$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft File: FzXLqe4W_oXz0oP6W7lHnZryzIY.mft (raw, json) Hash identifier: Cid09FlIH0o+AR/XMfL/bTuUMBkJZLrOxgDjsLS20Wc= Subject key identifier: 92:1E:70:69:24:67:85:40:2E:0A:B4:A8:F7:34:90:BD:B0:2C:6E:F0 Authority key identifier: 17:35:CB:A9:EE:16:FE:85:F3:D2:83:FA:5B:B9:47:9D:9A:F2:CC:86 Certificate issuer: /CN=A91757CB/serialNumber=1735CBA9EE16FE85F3D283FA5BB9479D9AF2CC86 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft Manifest number: EF Signing time: Mon 21 Jul 2025 05:25:10 +0000 Manifest this update: Mon 21 Jul 2025 05:25:09 +0000 Manifest next update: Mon 28 Jul 2025 05:25:09 +0000 Files and hashes: 1: FzXLqe4W_oXz0oP6W7lHnZryzIY.crl (hash: UAHGSryEimsIPMcinBT3FzqTBON98X1LJgMiGw3FHzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.crl rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB, serialNumber=1735CBA9EE16FE85F3D283FA5BB9479D9AF2CC86 Validity Not Before: Jul 21 05:25:09 2025 GMT Not After : Jul 28 05:25:09 2025 GMT Subject: CN=687dcf35-3fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:22:9d:0d:86:62:bf:8e:4d:d1:76:18:ff:6e: 8d:9c:c7:33:87:8f:33:95:29:69:68:8c:2a:64:6f: e3:aa:dd:61:4b:76:9f:c6:55:51:d8:16:9a:34:87: 6a:5f:19:21:84:4f:15:44:5a:7c:a1:0d:a6:82:dc: 9e:b5:25:3a:5d:bb:37:8d:cf:2e:b3:b5:18:af:db: 4a:0d:2e:f9:98:b1:18:0e:a4:86:75:e7:8d:f7:33: 77:44:0e:07:66:e0:36:c6:c3:d6:92:c3:aa:ef:af: 4c:ec:65:56:e0:36:f8:24:3d:c7:56:65:7a:2e:4c: 25:e1:4f:86:47:e3:ad:88:c5:f7:d4:62:4b:16:5f: ce:8e:24:af:9f:2e:8d:73:9f:2a:99:b2:a7:d1:38: 3b:c4:59:f0:67:bf:a3:9d:04:06:e4:7f:c9:8e:fa: 66:aa:7e:02:1f:8b:7f:b8:c4:eb:1a:a1:42:9c:2b: 35:73:17:7f:9a:a1:52:c4:cd:31:6c:85:9a:e8:c3: 69:44:6e:21:c0:1a:71:31:ae:e1:1a:5b:a8:c1:80: 22:db:48:30:3a:55:7e:4f:de:80:de:9a:cc:43:b5: c3:82:5b:fa:da:bb:95:ce:71:d9:07:05:94:bd:ee: 25:9a:62:f2:dc:2b:ce:59:ec:97:c9:f9:b7:f7:33: 3a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1E:70:69:24:67:85:40:2E:0A:B4:A8:F7:34:90:BD:B0:2C:6E:F0 X509v3 Authority Key Identifier: keyid:17:35:CB:A9:EE:16:FE:85:F3:D2:83:FA:5B:B9:47:9D:9A:F2:CC:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:59:88:cd:61:3d:c6:34:b3:77:fe:83:01:17:33:7d:ad:26: f1:ed:b2:6a:f2:60:ed:07:9a:7c:2f:44:1c:93:12:04:e3:85: 6f:48:5d:d8:9b:99:97:b4:4e:a3:a6:89:84:e8:fa:a4:26:ff: bf:d8:17:b3:9a:e6:45:44:e7:d0:39:c2:db:dc:d4:c1:db:93: 13:af:76:40:b2:f2:e8:e2:31:38:dc:0e:bc:0f:76:b3:10:20: 5a:de:53:e4:b0:da:ec:7d:61:43:b5:3b:aa:bd:6b:0b:05:f0: aa:1e:41:f5:a1:48:76:40:31:76:e1:d6:de:e2:e0:f9:96:89: 82:21:e6:84:9a:74:ab:e8:61:15:ca:6a:69:38:88:06:55:8d: 7c:61:fa:3a:a1:b6:80:f6:96:23:42:be:85:d9:87:15:3e:39: b1:a3:d4:01:ae:11:b0:fa:6a:1b:89:6f:cd:e4:b6:b5:2d:5a: 17:e8:0d:40:5b:cd:63:82:f0:48:f9:e9:5f:0c:e1:d1:a7:ea: 4f:56:1d:65:a4:7c:ff:f5:7a:01:15:75:50:05:48:5d:d3:6e: 85:8d:e9:70:aa:2b:aa:bf:8f:16:15:39:ed:36:b5:bb:d8:5b: bc:18:b2:4f:a0:af:7c:d3:2d:0d:93:ea:e8:31:4d:d3:74:cb: 03:09:3e:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3Q0IxMTAvBgNVBAUTKDE3MzVDQkE5RUUxNkZFODVGM0QyODNGQTVCQjk0NzlE OUFGMkNDODYwHhcNMjUwNzIxMDUyNTA5WhcNMjUwNzI4MDUyNTA5WjAYMRYwFAYD VQQDEw02ODdkY2YzNS0zZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CKdDYZiv45N0XYY/26NnMczh48zlSlpaIwqZG/jqt1hS3afxlVR2BaaNIdq XxkhhE8VRFp8oQ2mgtyetSU6Xbs3jc8us7UYr9tKDS75mLEYDqSGdeeN9zN3RA4H ZuA2xsPWksOq769M7GVW4Db4JD3HVmV6Lkwl4U+GR+OtiMX31GJLFl/OjiSvny6N c58qmbKn0Tg7xFnwZ7+jnQQG5H/Jjvpmqn4CH4t/uMTrGqFCnCs1cxd/mqFSxM0x bIWa6MNpRG4hwBpxMa7hGluowYAi20gwOlV+T96A3prMQ7XDglv62ruVznHZBwWU ve4lmmLy3CvOWeyXyfm39zM6BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIecGkk Z4VALgq0qPc0kL2wLG7wMB8GA1UdIwQYMBaAFBc1y6nuFv6F89KD+lu5R52a8syG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTdDQi80RUQyMTJEQ0Yy RjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9GelhMcWU0V19vWHowb1A2VzdsSG5acnl6 SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z6WExxZTRXX29YejBvUDZXN2xIblpyeXpJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80RUQyMTJEQ0YyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9GelhMcWU0V19v WHowb1A2VzdsSG5acnl6SVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkWYjNYT3GNLN3/oMBFzN9rSbx7bJq8mDtB5p8L0QckxIE44VvSF3Y m5mXtE6jpomE6PqkJv+/2BezmuZFROfQOcLb3NTB25MTr3ZAsvLo4jE43A68D3az ECBa3lPksNrsfWFDtTuqvWsLBfCqHkH1oUh2QDF24dbe4uD5lomCIeaEmnSr6GEV ymppOIgGVY18Yfo6obaA9pYjQr6F2YcVPjmxo9QBrhGw+mobiW/N5La1LVoX6A1A W81jgvBI+elfDOHRp+pPVh1lpHz/9XoBFXVQBUhd026Fjelwqiuqv48WFTntNrW7 2Fu8GLJPoK980y0Nk+roMU3TdMsDCT6n -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:04 2025 by rpki-client