$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: HWrJdbX5WqTUVSyN3nZwNqv+Z/BX+XXvW4sP39o3alw= Subject key identifier: FE:9E:0A:96:69:D8:2B:51:20:E0:B7:F8:AC:A2:13:D5:C1:C9:C1:DE Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0FCE Signing time: Sun 20 Jul 2025 17:51:33 +0000 Manifest this update: Sun 20 Jul 2025 17:51:32 +0000 Manifest next update: Sun 27 Jul 2025 17:51:32 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: SQqdjIB16VhI/0vKjzlJ6BXSekttj+FmnW26R+Bnbzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3633 (0xe31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Jul 20 17:51:32 2025 GMT Not After : Jul 27 17:51:32 2025 GMT Subject: CN=687d2ca5-eeb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:54:ee:fc:50:99:7c:ce:15:37:bb:6a:55: 21:73:53:55:a0:c6:28:32:f9:2b:6c:20:dd:6d:f1: 0f:7e:80:9f:ad:53:06:bb:e7:75:87:f7:e2:fe:67: 56:19:87:29:ce:85:77:e7:37:80:7d:e0:37:66:21: 2b:09:7c:bf:d4:ea:8e:a6:e9:c2:a5:a3:58:d5:52: 96:05:ef:b4:b5:36:2d:f2:ed:44:87:8b:b4:ec:5c: 8d:1e:76:d1:d1:84:de:4c:28:37:6b:52:6a:9b:b7: ea:d2:6a:a2:f0:ff:d0:d2:56:a4:c3:bb:a5:03:14: 1a:22:87:50:99:58:24:ae:ab:8f:79:83:6f:28:7c: df:01:95:b2:00:11:b4:8f:fe:16:85:08:09:df:e3: 90:da:fe:e0:09:90:37:6c:b3:28:24:49:67:20:88: aa:01:0a:79:5a:e8:75:12:de:84:b6:27:d7:e5:11: 48:43:f2:b6:8d:1f:e1:2b:10:d1:b7:c4:81:df:97: cc:6e:74:c6:8b:16:68:5c:94:c5:27:91:9b:aa:8a: ea:32:53:5e:ae:a2:61:3a:64:d8:b5:92:7b:bb:79: 70:0d:00:a4:67:d8:55:7f:ac:ce:ca:24:b7:84:57: 4d:b1:c7:d2:f2:09:ee:3e:45:e9:8f:cc:37:bb:39: 89:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:9E:0A:96:69:D8:2B:51:20:E0:B7:F8:AC:A2:13:D5:C1:C9:C1:DE X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e3:a1:71:60:2f:6f:e3:89:50:cc:f4:60:e1:d4:39:95:6a: ff:a3:5a:71:1f:4f:62:39:56:00:ad:7d:cd:02:f5:0e:d2:86: 4b:35:fb:a9:20:af:39:04:55:db:51:09:bd:be:71:16:06:05: e3:46:9a:22:e8:a4:04:f2:18:bb:8e:4e:fe:61:19:b8:95:68: 8b:49:dd:73:42:f7:c0:67:4c:ad:36:86:52:5b:53:fc:09:f1: b2:d6:52:ae:97:f8:93:ae:66:d7:23:d6:02:b3:86:f9:50:53: f2:33:3c:a4:2d:5e:f5:a1:d2:63:78:8f:a6:91:86:db:9c:7a: 35:3b:b3:22:e4:0e:c9:27:17:9e:84:b0:72:91:d3:7b:dc:6e: 9d:59:0e:5f:2c:5b:ff:05:95:28:37:45:e4:b3:51:9e:f9:7c: b8:08:a9:98:5c:fe:a5:83:43:cf:c2:3f:bd:37:23:da:1e:35: 08:d7:34:76:78:c1:53:3a:3e:99:04:30:7b:e4:c4:40:4d:fd: 8e:2f:6e:27:8f:af:fd:f5:f6:ef:8d:6a:b6:56:d8:78:27:08: c4:5e:c3:e8:a5:87:79:b4:e8:1d:b6:b4:9f:06:0c:72:8e:0a: 38:8f:e3:23:23:77:c1:2b:d6:70:e0:8d:fe:ae:52:76:76:fb: a5:fd:0f:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwNzIwMTc1MTMyWhcNMjUwNzI3MTc1MTMyWjAYMRYwFAYD VQQDEw02ODdkMmNhNS1lZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzn9U7vxQmXzOFTe7alUhc1NVoMYoMvkrbCDdbfEPfoCfrVMGu+d1h/fi/mdW GYcpzoV35zeAfeA3ZiErCXy/1OqOpunCpaNY1VKWBe+0tTYt8u1Eh4u07FyNHnbR 0YTeTCg3a1Jqm7fq0mqi8P/Q0lakw7ulAxQaIodQmVgkrquPeYNvKHzfAZWyABG0 j/4WhQgJ3+OQ2v7gCZA3bLMoJElnIIiqAQp5Wuh1Et6EtifX5RFIQ/K2jR/hKxDR t8SB35fMbnTGixZoXJTFJ5GbqorqMlNerqJhOmTYtZJ7u3lwDQCkZ9hVf6zOyiS3 hFdNscfS8gnuPkXpj8w3uzmJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6eCpZp 2CtRIOC3+KyiE9XBycHeMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF46FxYC9v44lQzPRg4dQ5lWr/o1pxH09iOVYArX3NAvUO0oZLNfup IK85BFXbUQm9vnEWBgXjRpoi6KQE8hi7jk7+YRm4lWiLSd1zQvfAZ0ytNoZSW1P8 CfGy1lKul/iTrmbXI9YCs4b5UFPyMzykLV71odJjeI+mkYbbnHo1O7Mi5A7JJxee hLBykdN73G6dWQ5fLFv/BZUoN0Xks1Ge+Xy4CKmYXP6lg0PPwj+9NyPaHjUI1zR2 eMFTOj6ZBDB75MRATf2OL24nj6/99fbvjWq2Vth4JwjEXsPopYd5tOgdtrSfBgxy jgo4j+MjI3fBK9Zw4I3+rlJ2dvul/Q8f -----END CERTIFICATE-----Generated at Mon Jul 21 13:22:29 2025 by rpki-client