$ rpki-client -vvf rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft File: fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft (raw, json) Hash identifier: iaBhYL+ZV19Rezycbw6j/wbn04OJntqElJk8S/szz6w= Subject key identifier: C4:D8:62:38:E1:81:20:CE:9A:AC:A8:B7:EB:DD:2B:CD:97:D5:25:16 Authority key identifier: 7C:72:8B:97:04:29:D4:70:09:79:78:A1:6E:76:7B:21:DC:6E:3B:1F Certificate issuer: /CN=A914B610/serialNumber=7C728B970429D470097978A16E767B21DC6E3B1F Certificate serial: 3499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft Manifest number: 3498 Signing time: Fri 18 Jul 2025 15:16:00 +0000 Manifest this update: Fri 18 Jul 2025 15:16:00 +0000 Manifest next update: Fri 25 Jul 2025 15:16:00 +0000 Files and hashes: 1: fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl (hash: ZBfpKBsjGOR+7P1GmciGCGfNuakh2nXSOJJptmUyMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B610, serialNumber=7C728B970429D470097978A16E767B21DC6E3B1F Validity Not Before: Jul 18 15:16:00 2025 GMT Not After : Jul 25 15:16:00 2025 GMT Subject: CN=687a6530-025f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:19:79:14:18:c3:79:94:a2:a0:04:2f:34:6a: 60:85:62:d0:f2:c7:fd:09:40:2a:fc:94:a1:72:b5: aa:a2:92:28:b4:c1:9c:98:af:2d:fb:e1:3d:9a:10: ce:dc:dd:26:dc:15:50:42:89:29:88:1b:80:00:f6: 34:cc:07:13:ee:f6:21:7f:a6:3c:a7:02:18:f6:70: 3e:2d:bf:18:79:77:a0:d9:ff:4f:1b:b1:03:95:15: 90:fb:25:00:a4:c6:d8:c9:b8:37:48:f6:64:e8:3d: 53:32:32:96:87:27:f0:0b:c9:3c:40:06:b5:02:44: cb:97:ca:b8:2f:ea:f2:ff:ae:b6:04:3d:00:47:5f: f1:89:e5:a1:1c:7a:81:2e:fb:59:5c:55:57:e8:5c: e3:4a:51:81:2a:53:2d:a5:fe:04:ae:6d:6d:b9:26: 94:64:a5:72:db:58:be:51:14:33:bd:f2:65:09:9a: 15:d4:42:4a:f2:4d:b0:82:04:fd:6f:71:36:b2:48: ca:7b:1c:2f:85:8c:64:f7:57:a4:77:bb:bf:b0:87: 9c:c7:62:fa:c4:de:72:32:c6:d5:6d:37:af:6a:04: 87:a8:d0:36:e9:66:c4:8b:45:e4:c0:92:18:93:08: cb:68:b5:51:9b:a5:0e:ac:af:09:3e:49:ec:9d:f7: 74:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D8:62:38:E1:81:20:CE:9A:AC:A8:B7:EB:DD:2B:CD:97:D5:25:16 X509v3 Authority Key Identifier: keyid:7C:72:8B:97:04:29:D4:70:09:79:78:A1:6E:76:7B:21:DC:6E:3B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:0f:71:75:05:16:4b:ae:2d:9f:68:0f:c1:d9:58:df:e5:a4: 1e:17:98:dc:07:5d:96:bb:e2:14:df:7d:2f:86:e8:fb:ea:f8: 59:22:6d:bc:0f:e1:d9:ff:01:bc:c4:3b:fc:ad:19:ed:be:ab: 5a:65:f3:78:ac:b8:4e:22:1e:2f:26:21:d4:db:24:70:79:77: 49:f5:1f:91:58:a5:e9:2a:31:1e:ba:a3:5e:f4:e5:95:6c:66: 15:b4:2a:c7:4d:1c:86:90:c2:d7:70:b5:b3:63:81:b7:5e:b1: 91:8b:17:31:a3:85:05:99:b4:c1:80:2b:cf:f7:be:de:35:c3: 5c:96:1b:db:e5:f6:e6:dd:40:2e:21:1f:20:93:b3:b7:d4:03: b6:a5:da:3f:2f:ab:13:5a:c2:ae:d6:55:17:b0:b9:cf:e8:b4: 7e:2e:8c:de:0b:56:0c:27:7e:bc:2c:52:f7:ae:fb:d8:6b:de: c8:01:82:b1:38:f9:e7:6b:6d:9a:80:b4:a7:f1:bc:23:91:47: cb:87:f2:09:9c:15:11:e3:fe:e7:26:67:ab:26:2c:c2:c0:67: ce:60:a8:30:a9:9a:a3:6f:50:74:3e:7d:2b:5c:d4:7f:e3:8f: e2:69:8b:dc:ea:45:d2:ca:22:ee:f2:7c:3c:a3:25:a7:22:f9: 0c:08:f4:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2MTAxMTAvBgNVBAUTKDdDNzI4Qjk3MDQyOUQ0NzAwOTc5NzhBMTZFNzY3QjIx REM2RTNCMUYwHhcNMjUwNzE4MTUxNjAwWhcNMjUwNzI1MTUxNjAwWjAYMRYwFAYD VQQDEw02ODdhNjUzMC0wMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Rl5FBjDeZSioAQvNGpghWLQ8sf9CUAq/JShcrWqopIotMGcmK8t++E9mhDO 3N0m3BVQQokpiBuAAPY0zAcT7vYhf6Y8pwIY9nA+Lb8YeXeg2f9PG7EDlRWQ+yUA pMbYybg3SPZk6D1TMjKWhyfwC8k8QAa1AkTLl8q4L+ry/662BD0AR1/xieWhHHqB LvtZXFVX6FzjSlGBKlMtpf4Erm1tuSaUZKVy21i+URQzvfJlCZoV1EJK8k2wggT9 b3E2skjKexwvhYxk91ekd7u/sIecx2L6xN5yMsbVbTevagSHqNA26WbEi0XkwJIY kwjLaLVRm6UOrK8JPknsnfd0zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTYYjjh gSDOmqyot+vdK82X1SUWMB8GA1UdIwQYMBaAFHxyi5cEKdRwCXl4oW52eyHcbjsf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjYxMC80MzkzRUFFMDFE QTcxMUUyODQyRkRDQTAwOEIwMkNEMi9mSEtMbHdRcDFIQUplWGloYm5aN0lkeHVP eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIS0xsd1FwMUhBSmVYaWhiblo3SWR4dU94OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjYxMC80MzkzRUFFMDFEQTcxMUUyODQyRkRDQTAwOEIwMkNEMi9mSEtMbHdRcDFI QUplWGloYm5aN0lkeHVPeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeD3F1BRZLri2faA/B2Vjf5aQeF5jcB12Wu+IU330vhuj76vhZIm28 D+HZ/wG8xDv8rRntvqtaZfN4rLhOIh4vJiHU2yRweXdJ9R+RWKXpKjEeuqNe9OWV bGYVtCrHTRyGkMLXcLWzY4G3XrGRixcxo4UFmbTBgCvP977eNcNclhvb5fbm3UAu IR8gk7O31AO2pdo/L6sTWsKu1lUXsLnP6LR+LozeC1YMJ368LFL3rvvYa97IAYKx OPnna22agLSn8bwjkUfLh/IJnBUR4/7nJmerJizCwGfOYKgwqZqjb1B0Pn0rXNR/ 44/iaYvc6kXSyiLu8nw8oyWnIvkMCPT0 -----END CERTIFICATE-----Generated at Sun Jul 20 11:31:38 2025 by rpki-client