$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: IDNW1P/DjosohT6YMh6BbEBWFevgFEywKP/JMTeKxyY= Subject key identifier: 0E:55:1D:FA:42:6C:6B:D7:BA:EE:2B:D2:08:BD:FD:E0:0F:00:BC:C0 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04DF Signing time: Sun 07 Sep 2025 00:07:33 +0000 Manifest this update: Sun 07 Sep 2025 00:07:33 +0000 Manifest next update: Sun 14 Sep 2025 00:07:33 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: +YpBXY+WKWmPEWFMoC5l3K43Ha7MEKttqa1uBWfL4QY=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Sep 7 00:07:33 2025 GMT Not After : Sep 14 00:07:33 2025 GMT Subject: CN=68bcccc5-267d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:66:54:cc:90:9e:4c:51:f5:9a:cd:e1:11: 7b:fe:b8:24:95:bd:9d:0c:a2:d5:ad:da:77:ce:34: 41:42:d0:e0:70:a3:19:e9:64:d9:61:49:8a:08:dd: 1b:e6:83:d0:91:9b:4c:c0:20:ca:23:c8:9f:87:d5: e7:79:3d:94:9a:ed:0d:6f:76:74:5e:a8:c0:b8:e7: 92:32:2d:49:6c:b6:b8:0c:40:89:57:b9:91:2b:1e: 82:30:5a:46:c5:04:21:10:1e:ab:4a:df:b4:df:4a: 52:16:12:39:ee:d0:41:fd:ec:ed:fa:21:7f:df:f6: 1f:5b:7f:11:49:ef:d7:5e:36:2b:9e:71:fe:65:f8: 8f:99:9e:2e:b9:40:8c:5d:d8:fb:11:30:9e:48:0b: dc:b3:c5:b8:23:68:3a:c4:d7:24:78:e0:05:18:18: 9a:b6:38:52:f8:cf:c0:17:4b:81:58:5b:50:f5:16: 2b:f6:bd:b3:5f:4d:19:0b:2b:bd:2b:b8:b2:38:70: ed:7f:64:03:77:d7:1d:61:5e:c2:46:d0:bc:91:ce: de:3f:c9:22:3f:8d:61:af:dd:6b:26:10:20:bf:40: c5:30:a5:a0:0f:1a:b4:71:af:1d:e7:f2:4c:f6:fe: a9:8a:f2:ff:2e:37:38:ab:28:36:57:4b:9c:9e:eb: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:55:1D:FA:42:6C:6B:D7:BA:EE:2B:D2:08:BD:FD:E0:0F:00:BC:C0 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:15:84:05:91:7e:e9:b1:e0:4f:de:50:f8:c2:ab:f4:7a:31: 8d:12:8c:a8:60:84:82:2a:78:e8:9a:1f:3c:5c:34:74:c2:47: 82:2f:af:ab:21:77:b1:cd:22:86:cb:ad:d0:e3:0f:a4:c5:3c: fd:ad:f8:aa:b2:4b:9d:92:51:60:12:a1:57:9d:35:40:e6:3a: ef:86:54:ef:ec:5f:db:a7:0d:bd:47:58:ad:d6:26:b4:3d:53: 9c:c8:ce:09:9d:76:3b:62:07:62:2b:28:9c:37:c5:f8:05:5e: ce:03:34:23:c7:38:0a:5d:bf:25:01:d7:24:20:4a:41:c2:b7: db:81:83:10:fd:41:96:f3:01:02:32:39:91:01:de:7f:f8:a6: 5c:6b:eb:77:24:c7:2b:5a:2a:bb:f2:55:5a:57:a6:d1:bb:2d: 84:fa:55:ac:2a:50:54:23:e4:0e:a2:36:91:18:59:de:a9:08: c7:74:60:8f:5f:01:8a:3a:e8:7a:95:92:3c:36:b2:45:93:25: 99:59:8c:ad:6e:af:69:70:7a:39:32:75:3e:46:9f:0c:c8:eb: e7:78:40:13:09:aa:1a:e3:cf:c4:af:6c:0a:a7:dc:af:3c:dc: f4:31:b2:58:ba:23:e4:c4:7b:4c:3a:05:ec:01:70:6a:98:28: 1f:74:dd:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUwOTA3MDAwNzMzWhcNMjUwOTE0MDAwNzMzWjAYMRYwFAYD VQQDEw02OGJjY2NjNS0yNjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T5mVMyQnkxR9ZrN4RF7/rgklb2dDKLVrdp3zjRBQtDgcKMZ6WTZYUmKCN0b 5oPQkZtMwCDKI8ifh9XneT2Umu0Nb3Z0XqjAuOeSMi1JbLa4DECJV7mRKx6CMFpG xQQhEB6rSt+030pSFhI57tBB/ezt+iF/3/YfW38RSe/XXjYrnnH+ZfiPmZ4uuUCM Xdj7ETCeSAvcs8W4I2g6xNckeOAFGBiatjhS+M/AF0uBWFtQ9RYr9r2zX00ZCyu9 K7iyOHDtf2QDd9cdYV7CRtC8kc7eP8kiP41hr91rJhAgv0DFMKWgDxq0ca8d5/JM 9v6pivL/Ljc4qyg2V0ucnutenwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5VHfpC bGvXuu4r0gi9/eAPALzAMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOFYQFkX7pseBP3lD4wqv0ejGNEoyoYISCKnjomh88XDR0wkeCL6+r IXexzSKGy63Q4w+kxTz9rfiqskudklFgEqFXnTVA5jrvhlTv7F/bpw29R1it1ia0 PVOcyM4JnXY7YgdiKyicN8X4BV7OAzQjxzgKXb8lAdckIEpBwrfbgYMQ/UGW8wEC MjmRAd5/+KZca+t3JMcrWiq78lVaV6bRuy2E+lWsKlBUI+QOojaRGFneqQjHdGCP XwGKOuh6lZI8NrJFkyWZWYytbq9pcHo5MnU+Rp8MyOvneEATCaoa48/Er2wKp9yv PNz0MbJYuiPkxHtMOgXsAXBqmCgfdN2P -----END CERTIFICATE-----Generated at Mon Sep 8 10:35:21 2025 by rpki-client