$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: v7+ZE53Ca5zM01s7mPXPmwZJ5Dlq/mngKyQfpuaK0wo= Subject key identifier: 32:A3:E1:DC:D1:73:BB:B8:98:06:93:AA:EB:26:06:8C:5C:3A:03:78 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0820 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0807 Signing time: Thu 18 Sep 2025 21:21:08 +0000 Manifest this update: Thu 18 Sep 2025 21:21:07 +0000 Manifest next update: Thu 25 Sep 2025 21:21:07 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: VhOdM3pe6/Pt9sDLtetOLZV5jyVJXIQPFVpYucLuQxg=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Sep 18 21:21:07 2025 GMT Not After : Sep 25 21:21:07 2025 GMT Subject: CN=68cc77c4-8560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:40:78:8a:9c:dd:14:2a:7f:cd:d6:29:d2:47: ff:2a:89:4a:8f:d0:a4:4d:a4:db:49:ce:d3:8f:98: 68:fc:3b:e3:f2:09:d2:d0:70:06:d2:ba:82:62:a8: 8c:40:e8:ec:3c:7d:51:eb:0e:b1:01:a1:be:3f:e9: e5:43:82:f4:f0:61:49:0f:52:01:43:6b:2d:a3:f4: 27:71:d6:dc:6b:0c:03:29:f8:7e:ea:8d:e4:6a:de: c4:e8:6a:c0:2a:55:99:ac:30:ac:d7:88:95:28:4d: a8:60:67:14:8b:07:e5:45:fa:a7:d3:20:48:0d:70: c7:a0:96:da:a8:93:e2:4f:d9:ca:3e:53:15:76:8f: bd:dc:a8:ac:43:8a:39:b7:69:18:c0:34:c9:83:03: 21:d1:78:25:f6:0b:0f:e5:3b:23:c7:8a:0d:10:b2: 21:44:73:90:d5:7c:c4:f5:b2:5b:a3:e9:63:36:c3: 65:18:42:8c:6e:20:1e:35:e8:49:bd:66:89:27:51: 18:72:4f:82:61:ca:e5:ce:fc:a5:81:9a:a6:0c:73: 2d:a4:96:d9:a5:70:29:2e:dc:90:b0:60:99:56:fd: bd:a5:59:03:fa:f4:45:98:3c:e6:21:37:6d:d1:a7: d4:1a:64:f7:40:e1:ad:f6:f0:e6:8a:51:df:29:a8: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A3:E1:DC:D1:73:BB:B8:98:06:93:AA:EB:26:06:8C:5C:3A:03:78 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e2:e6:e9:84:28:3c:09:49:52:6a:d6:b1:f5:eb:ee:9b:f3: b5:70:10:52:c4:40:72:c8:f7:47:f5:49:77:9b:14:7a:1c:93: e7:0b:1b:c7:9f:8f:e6:be:49:67:98:1e:25:6a:e9:6b:a9:f9: 81:8b:df:7b:1d:52:31:cd:d6:70:41:b5:23:16:35:a5:84:b6: cf:16:c9:42:98:8e:90:46:e0:a6:b8:23:33:ec:ef:af:d3:e6: 43:ca:26:1a:07:bd:10:d7:37:04:0d:ce:f2:69:84:5b:e8:ba: 1b:e6:08:c3:cc:ba:d3:9f:27:b1:37:b4:4b:cf:07:d9:1a:cf: 74:89:4a:96:2a:08:04:cc:cb:5f:2b:7f:fe:8c:cb:e8:20:51: 82:28:cd:10:03:9d:ef:3f:96:e3:61:79:a6:64:ea:e9:2a:f2: 4c:ef:fe:62:11:20:3a:ee:01:1e:ab:05:36:bf:26:d7:c7:8c: 93:f3:d8:3b:b1:5a:08:b8:be:00:56:64:a1:2c:03:85:c8:09: 37:c4:22:39:c5:8f:43:7e:43:3f:3a:a5:a7:64:0f:ce:86:10: d9:56:6f:8f:58:8e:ab:d3:48:4e:04:37:35:de:f0:4a:87:ce: 70:9f:da:41:38:7d:82:0a:e7:eb:35:23:97:cc:ba:c2:71:8c: 62:ea:be:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUwOTE4MjEyMTA3WhcNMjUwOTI1MjEyMTA3WjAYMRYwFAYD VQQDEw02OGNjNzdjNC04NTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEB4ipzdFCp/zdYp0kf/KolKj9CkTaTbSc7Tj5ho/Dvj8gnS0HAG0rqCYqiM QOjsPH1R6w6xAaG+P+nlQ4L08GFJD1IBQ2sto/QncdbcawwDKfh+6o3kat7E6GrA KlWZrDCs14iVKE2oYGcUiwflRfqn0yBIDXDHoJbaqJPiT9nKPlMVdo+93KisQ4o5 t2kYwDTJgwMh0Xgl9gsP5Tsjx4oNELIhRHOQ1XzE9bJbo+ljNsNlGEKMbiAeNehJ vWaJJ1EYck+CYcrlzvylgZqmDHMtpJbZpXApLtyQsGCZVv29pVkD+vRFmDzmITdt 0afUGmT3QOGt9vDmilHfKajLdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKj4dzR c7u4mAaTqusmBoxcOgN4MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+4ubphCg8CUlSatax9evum/O1cBBSxEByyPdH9Ul3mxR6HJPnCxvH n4/mvklnmB4laulrqfmBi997HVIxzdZwQbUjFjWlhLbPFslCmI6QRuCmuCMz7O+v 0+ZDyiYaB70Q1zcEDc7yaYRb6Lob5gjDzLrTnyexN7RLzwfZGs90iUqWKggEzMtf K3/+jMvoIFGCKM0QA53vP5bjYXmmZOrpKvJM7/5iESA67gEeqwU2vybXx4yT89g7 sVoIuL4AVmShLAOFyAk3xCI5xY9DfkM/OqWnZA/OhhDZVm+PWI6r00hOBDc13vBK h85wn9pBOH2CCufrNSOXzLrCcYxi6r4P -----END CERTIFICATE-----Generated at Fri Sep 19 12:38:29 2025 by rpki-client