$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: duxL9qOLyPdBm70qHqpkYQjif2KuDlLlEUJfGTH18HU= Subject key identifier: 61:51:94:27:80:EC:B5:5A:CE:BC:93:08:C0:3B:63:DA:B3:71:12:1A Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 5060 Signing time: Fri 18 Jul 2025 16:31:14 +0000 Manifest this update: Fri 18 Jul 2025 16:31:14 +0000 Manifest next update: Fri 25 Jul 2025 16:31:14 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: CjWdD6AaHY2EblS/Lx4x6eLwoJ3AC/tjHiYws1L0TZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: Jul 18 16:31:14 2025 GMT Not After : Jul 25 16:31:14 2025 GMT Subject: CN=687a76d2-77ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:c9:10:04:ce:7f:e7:32:ed:12:ea:64:63: f3:c6:d6:8d:75:f2:67:cf:d8:b6:5a:f4:93:9a:fe: 25:f7:3c:97:27:5e:e8:b9:20:d0:c4:bb:11:22:76: 45:92:12:55:12:c6:e2:f5:c8:2a:bf:a8:73:1b:b5: c4:47:38:35:a6:3c:24:42:c1:46:39:0e:c9:f9:a9: a0:78:f0:b9:ee:1d:42:d1:90:9c:47:ae:9e:4f:02: e5:f4:10:1e:57:fb:46:b9:55:83:88:18:e6:04:0c: 7c:88:c4:a5:cc:fe:0f:04:e4:61:96:91:00:b8:7e: aa:f6:7b:6d:e3:27:a0:f5:10:c6:e8:43:ca:53:6f: 0c:a6:2e:a7:49:82:b7:15:f3:14:d7:9c:a6:91:30: f2:00:6f:72:ce:a7:45:a2:98:72:b0:cc:9a:46:4b: b4:dd:d2:71:1a:ac:8a:d0:6d:bc:d1:4e:de:8a:63: 68:ff:a2:75:b6:74:58:4e:2c:7f:09:94:9d:be:2a: 2d:82:ae:f2:0b:04:22:6c:91:9c:bb:86:84:97:e9: 5b:d1:df:61:45:a3:81:79:3f:95:82:0b:45:2e:e4: 54:26:0f:49:25:4e:0b:d0:80:ff:98:48:f1:8d:e5: 3b:42:73:39:b5:4e:5b:bb:70:07:ab:4c:23:27:82: 7c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:51:94:27:80:EC:B5:5A:CE:BC:93:08:C0:3B:63:DA:B3:71:12:1A X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:91:9e:92:4c:a6:9d:15:2e:af:32:fe:4e:9e:2c:c0:01:6e: da:7d:87:2f:fe:fa:16:2e:ec:6b:30:13:4b:34:c6:4e:ba:05: 9c:2f:26:49:05:0e:b9:9a:f0:0b:97:ed:1b:96:d3:d0:cd:5f: c2:94:6e:35:4e:59:8b:91:8c:35:47:c7:39:01:f6:39:6b:12: 6b:7b:eb:94:76:44:ab:d5:36:7a:5e:ab:27:40:fd:c9:c8:dd: 0c:76:cf:e8:0b:98:88:3c:c2:2f:71:70:ac:a5:d0:64:38:05: 73:49:e0:b6:a8:94:9a:43:25:6d:5e:95:68:0d:a4:e4:24:da: 23:70:3e:dd:16:a1:d9:15:3d:a5:2e:b7:3f:5c:19:95:ba:93: 2a:af:d0:7f:ce:1b:85:4e:ed:36:a0:e4:74:0c:0d:bd:c9:cf: 6e:9d:ce:49:d1:5e:f0:62:62:41:72:a9:a3:63:44:68:46:ed: b2:11:12:d1:45:12:c2:0c:8e:3f:0e:88:2e:95:49:99:8b:17: e7:33:5f:5a:8e:52:5d:95:d8:3b:ba:be:3b:35:b7:d3:9f:d1: 43:16:44:85:52:20:4f:4a:fd:3b:90:ed:49:b8:d0:46:be:50: c8:02:26:66:5e:e1:88:4f:05:e8:bf:94:96:b9:db:80:c5:ef: e6:1a:12:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA3MTgxNjMxMTRaFw0yNTA3MjUxNjMxMTRaMBgxFjAUBgNV BAMTDTY4N2E3NmQyLTc3Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3pskQBM5/5zLtEupkY/PG1o118mfP2LZa9JOa/iX3PJcnXui5INDEuxEidkWS ElUSxuL1yCq/qHMbtcRHODWmPCRCwUY5Dsn5qaB48LnuHULRkJxHrp5PAuX0EB5X +0a5VYOIGOYEDHyIxKXM/g8E5GGWkQC4fqr2e23jJ6D1EMboQ8pTbwymLqdJgrcV 8xTXnKaRMPIAb3LOp0WimHKwzJpGS7Td0nEarIrQbbzRTt6KY2j/onW2dFhOLH8J lJ2+Ki2CrvILBCJskZy7hoSX6VvR32FFo4F5P5WCC0Uu5FQmD0klTgvQgP+YSPGN 5TtCczm1Tlu7cAerTCMngnxJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYVGUJ4Ds tVrOvJMIwDtj2rNxEhowHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKaRnpJMpp0VLq8y/k6eLMABbtp9hy/++hYu7GswE0s0xk66BZwvJkkF Drma8AuX7RuW09DNX8KUbjVOWYuRjDVHxzkB9jlrEmt765R2RKvVNnpeqydA/cnI 3Qx2z+gLmIg8wi9xcKyl0GQ4BXNJ4LaolJpDJW1elWgNpOQk2iNwPt0WodkVPaUu tz9cGZW6kyqv0H/OG4VO7Tag5HQMDb3Jz26dzknRXvBiYkFyqaNjRGhG7bIREtFF EsIMjj8OiC6VSZmLF+czX1qOUl2V2Du6vjs1t9Of0UMWRIVSIE9K/TuQ7Um40Ea+ UMgCJmZe4YhPBei/lJa524DF7+YaEok= -----END CERTIFICATE-----Generated at Sun Jul 20 07:30:07 2025 by rpki-client