$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: PvTQcuIdk6d6fFdLxw6KQWWHp8Xjv8T+wy2QoOcoTd0= Subject key identifier: 2D:A3:10:31:16:90:D4:50:E8:70:EF:71:25:50:7A:D2:79:E0:B8:13 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 037C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0370 Signing time: Tue 09 Sep 2025 00:59:41 +0000 Manifest this update: Tue 09 Sep 2025 00:59:41 +0000 Manifest next update: Tue 16 Sep 2025 00:59:41 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: UoQ1YNr94WgFy+yjEQBi5jzxyTsBA4xt5YlrLFVVEZg=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Sep 9 00:59:41 2025 GMT Not After : Sep 16 00:59:41 2025 GMT Subject: CN=68bf7bfd-92dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:80:e4:59:2e:39:82:93:7e:f9:26:48:d9:e1: 39:91:a8:6a:fa:dc:8b:64:d8:31:c8:c7:d1:82:76: a8:2c:0a:a9:31:75:6a:26:d1:ee:96:99:2d:5b:26: c2:39:a4:e5:7c:a0:a6:47:da:be:03:e4:9d:77:11: e5:14:82:2e:85:8a:0c:d8:0f:bc:c5:47:cb:b7:7e: e8:64:74:63:e6:5a:b8:0f:31:8a:f2:e7:44:43:10: b7:75:40:45:95:dd:c0:a5:62:79:3b:ec:22:d3:ef: 27:4e:84:9e:e8:ff:15:a0:24:fe:af:42:9e:59:9f: 43:01:03:0b:12:fe:0a:ae:50:b4:7b:19:e8:db:39: fe:f2:5a:70:70:f1:2c:07:ba:51:1b:ac:ae:8e:16: 64:08:1d:0e:b1:f7:19:05:8f:69:1e:48:dd:97:98: 40:f5:28:87:dc:58:ba:e9:6f:6e:c0:54:17:e2:ba: 50:ae:de:7b:a3:69:f5:34:21:4f:eb:69:ae:38:08: f4:8c:e3:9e:71:b8:21:1a:a0:0c:a0:2b:3a:0b:d8: 7c:29:32:51:4f:b5:c7:8c:ef:8e:0d:b5:42:c9:ea: e4:39:6b:75:21:75:eb:19:82:fa:94:5a:d3:56:7e: dd:09:33:cc:a3:a1:b9:dc:2c:bb:6c:ec:7f:e6:1b: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A3:10:31:16:90:D4:50:E8:70:EF:71:25:50:7A:D2:79:E0:B8:13 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:ac:59:fd:e0:4f:57:44:81:42:ee:88:49:e1:b3:ec:f4:7d: 73:3f:f6:05:0d:be:6c:71:db:8e:18:d7:df:be:09:f2:e4:9e: bb:54:cb:fd:34:ae:e3:c7:0a:71:a7:af:04:fe:98:62:b6:92: 1f:b4:02:8e:59:20:04:08:3d:40:64:e9:2a:3e:d5:af:71:3f: 58:85:25:10:7b:3b:c5:4c:c2:b1:8c:30:25:82:c7:2e:5b:ab: a0:fa:96:c3:23:83:6a:3d:99:18:47:73:a3:3d:9e:8c:01:95: 81:5a:ab:70:85:74:63:bb:69:f8:eb:31:46:ed:d0:d3:57:1d: f4:29:d7:d2:5a:05:2b:77:51:27:8b:88:e8:3a:00:2e:b9:78: d1:b8:b7:e0:90:86:82:d5:01:14:d3:da:99:f5:58:e9:66:ae: 3b:c3:61:b2:80:23:32:0f:1b:0d:aa:64:a4:3a:54:87:ad:0e: 0c:e2:fa:48:ad:cc:38:2b:a9:ad:80:f5:d5:ac:1c:f0:1c:c1: f9:ba:88:f9:94:a5:12:81:d0:86:c6:f8:0f:66:64:50:58:2e: 7d:99:7a:56:6b:97:9f:a5:b2:57:a0:af:3d:b9:d2:f3:9d:1b: 74:67:17:e1:7e:f1:70:2e:fb:94:db:e7:80:9e:65:d0:02:8f: 1b:4f:ba:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwOTA5MDA1OTQxWhcNMjUwOTE2MDA1OTQxWjAYMRYwFAYD VQQDEw02OGJmN2JmZC05MmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oDkWS45gpN++SZI2eE5kahq+tyLZNgxyMfRgnaoLAqpMXVqJtHulpktWybC OaTlfKCmR9q+A+SddxHlFIIuhYoM2A+8xUfLt37oZHRj5lq4DzGK8udEQxC3dUBF ld3ApWJ5O+wi0+8nToSe6P8VoCT+r0KeWZ9DAQMLEv4KrlC0exno2zn+8lpwcPEs B7pRG6yujhZkCB0OsfcZBY9pHkjdl5hA9SiH3Fi66W9uwFQX4rpQrt57o2n1NCFP 62muOAj0jOOecbghGqAMoCs6C9h8KTJRT7XHjO+ODbVCyerkOWt1IXXrGYL6lFrT Vn7dCTPMo6G53Cy7bOx/5hv7wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2jEDEW kNRQ6HDvcSVQetJ54LgTMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVrFn94E9XRIFC7ohJ4bPs9H1zP/YFDb5scduOGNffvgny5J67VMv9 NK7jxwpxp68E/phitpIftAKOWSAECD1AZOkqPtWvcT9YhSUQezvFTMKxjDAlgscu W6ug+pbDI4NqPZkYR3OjPZ6MAZWBWqtwhXRju2n46zFG7dDTVx30KdfSWgUrd1En i4joOgAuuXjRuLfgkIaC1QEU09qZ9VjpZq47w2GygCMyDxsNqmSkOlSHrQ4M4vpI rcw4K6mtgPXVrBzwHMH5uoj5lKUSgdCGxvgPZmRQWC59mXpWa5efpbJXoK89udLz nRt0ZxfhfvFwLvuU2+eAnmXQAo8bT7ru -----END CERTIFICATE-----Generated at Tue Sep 9 07:29:47 2025 by rpki-client