$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: xK/21b1KOIJeNw0J4eRrRouuFWa/Am/OH4YjyECDT2c= Subject key identifier: FA:0D:70:D4:74:FC:14:70:3B:DB:6F:A2:5A:BE:27:7A:03:B5:7C:42 Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 72 Signing time: Sat 19 Jul 2025 07:07:53 +0000 Manifest this update: Sat 19 Jul 2025 07:07:53 +0000 Manifest next update: Sat 26 Jul 2025 07:07:53 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: c5rhgBtzEmjiDJ5y0oVd7RVxr9Mfl+JZHwesWdJ0eBs=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Jul 19 07:07:53 2025 GMT Not After : Jul 26 07:07:53 2025 GMT Subject: CN=687b4449-49a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:ab:a9:e9:8e:74:f7:17:61:22:c5:58:8d: dd:9a:52:9a:28:73:c6:e3:91:1f:c3:ba:3e:3c:85: 2e:43:87:16:be:e8:52:ab:23:2c:2c:18:28:81:be: 9d:51:bd:ad:58:8c:63:68:4b:ca:fe:3a:9a:26:61: 19:86:28:df:e4:92:af:56:6a:84:94:a4:a0:be:18: 19:99:2f:b4:3e:83:ab:1a:a9:88:2a:35:50:9c:19: 8d:98:bc:82:0a:08:ec:fb:25:14:78:3a:04:01:fd: 8f:e3:02:73:99:bb:5f:a4:76:a8:ce:90:05:c4:6b: 77:7b:41:b4:54:7c:b4:8f:02:ed:25:4d:1b:12:f4: f2:42:1e:43:d9:db:23:ba:3e:a8:9f:e8:c2:6b:81: 1d:b4:e0:46:5f:81:09:bd:8d:5d:c4:65:85:47:74: 5a:b0:f3:8f:df:95:6e:c6:c2:cc:14:be:d9:c1:cf: 4a:ac:7a:b5:54:ef:07:e1:4e:f4:6f:ca:a0:6a:f3: d2:8e:d3:ef:44:17:e4:5b:2e:93:a6:03:a4:23:44: 74:1b:f1:6b:a1:48:fa:7d:a2:cf:9b:a7:b3:f1:96: 37:76:81:8d:51:68:85:88:ea:89:5b:da:a3:59:02: ef:61:a0:3a:70:4b:07:ab:5f:65:64:90:7f:19:31: fb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:0D:70:D4:74:FC:14:70:3B:DB:6F:A2:5A:BE:27:7A:03:B5:7C:42 X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:41:4e:ec:61:41:6b:c2:b6:33:30:e9:ce:37:36:aa:95:b5: b6:f2:3b:76:34:3e:58:27:ab:be:34:42:34:cb:71:33:ef:a8: 8a:27:79:dd:85:dc:ea:89:c8:fa:bb:3c:88:a1:07:90:ed:2a: 60:b2:a3:d2:62:3a:c1:ce:15:b8:96:89:51:e6:0e:8b:48:0b: c7:eb:73:3c:96:38:41:43:14:bd:12:d8:52:0b:53:21:38:19: b8:a3:13:ad:c9:0f:d6:00:e1:7b:91:7b:d5:5c:d5:58:91:c7: b6:5e:1e:47:d2:31:74:59:cb:72:3c:60:b6:5e:b1:ac:78:00: 91:53:4a:a9:4f:d9:0c:87:56:88:d1:52:4f:eb:ad:d3:2f:11: 3d:a6:61:89:76:ba:df:c1:8a:93:9b:33:db:da:f1:16:75:9d: 7c:b9:a6:5a:1c:bc:31:fd:ba:8c:2f:1d:79:40:64:fc:64:b5: 60:c5:80:9e:29:7c:05:42:59:15:82:49:d4:02:c2:f5:0b:a2: 27:c6:4c:3e:96:77:3a:11:b0:af:1a:78:8d:35:fb:6d:4f:8f: 9e:0b:62:c5:c0:e2:d4:d7:87:24:99:ec:29:cc:2a:70:77:1b: 69:f5:b1:aa:9e:a3:a4:d7:a4:e8:be:a4:88:41:11:fd:68:aa: c2:0d:69:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzEzMjExMC8GA1UEBRMoODVFOTk5QzIyQkVFMDFDMzI2NEQzRDIyNjc1ODIxMDky RkZGRDAyQzAeFw0yNTA3MTkwNzA3NTNaFw0yNTA3MjYwNzA3NTNaMBgxFjAUBgNV BAMTDTY4N2I0NDQ5LTQ5YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyvqup6Y509xdhIsVYjd2aUpooc8bjkR/Duj48hS5Dhxa+6FKrIywsGCiBvp1R va1YjGNoS8r+OpomYRmGKN/kkq9WaoSUpKC+GBmZL7Q+g6saqYgqNVCcGY2YvIIK COz7JRR4OgQB/Y/jAnOZu1+kdqjOkAXEa3d7QbRUfLSPAu0lTRsS9PJCHkPZ2yO6 Pqif6MJrgR204EZfgQm9jV3EZYVHdFqw84/flW7GwswUvtnBz0qserVU7wfhTvRv yqBq89KO0+9EF+RbLpOmA6QjRHQb8WuhSPp9os+bp7Pxljd2gY1RaIWI6olb2qNZ Au9hoDpwSwerX2VkkH8ZMftXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+g1w1HT8 FHA722+iWr4negO1fEIwHwYDVR0jBBgwFoAUhemZwivuAcMmTT0iZ1ghCS//0Cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDMTMyL0M0RkExNEY4Qjgw QzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBD dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVtWndpdnVBY01tVFQwaVoxZ2hDU19fMEN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD MTMyL0M0RkExNEY4QjgwQzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNN bVRUMGlaMWdoQ1NfXzBDdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH1BTuxhQWvCtjMw6c43NqqVtbbyO3Y0Plgnq740QjTLcTPvqIoned2F 3OqJyPq7PIihB5DtKmCyo9JiOsHOFbiWiVHmDotIC8frczyWOEFDFL0S2FILUyE4 GbijE63JD9YA4XuRe9Vc1ViRx7ZeHkfSMXRZy3I8YLZesax4AJFTSqlP2QyHVojR Uk/rrdMvET2mYYl2ut/BipObM9va8RZ1nXy5plocvDH9uowvHXlAZPxktWDFgJ4p fAVCWRWCSdQCwvULoifGTD6WdzoRsK8aeI01+21Pj54LYsXA4tTXhySZ7CnMKnB3 G2n1saqeo6TXpOi+pIhBEf1oqsINaWw= -----END CERTIFICATE-----Generated at Mon Jul 21 07:29:57 2025 by rpki-client