$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: ATulQDzNfUfTi14KSWTK60aEf71g/ZK6P3ukz42EpqA= Subject key identifier: F7:73:34:5A:D2:AE:E1:0B:34:7D:78:61:EE:3F:65:29:84:D3:E9:7B Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 7E Signing time: Tue 09 Sep 2025 06:50:07 +0000 Manifest this update: Tue 09 Sep 2025 06:50:06 +0000 Manifest next update: Tue 16 Sep 2025 06:50:06 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: v/8RRWtXChA143a15vFV9GzPFSvbpvFf3+y9RYO0o7c=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Sep 9 06:50:06 2025 GMT Not After : Sep 16 06:50:06 2025 GMT Subject: CN=68bfce1e-724f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:89:62:05:3b:c1:5c:b0:38:61:0e:1b:f6: 76:79:9e:d2:0f:d4:99:0b:f5:dd:bc:64:28:a8:c9: 05:2b:f6:1a:35:19:d5:71:b7:d9:50:0d:7d:a5:13: de:99:17:68:ca:a4:7f:d3:24:3a:5a:61:ed:01:a0: f5:47:58:18:52:24:c8:d1:5d:58:e0:27:c5:44:a8: 74:28:1e:37:8d:6d:15:db:e2:d9:8b:a2:06:83:b4: 61:cb:c5:29:6d:a5:f4:11:8f:68:52:3e:0f:bb:03: 70:15:7c:63:62:77:c0:34:ee:04:6c:0d:cc:38:2d: e8:d8:91:2e:b5:f0:86:48:e9:d5:23:6f:7b:86:85: e5:0e:0a:c5:94:f0:de:44:39:de:30:cb:74:04:08: ae:32:96:f0:44:cb:d1:ff:05:dc:29:2f:55:3a:9b: d1:d9:05:2d:5b:2c:49:95:7e:f6:fb:b3:a7:db:3d: 5b:db:16:2a:b7:ce:05:46:6c:79:ef:16:53:6a:87: 1a:6a:09:78:69:72:c0:6e:9f:c7:84:bd:47:ff:84: 0d:6d:04:6e:db:85:b3:b3:e0:43:cb:26:0e:64:37: c0:fd:34:5f:19:27:9d:bd:7d:e4:49:d6:16:b8:97: fb:cb:ad:bd:33:6d:53:d2:c0:ac:0f:15:20:a6:ba: 80:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:73:34:5A:D2:AE:E1:0B:34:7D:78:61:EE:3F:65:29:84:D3:E9:7B X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:92:b6:63:a2:42:fb:60:cb:3e:20:f4:7a:a2:5d:da:7e:89: e6:6c:e5:6e:84:54:db:7f:79:46:75:d2:11:0d:ca:a2:04:62: 65:16:85:4c:5e:73:d9:8c:da:e3:8d:60:44:17:26:fc:89:40: 17:98:f5:ee:ef:aa:b6:a4:0c:e2:96:ca:ab:b8:81:d8:bd:b3: be:15:9f:d9:ee:1e:7f:db:90:35:b5:dd:f7:91:06:d3:f2:49: 21:3e:78:07:a8:e5:d0:1d:bc:fc:37:ed:49:ff:6f:f4:46:73: fe:e9:8f:39:4f:ce:ce:7e:28:ce:12:2d:c7:da:3d:4c:5f:bd: 5c:ae:d3:af:74:1b:f3:bd:b5:4d:68:fe:1b:a3:dd:14:a2:a3: 09:06:47:9b:7f:fe:84:30:6c:e6:1f:b4:6c:d4:e2:58:d9:5f: dd:c7:e6:dd:bb:86:92:bc:6a:a9:54:9c:e2:f7:14:fa:69:65: eb:03:40:71:0a:60:26:aa:d1:ac:22:f2:d6:d9:6e:26:55:15: bc:d6:f3:7e:c6:d8:0f:e5:35:35:7f:61:53:0d:04:05:d9:e3: ec:6f:b0:68:b4:d5:15:20:c2:49:41:54:80:39:58:60:b1:b1: 88:11:0f:b8:3c:ab:98:bf:5b:64:db:97:23:79:50:e4:fa:97: 95:57:cb:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTA5MDkwNjUwMDZaFw0yNTA5MTYwNjUwMDZaMBgxFjAUBgNV BAMTDTY4YmZjZTFlLTcyNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5IYliBTvBXLA4YQ4b9nZ5ntIP1JkL9d28ZCioyQUr9ho1GdVxt9lQDX2lE96Z F2jKpH/TJDpaYe0BoPVHWBhSJMjRXVjgJ8VEqHQoHjeNbRXb4tmLogaDtGHLxSlt pfQRj2hSPg+7A3AVfGNid8A07gRsDcw4LejYkS618IZI6dUjb3uGheUOCsWU8N5E Od4wy3QECK4ylvBEy9H/BdwpL1U6m9HZBS1bLEmVfvb7s6fbPVvbFiq3zgVGbHnv FlNqhxpqCXhpcsBun8eEvUf/hA1tBG7bhbOz4EPLJg5kN8D9NF8ZJ529feRJ1ha4 l/vLrb0zbVPSwKwPFSCmuoCpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU93M0WtKu 4Qs0fXhh7j9lKYTT6XswHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEWStmOiQvtgyz4g9HqiXdp+ieZs5W6EVNt/eUZ10hENyqIEYmUWhUxe c9mM2uONYEQXJvyJQBeY9e7vqrakDOKWyqu4gdi9s74Vn9nuHn/bkDW13feRBtPy SSE+eAeo5dAdvPw37Un/b/RGc/7pjzlPzs5+KM4SLcfaPUxfvVyu0690G/O9tU1o /huj3RSiowkGR5t//oQwbOYftGzU4ljZX93H5t27hpK8aqlUnOL3FPppZesDQHEK YCaq0awi8tbZbiZVFbzW837G2A/lNTV/YVMNBAXZ4+xvsGi01RUgwklBVIA5WGCx sYgRD7g8q5i/W2TblyN5UOT6l5VXyxg= -----END CERTIFICATE-----Generated at Tue Sep 9 17:44:59 2025 by rpki-client