$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft File: s-hiKkEGGf2XI_nR28U1fhX6fcw.mft (raw, json) Hash identifier: XWtmEE8CfpnCd3dxZkXLUNA9wz7urQj1Ig3cvAoxc9I= Subject key identifier: 5E:86:6F:8F:02:58:79:17:74:3C:95:1D:57:8A:D8:F8:6C:89:55:C6 Authority key identifier: B3:E8:62:2A:41:06:19:FD:97:23:F9:D1:DB:C5:35:7E:15:FA:7D:CC Certificate issuer: /CN=A91A85CF/serialNumber=B3E8622A410619FD9723F9D1DBC5357E15FA7DCC Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft Manifest number: 65 Signing time: Sat 19 Jul 2025 07:13:23 +0000 Manifest this update: Sat 19 Jul 2025 07:13:23 +0000 Manifest next update: Sat 26 Jul 2025 07:13:23 +0000 Files and hashes: 1: s-hiKkEGGf2XI_nR28U1fhX6fcw.crl (hash: cP0V593AVMrjFv2J0J8VJ4/eHT/Anae2sHTkKCMPOrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.crl rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85CF, serialNumber=B3E8622A410619FD9723F9D1DBC5357E15FA7DCC Validity Not Before: Jul 19 07:13:23 2025 GMT Not After : Jul 26 07:13:23 2025 GMT Subject: CN=687b4593-28fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:af:54:9a:e6:2e:e7:50:24:2f:6f:68:81: a3:55:98:03:0c:62:7c:3f:4c:80:88:f0:58:14:88: fa:cd:2e:ee:e6:4e:65:d9:30:fa:16:f5:18:f3:56: 8b:2a:e1:ee:ea:6d:55:41:32:46:4b:ee:a1:5e:7e: e4:8c:cc:97:c5:22:0b:e7:b4:0d:9c:5a:57:19:8f: 90:a4:1b:4f:5e:8d:85:ba:2b:52:30:17:68:ef:05: 46:4a:e2:e8:b9:a9:34:5e:1e:df:58:70:7f:9c:c5: 28:73:57:3e:06:9f:bc:7a:e6:ed:df:d1:4e:24:e3: 08:1b:98:56:02:47:b2:9f:11:b2:65:7d:00:86:34: 2e:08:48:70:8f:85:0c:6c:f8:7e:e2:c2:27:1c:30: 7f:7f:69:ba:fb:67:3b:c6:72:14:ce:b5:29:91:84: 22:08:69:27:ad:53:e5:66:4a:31:84:88:87:48:ca: 70:d8:5a:a1:68:16:6a:87:27:ff:77:b0:6f:5f:43: ea:0e:59:eb:fb:46:f8:d2:cd:12:85:f9:b4:1c:41: c4:a0:b7:0d:b7:a5:21:fd:36:48:11:87:a4:ee:be: bf:54:f0:fe:d3:0c:46:87:94:50:ff:a4:96:d7:07: 3d:8e:1d:58:cc:9c:8b:b8:8c:8f:6c:c5:3e:13:69: 09:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:86:6F:8F:02:58:79:17:74:3C:95:1D:57:8A:D8:F8:6C:89:55:C6 X509v3 Authority Key Identifier: keyid:B3:E8:62:2A:41:06:19:FD:97:23:F9:D1:DB:C5:35:7E:15:FA:7D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:7a:b1:61:90:38:39:f8:2b:9a:ef:4c:08:20:fb:e3:83:bc: 85:96:91:d8:eb:6b:79:0c:89:90:22:2a:c6:63:14:20:76:88: 