$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft File: h81xgndjHgvdtrTzot8esxEio4E.mft (raw, json) Hash identifier: TBcejXbv5TQXwG6ObsqUvhGO0beT8WPugpuswE2a8cc= Subject key identifier: 04:28:7E:24:7F:A1:80:F8:9B:44:96:9B:F8:0D:D0:26:05:54:CC:21 Authority key identifier: 87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 Certificate issuer: /CN=A91F2DDD/serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Certificate serial: 0E7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft Manifest number: 11B0 Signing time: Sun 24 Aug 2025 17:40:38 +0000 Manifest this update: Sun 24 Aug 2025 17:40:37 +0000 Manifest next update: Sun 31 Aug 2025 17:40:37 +0000 Files and hashes: 1: h81xgndjHgvdtrTzot8esxEio4E.crl (hash: qOPqwNhOrniMKS7rUuRtTDD4iMZ1+lS0u72Fo1Nf57s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3710 (0xe7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Validity Not Before: Aug 24 17:40:37 2025 GMT Not After : Aug 31 17:40:37 2025 GMT Subject: CN=68ab4e96-fa42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b3:5e:0e:03:91:61:fc:ef:cc:d4:45:45:50: 36:3b:94:d8:17:8b:c4:3d:e2:b0:c5:25:11:35:1c: e3:8f:61:6f:15:c3:a5:41:51:b7:df:f6:5c:30:aa: f1:4f:76:3c:a3:a6:72:e1:df:b7:d3:24:06:4f:23: e0:5e:5e:2b:32:df:22:d8:41:57:5f:61:5b:0f:a8: d9:c2:04:d1:97:bc:ef:62:a8:40:b7:d2:89:68:36: 4f:e7:a4:6d:74:e2:dd:c5:5f:f9:ec:f4:6b:fb:27: c3:c8:00:f2:41:f8:b6:21:11:21:64:79:7a:1e:75: 60:1a:d4:6d:fd:2c:b3:5e:3a:cb:0f:1a:44:87:22: 45:0c:80:c5:cf:b2:d5:8b:c8:09:89:70:43:80:d9: 4a:18:6c:75:eb:0d:09:9f:af:f6:dd:66:29:6b:e6: 0a:77:8f:2e:20:35:2f:b1:80:b9:17:72:8e:43:49: 4e:91:e8:c3:48:80:d4:cd:af:c0:13:e4:47:18:57: 31:88:a1:1d:80:3a:56:ed:e8:cc:6d:39:ca:63:44: 66:ab:e5:d4:40:91:86:2a:6a:06:a5:57:42:a8:41: d7:a7:99:7d:2b:89:f7:f5:20:15:49:be:e9:b7:04: 66:34:04:ff:1e:c5:c8:90:4e:9c:43:fa:b2:0b:f6: 0e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:28:7E:24:7F:A1:80:F8:9B:44:96:9B:F8:0D:D0:26:05:54:CC:21 X509v3 Authority Key Identifier: keyid:87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:84:f8:21:3f:29:4a:0a:56:f3:e3:20:aa:2f:f5:d2:3a:af: 21:16:43:6b:29:b6:0f:4c:74:95:92:30:aa:f1:58:d0:0d:57: 11:f3:75:f0:8c:a2:0a:02:04:47:9d:0b:b4:73:89:3d:f1:ae: 43:a9:0e:37:43:10:25:44:b4:2a:87:55:8f:3d:a7:5b:8a:83: cf:b2:61:b1:a0:cc:c0:a6:c3:7a:37:bb:d6:9f:a2:12:05:1f: 7e:0b:39:dc:b2:3d:21:20:d6:8c:e9:e7:cd:07:93:70:ad:ca: 68:51:0e:16:46:4a:89:83:6c:ae:f8:fd:1c:6e:1a:bd:ea:c1: 84:73:40:87:5e:a8:e2:c1:de:13:10:d0:e6:81:7a:de:0f:a1: 9a:34:68:33:14:47:01:2d:ac:e0:0c:60:b0:09:36:a4:b4:a1: 8c:60:a3:98:cc:5b:a5:79:f2:67:a0:6c:58:d5:4b:d3:ca:e0: 63:97:0a:40:6f:50:ed:72:99:68:f9:6b:a9:a0:4c:37:d0:39: 82:83:da:bc:12:b6:a8:49:9d:81:07:b0:07:b9:55:88:d4:a1: 6c:ae:0c:e0:b4:db:92:d1:2f:aa:72:85:60:75:3d:1d:dc:ec: e6:82:bf:f1:5f:13:b2:ba:6c:bb:2e:1b:d9:4e:1e:0e:39:2a: e7:3f:6b:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKDg3Q0Q3MTgyNzc2MzFFMEJEREI2QjRGM0EyREYxRUIz MTEyMkEzODEwHhcNMjUwODI0MTc0MDM3WhcNMjUwODMxMTc0MDM3WjAYMRYwFAYD VQQDEw02OGFiNGU5Ni1mYTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrNeDgORYfzvzNRFRVA2O5TYF4vEPeKwxSURNRzjj2FvFcOlQVG33/ZcMKrx T3Y8o6Zy4d+30yQGTyPgXl4rMt8i2EFXX2FbD6jZwgTRl7zvYqhAt9KJaDZP56Rt dOLdxV/57PRr+yfDyADyQfi2IREhZHl6HnVgGtRt/SyzXjrLDxpEhyJFDIDFz7LV i8gJiXBDgNlKGGx16w0Jn6/23WYpa+YKd48uIDUvsYC5F3KOQ0lOkejDSIDUza/A E+RHGFcxiKEdgDpW7ejMbTnKY0Rmq+XUQJGGKmoGpVdCqEHXp5l9K4n39SAVSb7p twRmNAT/HsXIkE6cQ/qyC/YOAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQofiR/ oYD4m0SWm/gN0CYFVMwhMB8GA1UdIwQYMBaAFIfNcYJ3Yx4L3ba086LfHrMRIqOB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhndmR0clR6b3Q4ZXN4RWlv NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4MXhnbmRqSGd2ZHRyVHpvdDhlc3hFaW80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhn dmR0clR6b3Q4ZXN4RWlvNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXhPghPylKClbz4yCqL/XSOq8hFkNrKbYPTHSVkjCq8VjQDVcR83Xw jKIKAgRHnQu0c4k98a5DqQ43QxAlRLQqh1WPPadbioPPsmGxoMzApsN6N7vWn6IS BR9+Czncsj0hINaM6efNB5NwrcpoUQ4WRkqJg2yu+P0cbhq96sGEc0CHXqjiwd4T ENDmgXreD6GaNGgzFEcBLazgDGCwCTaktKGMYKOYzFulefJnoGxY1UvTyuBjlwpA b1Dtcplo+WupoEw30DmCg9q8EraoSZ2BB7AHuVWI1KFsrgzgtNuS0S+qcoVgdT0d 3Ozmgr/xXxOyumy7LhvZTh4OOSrnP2uE -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:21 2025 by rpki-client