$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: b2aV8J9S6WdpfjmhVVksdyXjtlwasex6dan7qarIirQ= Subject key identifier: B0:A0:56:B2:ED:EE:4E:63:1D:49:DE:83:83:F3:B5:4F:AE:F5:0D:90 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 211C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 210A Signing time: Mon 08 Sep 2025 15:55:54 +0000 Manifest this update: Mon 08 Sep 2025 15:55:54 +0000 Manifest next update: Mon 15 Sep 2025 15:55:54 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: oGbLrt1qVE6XqqgNIzL5mpUJPvdH5Qt7IZT9af6kGK0=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8476 (0x211c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Sep 8 15:55:54 2025 GMT Not After : Sep 15 15:55:54 2025 GMT Subject: CN=68befc8a-912e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f9:73:2d:6c:18:49:79:72:36:21:2e:57:f2: 6a:cc:d3:8d:33:c4:dd:dd:92:12:0b:ad:43:cb:fe: a4:1d:e7:d3:29:26:a5:1d:2c:5c:99:9f:e3:f3:96: 89:23:7a:99:17:81:72:5e:d3:b0:0c:84:ac:40:5b: 01:cd:1b:3d:c5:85:3b:f7:39:0d:62:8f:5f:b0:30: da:6c:eb:88:40:15:26:eb:be:d1:0c:a2:81:d1:ab: 7a:6e:ad:ab:4f:76:c3:f5:a9:ee:90:6d:55:74:af: fa:e6:ac:88:15:77:c7:ab:37:1d:2d:37:40:1a:65: 5d:0e:f0:2f:d7:ec:dc:ea:05:24:5a:9d:bd:e0:c7: 39:9b:93:78:76:9b:4a:5f:d8:7a:c5:92:2c:c0:e4: 7a:a5:97:9d:40:21:21:76:fc:48:89:47:4d:e8:72: 55:2d:13:55:14:ff:29:82:90:69:d2:9d:6d:8c:d6: 4d:c6:3c:27:3a:8e:94:d8:e2:96:3d:59:7e:75:e4: ca:e6:a1:f7:df:a1:99:9e:98:a7:9f:9e:b0:46:91: 3f:f2:59:f0:69:4e:f2:95:e2:da:43:2d:b7:a0:9e: a1:cb:f9:3a:1a:36:09:17:df:6c:3e:ed:93:fe:8c: 13:b2:70:44:44:92:98:b0:58:20:8f:fe:75:a1:96: 84:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A0:56:B2:ED:EE:4E:63:1D:49:DE:83:83:F3:B5:4F:AE:F5:0D:90 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cb:64:36:b4:6a:8e:fd:7d:59:5f:9a:5a:3d:4e:7a:24:29: ca:81:77:37:76:62:db:44:eb:6f:fe:a5:06:f3:dc:89:0a:1b: 8c:d8:b3:84:ef:3c:e2:43:a0:e0:c7:d2:5d:e8:6b:7f:42:f9: b2:43:9a:74:81:e8:bb:48:b1:ac:23:b3:ca:b5:56:9c:ae:96: 56:af:cb:c4:aa:09:7c:af:59:50:66:84:b1:96:c2:d6:d7:da: d6:df:82:1c:be:99:2d:09:48:f3:60:3f:4b:4f:e8:7e:12:81: 14:d9:6a:2c:93:94:7a:b3:60:2f:0e:3d:2a:ac:94:7d:f8:37: 06:ba:3d:1a:95:2e:bb:30:41:7b:51:75:31:e4:79:06:81:fa: 91:39:28:d7:2a:3e:29:7f:81:6b:23:c2:02:7a:c9:be:cd:e6: f5:e2:c3:39:05:6e:39:ff:ec:e6:d2:b3:f3:a6:c9:2a:af:ed: b0:ba:05:ff:96:ba:ea:2a:42:ad:b7:5c:cc:0d:50:a8:c2:92: e9:78:f1:ec:96:41:51:e6:f2:e4:f4:94:7d:c2:22:58:a1:96: 7d:c2:82:bd:34:ae:10:63:07:ec:68:e7:1b:0d:27:36:2a:63: 60:a3:bb:90:25:88:89:db:19:6a:82:36:54:09:9b:25:fd:04: 1a:f4:00:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwOTA4MTU1NTU0WhcNMjUwOTE1MTU1NTU0WjAYMRYwFAYD VQQDEw02OGJlZmM4YS05MTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/lzLWwYSXlyNiEuV/JqzNONM8Td3ZISC61Dy/6kHefTKSalHSxcmZ/j85aJ I3qZF4FyXtOwDISsQFsBzRs9xYU79zkNYo9fsDDabOuIQBUm677RDKKB0at6bq2r T3bD9anukG1VdK/65qyIFXfHqzcdLTdAGmVdDvAv1+zc6gUkWp294Mc5m5N4dptK X9h6xZIswOR6pZedQCEhdvxIiUdN6HJVLRNVFP8pgpBp0p1tjNZNxjwnOo6U2OKW PVl+deTK5qH336GZnpinn56wRpE/8lnwaU7yleLaQy23oJ6hy/k6GjYJF99sPu2T /owTsnBERJKYsFggj/51oZaEVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCgVrLt 7k5jHUneg4PztU+u9Q2QMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCby2Q2tGqO/X1ZX5paPU56JCnKgXc3dmLbROtv/qUG89yJChuM2LOE 7zziQ6Dgx9Jd6Gt/QvmyQ5p0gei7SLGsI7PKtVacrpZWr8vEqgl8r1lQZoSxlsLW 19rW34IcvpktCUjzYD9LT+h+EoEU2Wosk5R6s2AvDj0qrJR9+DcGuj0alS67MEF7 UXUx5HkGgfqROSjXKj4pf4FrI8ICesm+zeb14sM5BW45/+zm0rPzpskqr+2wugX/ lrrqKkKtt1zMDVCowpLpePHslkFR5vLk9JR9wiJYoZZ9woK9NK4QYwfsaOcbDSc2 KmNgo7uQJYiJ2xlqgjZUCZsl/QQa9ADF -----END CERTIFICATE-----Generated at Tue Sep 9 23:05:19 2025 by rpki-client