$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: fLjsZ8wO2FTgc/ByKrV52IfsOuctmfzWt4OfgVe1wyQ= Subject key identifier: DC:DC:79:B4:3F:EA:D1:E3:38:A5:75:47:6F:E8:7E:A1:09:75:B3:B1 Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 349E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 349E Signing time: Fri 18 Jul 2025 14:36:07 +0000 Manifest this update: Fri 18 Jul 2025 14:36:07 +0000 Manifest next update: Fri 25 Jul 2025 14:36:07 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: DLzB+7Lw6W+H421NzfkwJSbVTB+3Xa82TaCa/T60QOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13470 (0x349e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Jul 18 14:36:07 2025 GMT Not After : Jul 25 14:36:07 2025 GMT Subject: CN=687a5bd7-e009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:4f:f4:23:ab:1c:9b:77:fc:82:56:91:4e: 79:30:87:88:cd:e7:04:2b:3e:e0:fc:2e:17:bb:05: f4:51:43:91:52:5b:87:78:46:b1:44:06:68:84:d5: b1:bf:f7:2f:94:17:d8:c8:18:1d:2d:5f:e0:6d:60: 6c:3e:85:a1:4b:ff:39:5d:18:7b:90:4c:e0:f4:1b: a8:be:d5:8f:f0:9f:28:87:0a:eb:a9:88:6f:79:7e: 7f:a3:31:47:5e:19:da:77:ac:81:e1:34:56:75:0b: 1f:46:43:d3:6a:74:f8:8f:61:9e:9b:95:32:1c:c5: fb:ec:bf:5c:de:72:5c:da:81:c0:d6:49:89:e0:b1: 60:ce:ff:bd:96:80:b4:4e:ee:4d:a9:a2:ab:8b:2d: 80:ef:3f:99:32:56:9b:e4:0b:18:8f:ba:eb:8a:0b: 78:0d:b6:33:05:f8:23:de:30:76:a2:2f:70:43:e5: df:47:68:d0:75:be:d2:b5:32:c1:03:b4:8c:85:c0: 42:c9:85:38:75:c6:f5:55:4b:bd:67:28:e6:57:22: cd:0b:8b:30:59:16:d0:ad:32:1a:03:ed:7a:64:82: 43:a6:61:2f:36:0c:55:56:7a:82:bf:a8:85:2a:8c: 44:75:55:8a:25:c7:92:ba:c8:0a:a7:b9:f4:07:1e: 83:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DC:79:B4:3F:EA:D1:E3:38:A5:75:47:6F:E8:7E:A1:09:75:B3:B1 X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:bb:35:cc:db:50:90:3e:fc:6f:be:9e:43:a2:fe:d0:64:4d: 36:45:fd:4f:59:78:3e:f8:f9:e9:63:ca:8e:f6:de:8d:af:3d: 0e:43:f8:71:1a:64:d3:9f:5e:04:66:a7:07:6a:21:77:b3:df: 73:7a:a7:ef:7a:5f:88:b3:0d:fc:1a:86:10:d8:90:15:73:5a: c8:00:d5:59:16:89:2e:33:aa:5e:4f:fd:7c:b4:51:9c:54:75: ae:f8:a3:59:92:79:3f:29:f8:10:59:37:f8:49:5b:3f:73:1a: 3d:7c:ce:1d:ee:57:3c:5f:6d:44:ee:d5:ca:f2:0c:40:29:8e: aa:94:01:23:d0:2e:6e:46:46:2f:89:a1:1f:4f:1e:75:d9:9e: 33:25:27:89:8b:10:4c:25:c7:c7:ce:0a:66:38:49:c1:13:e2: ee:04:57:c8:8c:3c:e9:5c:06:32:a0:5c:b7:7d:17:63:3c:b0: 71:3b:b3:9d:ed:16:be:32:f1:f9:29:3e:3a:64:9b:b1:7b:67: 27:de:dc:e7:cf:6b:6a:7e:c8:9e:20:ff:36:a1:94:78:d8:93: a8:77:e0:24:9b:4e:1d:02:8d:46:d4:64:cc:21:9b:e7:6a:7c: 12:34:86:70:25:ed:15:71:35:28:fd:b3:5a:91:59:1a:8e:e6: 2c:12:ae:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjUwNzE4MTQzNjA3WhcNMjUwNzI1MTQzNjA3WjAYMRYwFAYD VQQDEw02ODdhNWJkNy1lMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIZP9COrHJt3/IJWkU55MIeIzecEKz7g/C4XuwX0UUORUluHeEaxRAZohNWx v/cvlBfYyBgdLV/gbWBsPoWhS/85XRh7kEzg9BuovtWP8J8ohwrrqYhveX5/ozFH Xhnad6yB4TRWdQsfRkPTanT4j2Gem5UyHMX77L9c3nJc2oHA1kmJ4LFgzv+9loC0 Tu5NqaKriy2A7z+ZMlab5AsYj7rrigt4DbYzBfgj3jB2oi9wQ+XfR2jQdb7StTLB A7SMhcBCyYU4dcb1VUu9ZyjmVyLNC4swWRbQrTIaA+16ZIJDpmEvNgxVVnqCv6iF KoxEdVWKJceSusgKp7n0Bx6DUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzcebQ/ 6tHjOKV1R2/ofqEJdbOxMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuuzXM21CQPvxvvp5Dov7QZE02Rf1PWXg++PnpY8qO9t6Nrz0OQ/hx GmTTn14EZqcHaiF3s99zeqfvel+Isw38GoYQ2JAVc1rIANVZFokuM6peT/18tFGc VHWu+KNZknk/KfgQWTf4SVs/cxo9fM4d7lc8X21E7tXK8gxAKY6qlAEj0C5uRkYv iaEfTx512Z4zJSeJixBMJcfHzgpmOEnBE+LuBFfIjDzpXAYyoFy3fRdjPLBxO7Od 7Ra+MvH5KT46ZJuxe2cn3tznz2tqfsieIP82oZR42JOod+Akm04dAo1G1GTMIZvn anwSNIZwJe0VcTUo/bNakVkajuYsEq4x -----END CERTIFICATE-----Generated at Sun Jul 20 07:03:41 2025 by rpki-client