77:5d:b9:b5:7a:ce:4c:a0:47:1a:c4:07:d9:53:4f:bb:13:59: 84:17:fe:b8:c5:33:49:fc:a4:8f:c5:eb:87:aa:0b:97:c9:78: 67:5b:70:70:ca:c7:64:1c:2b:54:25:05:89:d4:0d:ae:5e:78: 76:15:12:3f:8d:8e:6e:91:63:42:74:73:a6:37:e2:9c:fd:d3: 33:c2:48:a8:b1:64:a8:0c:4c:2d:19:e7:1a:fb:f9:bc:87:68: d2:f6:d4:97:fd:d4:f3:4c:b2:7c:04:0c:aa:29:15:25:51:62: d0:29:13:a5:1a:e3:cf:7c:df:a4:de:a1:12:67:75:d9:9e:7a: fe:17:bc:92:5f:3f:19:5a:8b:77:55:aa:84:18:44:af:07:5f: 92:83:dd:f9:ad:35:29:6f:39:74:8d:2c:e5:a9:22:c8:81:36: 27:48:94:a4:72:fc:a5:93:f1:8b:7c:96:19:5b:2d:6c:6b:eb: 55:45:b4:e3:03:d9:fd:d6:19:42:38:e8:c6:be:a9:57:2e:d7: f0:1b:39:49:65:70:cb:c9:66:da:f8:a5:11:b6:c9:70:7d:3a: ad:24:94:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODVDRjExMC8GA1UEBRMoQjNFODYyMkE0MTA2MTlGRDk3MjNGOUQxREJDNTM1N0Ux NUZBN0RDQzAeFw0yNTA3MTkwNzEzMjNaFw0yNTA3MjYwNzEzMjNaMBgxFjAUBgNV BAMTDTY4N2I0NTkzLTI4ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9l69UmuYu51AkL29ogaNVmAMMYnw/TICI8FgUiPrNLu7mTmXZMPoW9RjzVosq 4e7qbVVBMkZL7qFefuSMzJfFIgvntA2cWlcZj5CkG09ejYW6K1IwF2jvBUZK4ui5 qTReHt9YcH+cxShzVz4Gn7x65u3f0U4k4wgbmFYCR7KfEbJlfQCGNC4ISHCPhQxs +H7iwiccMH9/abr7ZzvGchTOtSmRhCIIaSetU+VmSjGEiIdIynDYWqFoFmqHJ/93 sG9fQ+oOWev7RvjSzRKF+bQcQcSgtw23pSH9NkgRh6Tuvr9U8P7TDEaHlFD/pJbX Bz2OHVjMnIu4jI9sxT4TaQljAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXoZvjwJY eRd0PJUdV4rY+GyJVcYwHwYDVR0jBBgwFoAUs+hiKkEGGf2XI/nR28U1fhX6fcww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4NUNGL0YwMDA5Nzc0Q0FF MjExRUZBRjhGMTAxMUM0RjlBRTAyL3MtaGlLa0VHR2YyWElfblIyOFUxZmhYNmZj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcy1oaUtrRUdHZjJYSV9uUjI4VTFmaFg2ZmN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 NUNGL0YwMDA5Nzc0Q0FFMjExRUZBRjhGMTAxMUM0RjlBRTAyL3MtaGlLa0VHR2Yy WElfblIyOFUxZmhYNmZjdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMx6sWGQODn4K5rvTAgg++ODvIWWkdjra3kMiZAiKsZjFCB2iHddubV6 zkygRxrEB9lTT7sTWYQX/rjFM0n8pI/F64eqC5fJeGdbcHDKx2QcK1QlBYnUDa5e eHYVEj+Njm6RY0J0c6Y34pz90zPCSKixZKgMTC0Z5xr7+byHaNL21Jf91PNMsnwE DKopFSVRYtApE6Ua489836TeoRJnddmeev4XvJJfPxlai3dVqoQYRK8HX5KD3fmt NSlvOXSNLOWpIsiBNidIlKRy/KWT8Yt8lhlbLWxr61VFtOMD2f3WGUI46Ma+qVcu 1/AbOUllcMvJZtr4pRG2yXB9Oq0klKo= -----END CERTIFICATE-----Generated at Mon Jul 21 07:16:07 2025 by rpki-client