$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft File: MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft (raw, json) Hash identifier: Tn7xEc/b48B77WVqfqlD9icRUvKqHeBbKOgY1cvy2Fk= Subject key identifier: 50:BB:CE:15:DF:FE:7E:85:67:12:D0:2D:E2:3D:3F:2F:B6:33:E0:B9 Authority key identifier: 30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D Certificate issuer: /CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Certificate serial: 34A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft Manifest number: 34A0 Signing time: Sun 20 Jul 2025 15:14:00 +0000 Manifest this update: Sun 20 Jul 2025 15:14:00 +0000 Manifest next update: Sun 27 Jul 2025 15:14:00 +0000 Files and hashes: 1: MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl (hash: JFQRjPa+788dBVkIxR7JvQbLQyjXwcXrBqSyY9EYtzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13472 (0x34a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F3C, serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Validity Not Before: Jul 20 15:14:00 2025 GMT Not After : Jul 27 15:14:00 2025 GMT Subject: CN=687d07b8-ff58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:d4:1b:3b:b5:33:75:a7:d8:7d:85:b4:55: b4:66:d0:57:e2:dd:d5:58:03:58:5b:94:09:d1:4f: 0c:2c:f4:93:25:6f:17:50:6b:f3:89:b8:33:cf:4d: b4:19:46:3f:91:e3:fb:28:82:aa:b6:0f:75:57:1a: fe:7d:04:ad:53:28:76:e5:8f:4e:57:49:e7:ee:f4: 28:cd:52:64:06:79:6c:47:c4:9c:8e:2c:c2:6f:4b: 36:e9:4d:7d:e6:45:f2:4f:7e:6c:78:d6:76:8c:5d: a3:5f:c4:fb:8d:18:59:dd:43:d5:69:b4:1c:e8:a4: 1e:bb:f3:42:fe:ac:e2:fc:cd:43:fc:77:fc:97:c4: e4:b5:74:71:b4:03:f3:ad:56:c6:1a:93:92:3a:1f: df:a6:c9:e2:63:02:06:81:0b:d4:64:e2:45:0c:c9: b2:4f:35:78:34:3a:bd:b9:dc:0b:e6:76:e1:82:ae: f7:e4:e4:4f:1d:cd:1c:94:e6:36:2e:72:89:31:f3: 61:37:a5:96:d4:b3:71:d3:16:ac:53:8b:2d:70:53: c0:28:36:2a:cd:2c:f1:77:64:c6:f8:f1:92:ec:81: 1a:0c:4f:c6:61:57:cb:ac:11:0e:4a:a6:7c:53:08: c3:08:76:a0:03:9f:c8:98:19:56:e0:04:45:d3:e6: f3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BB:CE:15:DF:FE:7E:85:67:12:D0:2D:E2:3D:3F:2F:B6:33:E0:B9 X509v3 Authority Key Identifier: keyid:30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:3a:d8:1d:e5:63:11:f0:dc:02:90:e7:c1:85:ac:1d:de:8b: 5b:a5:5d:15:74:6a:8f:2d:27:16:17:fc:1e:97:d5:fc:0b:71: d2:f9:ad:4e:22:98:33:0f:69:df:ac:56:f1:ea:32:06:b1:9f: 6e:42:88:ad:35:75:3c:9b:77:cb:16:a9:5f:76:ca:7a:aa:01: 45:4a:01:80:9c:37:ec:a7:55:4a:ac:4a:a6:71:64:2e:8a:19: 79:41:34:19:1f:de:97:66:0d:a6:db:59:6c:2f:fd:68:b4:f8: 3f:b2:ee:4b:34:1f:db:b3:d5:1c:a2:4e:9c:bd:3b:0f:84:98: 54:ed:c4:5c:fa:ab:29:35:0a:f9:98:6b:f3:36:74:5e:45:0c: 27:9d:c5:e4:89:2f:0c:38:7e:ee:d1:10:66:1e:89:27:58:97: 30:f2:ea:4d:14:f3:47:12:79:79:26:54:ff:38:49:62:84:a4: 5c:72:08:4a:69:2e:3f:5c:be:ba:ed:a8:cf:cb:46:62:f1:9e: fc:ef:18:43:72:cc:fe:50:a5:77:41:83:9d:80:88:93:cc:0f: 0f:75:f6:f4:8b:ad:4f:6d:0d:07:45:d2:8e:39:0d:81:9f:2d: dc:ca:1a:1d:1f:d9:6a:df:5a:16:1c:e8:40:74:2c:9c:2e:cd: ea:75:e7:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGM0MxMTAvBgNVBAUTKDMwN0FENDVFMDFCODQ3OUZBMjI4QTEyM0RFN0FGQUE1 RDE5N0MxN0QwHhcNMjUwNzIwMTUxNDAwWhcNMjUwNzI3MTUxNDAwWjAYMRYwFAYD VQQDEw02ODdkMDdiOC1mZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub/UGzu1M3Wn2H2FtFW0ZtBX4t3VWANYW5QJ0U8MLPSTJW8XUGvzibgzz020 GUY/keP7KIKqtg91Vxr+fQStUyh25Y9OV0nn7vQozVJkBnlsR8ScjizCb0s26U19 5kXyT35seNZ2jF2jX8T7jRhZ3UPVabQc6KQeu/NC/qzi/M1D/Hf8l8TktXRxtAPz rVbGGpOSOh/fpsniYwIGgQvUZOJFDMmyTzV4NDq9udwL5nbhgq735ORPHc0clOY2 LnKJMfNhN6WW1LNx0xasU4stcFPAKDYqzSzxd2TG+PGS7IEaDE/GYVfLrBEOSqZ8 UwjDCHagA5/ImBlW4ARF0+bzcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFC7zhXf /n6FZxLQLeI9Py+2M+C5MB8GA1UdIwQYMBaAFDB61F4BuEefoiihI956+qXRl8F9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYzQy84QTU1QTZBNDFE QTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1LWlLS0VqM25yNnBkR1h3 WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01IclVYZ0c0UjUtaUtLRWozbnI2cGRHWHdYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYzQy84QTU1QTZBNDFEQTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1 LWlLS0VqM25yNnBkR1h3WDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbOtgd5WMR8NwCkOfBhawd3otbpV0VdGqPLScWF/wel9X8C3HS+a1O IpgzD2nfrFbx6jIGsZ9uQoitNXU8m3fLFqlfdsp6qgFFSgGAnDfsp1VKrEqmcWQu ihl5QTQZH96XZg2m21lsL/1otPg/su5LNB/bs9Ucok6cvTsPhJhU7cRc+qspNQr5 mGvzNnReRQwnncXkiS8MOH7u0RBmHoknWJcw8upNFPNHEnl5JlT/OElihKRccghK aS4/XL667ajPy0Zi8Z787xhDcsz+UKV3QYOdgIiTzA8Pdfb0i61PbQ0HRdKOOQ2B ny3cyhodH9lq31oWHOhAdCycLs3qdecS -----END CERTIFICATE-----Generated at Mon Jul 21 05:45:20 2025 by rpki-client