:92:44:08:6c:bd:bd:37:c7:63: 12:16:dc:f8:52:42:e9:b9:de:68:8e:fd:2c:7c:55:ff:61:13: 3e:c6:b7:7e:6d:30:6d:e7:7b:87:45:a5:32:1c:1d:c4:95:41: db:fb:20:41:b0:77:9a:1c:6f:1e:68:03:6e:83:12:1b:c5:69: ea:90:f8:bd:91:7a:5f:89:7e:3a:8b:f1:b2:57:e0:3c:ba:16: 92:8f:fc:d9:81:6f:c3:6d:c3:45:5b:f5:0c:4a:0c:8f:7b:43: b2:95:70:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUwOTAzMDYzNzUyWhcNMjUwOTEwMDYzNzUyWjAYMRYwFAYD VQQDEw02OGI3ZTI0MC00N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxPO7elrx+0HrUTv/gewG93AhWahIK4zQUN4wNi0KGTCsfWFjDsJMEeoyXkW RF9dtjU0Qjx4cOornrFmRUdPm2lOxwTBBtcXFeoTS6JpLzae2V7pTts8mHUoqc4B 3XPLvFUk9+N45qZ/E62MvP9krnvWN975yWxSX4Wy1l6geJ/wWEXrcUEEPr+1Xhr9 ls3KS4GyBqw+dQkPeqCJVzag4h5Cg7lqAWrUZFU2NoWsC5pQdukNUopul4Si1rQp 5n8wNvttdoWvA4acIUiJ6YFFFC5GNd4ZMuKSB7wCOlF9rinhFov1Ma7Gcpuz4+Oh QejA3ZDuGIa2NCsDrnWRN7S9pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ92r6P GLJWUyLOyZpV/RdybiloMB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/bswzIaMCPJacyWSqSOjR1TScafBG9c57fdGStJ/De1J7nARwXe0g PaDliEmJchwuwFKRt0mgSZppShKrxO3eorKJmB4iBX+qI5Ge8qmykQFbkNzabiDl WPNhNBozo51yfftZ2kthOb977suwLcfVQTk0gObe1QSAw2yL8qkXdecLpEBaT7Nu N28klreW/4/nSY/oeltfH9OSRAhsvb03x2MSFtz4UkLpud5ojv0sfFX/YRM+xrd+ bTBt53uHRaUyHB3ElUHb+yBBsHeaHG8eaANugxIbxWnqkPi9kXpfiX46i/GyV+A8 uhaSj/zZgW/DbcNFW/UMSgyPe0OylXDb -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:10 2025 by rpki-client