$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: r5zdMJRXrGboZIRDcDJSOz9Orv2bOCcIMGPHR+VmmKY= Subject key identifier: 07:33:56:CD:D3:8F:2B:78:17:9E:F2:09:1D:20:F7:BE:4F:67:B1:95 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06B6 Signing time: Tue 22 Jul 2025 22:25:48 +0000 Manifest this update: Tue 22 Jul 2025 22:25:48 +0000 Manifest next update: Tue 29 Jul 2025 22:25:48 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: Hz59NE1CXW9vdnpZxMDug7ryZ31Xro2u0ReMcGsi/zI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Jul 22 22:25:48 2025 GMT Not After : Jul 29 22:25:48 2025 GMT Subject: CN=68800fec-dbf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:07:c3:85:01:44:1d:dc:21:e7:aa:6c:b6: a0:c2:51:43:79:cf:c0:db:ed:fb:5c:d7:e6:97:92: f1:37:93:2d:ee:05:a9:64:14:74:8d:09:08:46:29: 4f:be:6b:48:2d:fa:85:58:b0:0d:5f:f7:13:cf:2b: af:a8:e9:57:b5:db:a4:30:4a:4d:33:c0:fc:39:8c: 24:9f:eb:ab:cd:e4:84:e9:e8:b9:77:a7:12:3a:e1: 35:fb:88:e8:1b:95:78:9e:3d:81:01:d6:7e:b9:79: 6a:7d:99:1c:04:a0:20:16:07:18:08:28:fe:7c:84: 12:30:57:a9:5f:44:1d:1a:c9:55:60:ec:ad:00:e7: a7:0b:35:0f:2e:7d:68:bf:cd:d4:a4:c5:de:f4:a5: 3e:0c:dd:85:b7:80:2e:41:12:16:17:af:38:e6:01: d9:7c:37:aa:16:da:99:81:a6:12:9c:e0:15:d1:8d: c5:43:61:6f:52:cb:8f:d8:1c:d1:c3:9a:cc:c0:75: 7b:ad:0f:20:1b:c7:8c:e0:a9:e2:9e:8b:69:78:0f: 9b:74:a5:51:46:99:d7:f0:6f:05:c3:a5:a8:26:74: f9:8d:20:ac:c1:4c:70:7e:1a:a9:f6:96:17:b0:1f: 93:e2:4b:ea:47:0a:24:7f:77:ca:26:69:df:2a:39: 25:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:33:56:CD:D3:8F:2B:78:17:9E:F2:09:1D:20:F7:BE:4F:67:B1:95 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:8c:e8:16:ba:ce:bd:dc:6f:1c:06:e0:9b:e3:c5:d9:05:d4: 52:97:3b:33:52:76:63:63:34:62:08:bf:0f:e8:4d:a4:b7:56: e3:df:a0:5e:f3:c9:ea:1d:41:bc:70:b6:4d:cd:e3:47:9c:3d: 0f:0b:5a:55:12:03:79:55:a7:9a:cf:ad:31:90:10:15:fe:c1: 10:ae:0f:16:f5:8f:d0:cf:6e:3b:26:32:83:d4:0c:5c:a7:d0: 48:21:00:73:5a:e9:30:7e:cd:5c:dc:02:39:fd:a5:c5:3a:2f: e3:e8:d7:da:3b:64:2d:62:16:e6:20:d4:6c:5c:46:fa:40:56: 15:74:1d:1e:79:f5:4c:00:51:ba:3e:37:75:2f:1a:2d:2a:4f: 2f:9e:2e:dc:f0:29:2a:9d:1d:80:3d:69:6b:c1:ad:77:25:51: 71:d9:9a:76:eb:a2:2d:04:e7:39:2a:1f:b8:0d:f4:c5:f7:3b: 66:f3:b1:be:58:f4:57:58:af:07:26:a4:9f:77:64:e5:3c:0e: 77:da:dd:aa:ce:5c:b6:fe:7e:28:0c:3e:61:21:f5:f9:7f:f4: 2d:76:0d:ab:44:3c:7f:e1:ef:41:de:26:56:eb:58:af:ff:d0: 90:c9:21:91:47:8e:b8:eb:13:e2:8e:ee:4d:4f:1c:86:60:41: 24:eb:f0:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUwNzIyMjIyNTQ4WhcNMjUwNzI5MjIyNTQ4WjAYMRYwFAYD VQQDEw02ODgwMGZlYy1kYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApD0Hw4UBRB3cIeeqbLagwlFDec/A2+37XNfml5LxN5Mt7gWpZBR0jQkIRilP vmtILfqFWLANX/cTzyuvqOlXtdukMEpNM8D8OYwkn+urzeSE6ei5d6cSOuE1+4jo G5V4nj2BAdZ+uXlqfZkcBKAgFgcYCCj+fIQSMFepX0QdGslVYOytAOenCzUPLn1o v83UpMXe9KU+DN2Ft4AuQRIWF6845gHZfDeqFtqZgaYSnOAV0Y3FQ2FvUsuP2BzR w5rMwHV7rQ8gG8eM4KninotpeA+bdKVRRpnX8G8Fw6WoJnT5jSCswUxwfhqp9pYX sB+T4kvqRwokf3fKJmnfKjkliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAczVs3T jyt4F57yCR0g975PZ7GVMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7jOgWus693G8cBuCb48XZBdRSlzszUnZjYzRiCL8P6E2kt1bj36Be 88nqHUG8cLZNzeNHnD0PC1pVEgN5Vaeaz60xkBAV/sEQrg8W9Y/Qz247JjKD1Axc p9BIIQBzWukwfs1c3AI5/aXFOi/j6NfaO2QtYhbmINRsXEb6QFYVdB0eefVMAFG6 Pjd1LxotKk8vni7c8CkqnR2APWlrwa13JVFx2Zp266ItBOc5Kh+4DfTF9ztm87G+ WPRXWK8HJqSfd2TlPA532t2qzly2/n4oDD5hIfX5f/Qtdg2rRDx/4e9B3iZW61iv /9CQySGRR4646xPiju5NTxyGYEEk6/DV -----END CERTIFICATE-----Generated at Thu Jul 24 12:15:48 2025 by rpki-client