$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: Vyz8fakh9SDdFj9uzDNdIeVPx3L4TAZCYSuwvNjrbU4= Subject key identifier: 21:FE:3E:97:24:1F:C3:93:8B:CD:29:1C:D2:3E:35:E8:B6:31:EF:50 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 153F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 152E Signing time: Mon 18 Aug 2025 17:00:35 +0000 Manifest this update: Mon 18 Aug 2025 17:00:34 +0000 Manifest next update: Mon 25 Aug 2025 17:00:34 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: G5RDQYuGk0WtVTMMI2ib3bs6D7hcsmT2A6JznSML3gc=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 17:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5439 (0x153f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Aug 18 17:00:34 2025 GMT Not After : Aug 25 17:00:34 2025 GMT Subject: CN=68a35c32-3e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:73:6e:63:d7:46:4e:45:29:24:71:ee:ec: 45:aa:de:99:86:f1:15:a7:99:59:f8:12:12:44:2a: 6d:b1:46:60:2f:29:2d:31:76:51:32:1d:41:a5:55: 09:03:e0:17:8b:83:c5:5f:31:4c:27:08:84:92:d7: 51:c9:fc:df:0d:78:22:61:7f:a8:4f:90:70:c7:61: 98:7d:10:76:e1:58:61:0b:ee:51:10:0b:80:71:1d: f8:04:28:51:41:a0:fc:ea:8b:26:bd:bc:5b:a9:a8: 95:c7:50:57:8c:fc:90:60:2f:f6:5f:bc:fc:56:88: f8:1e:18:ce:81:6e:d1:64:c9:72:a1:9e:cc:b4:56: 4a:48:43:82:84:d9:81:bb:6f:11:aa:07:6b:4a:ba: ee:79:6b:e9:ad:57:e9:5b:fd:35:e9:96:05:41:14: f2:d6:4f:63:e9:e7:88:f8:ad:f8:00:ec:3c:d8:f6: 15:2d:8c:c7:ed:18:52:e9:ed:b5:46:77:6d:51:e5: 55:33:3f:51:e5:92:7f:78:d3:78:ae:50:4d:29:52: e3:27:a4:8e:71:59:bf:90:0e:d5:31:c8:e7:41:1a: 5b:3f:69:25:a8:19:ef:d3:82:7e:0e:21:94:b3:b2: d9:fd:c9:c3:9d:03:0a:84:17:bd:2c:0e:86:14:38: 8c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:FE:3E:97:24:1F:C3:93:8B:CD:29:1C:D2:3E:35:E8:B6:31:EF:50 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d9:bb:23:d1:c3:7c:60:86:eb:7b:13:8c:44:e7:ca:98:8a: a7:03:54:3d:ad:6a:1b:bb:29:b8:16:94:88:48:13:0e:5b:43: 8f:b1:c5:ea:39:41:b7:36:fc:18:68:58:62:af:51:14:f2:46: a6:7b:cd:1b:cf:bc:1c:e9:ee:71:ca:0d:d5:99:5f:e2:7e:12: 36:d5:be:f9:a7:ec:82:79:e4:32:10:12:ce:e5:10:2f:30:d7: 54:34:eb:f3:39:bb:25:d4:dd:d2:6b:b7:97:c2:90:0f:e6:90: a0:e3:d4:ec:7f:82:f9:1c:34:25:87:22:8b:3b:05:80:0c:78: 1f:58:1b:02:ff:9e:17:3e:43:29:72:c4:f2:22:9f:cc:6b:2c: 1c:42:fc:78:fa:3e:f0:da:88:48:ea:a7:00:87:3a:6c:80:05: c4:e9:2b:db:9f:7b:b0:3c:b4:cd:87:be:57:db:94:75:99:95: bc:54:86:c1:df:66:06:b4:bb:ae:7e:54:cb:46:80:ea:dd:3c: 21:75:2d:d5:43:9e:0a:a0:f1:f4:14:49:7a:47:83:b9:6d:9e: 8f:45:08:33:72:4d:1f:62:7b:b3:cf:21:e9:3c:42:93:ea:03: 05:c2:b9:7d:78:cb:7c:b7:eb:2e:19:7e:ca:c7:c3:4a:f8:5e: 12:b2:9e:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwODE4MTcwMDM0WhcNMjUwODI1MTcwMDM0WjAYMRYwFAYD VQQDEw02OGEzNWMzMi0zZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXFzbmPXRk5FKSRx7uxFqt6ZhvEVp5lZ+BISRCptsUZgLyktMXZRMh1BpVUJ A+AXi4PFXzFMJwiEktdRyfzfDXgiYX+oT5Bwx2GYfRB24VhhC+5REAuAcR34BChR QaD86osmvbxbqaiVx1BXjPyQYC/2X7z8Voj4HhjOgW7RZMlyoZ7MtFZKSEOChNmB u28RqgdrSrrueWvprVfpW/016ZYFQRTy1k9j6eeI+K34AOw82PYVLYzH7RhS6e21 RndtUeVVMz9R5ZJ/eNN4rlBNKVLjJ6SOcVm/kA7VMcjnQRpbP2klqBnv04J+DiGU s7LZ/cnDnQMKhBe9LA6GFDiMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCH+Ppck H8OTi80pHNI+Nei2Me9QMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk2bsj0cN8YIbrexOMROfKmIqnA1Q9rWobuym4FpSISBMOW0OPscXq OUG3NvwYaFhir1EU8kame80bz7wc6e5xyg3VmV/ifhI21b75p+yCeeQyEBLO5RAv MNdUNOvzObsl1N3Sa7eXwpAP5pCg49Tsf4L5HDQlhyKLOwWADHgfWBsC/54XPkMp csTyIp/MaywcQvx4+j7w2ohI6qcAhzpsgAXE6Svbn3uwPLTNh75X25R1mZW8VIbB 32YGtLuuflTLRoDq3TwhdS3VQ54KoPH0FEl6R4O5bZ6PRQgzck0fYnuzzyHpPEKT 6gMFwrl9eMt8t+suGX7Kx8NK+F4Ssp7j -----END CERTIFICATE-----Generated at Wed Aug 20 13:54:03 2025 by rpki-client