$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.mft File: d6ZVRx-6dn5r39z-zejQR3AQCW0.mft (raw, json) Hash identifier: NHJ4Zu47gUALUKE2pCHySZtz0u/OK3LHETIjNH1HuME= Subject key identifier: AA:21:37:09:9A:A3:3F:3A:DF:AE:FB:26:6C:A1:2D:9A:5D:F3:38:A3 Authority key identifier: 77:A6:55:47:1F:BA:76:7E:6B:DF:DC:FE:CD:E8:D0:47:70:10:09:6D Certificate issuer: /CN=A91CCF26/serialNumber=77A655471FBA767E6BDFDCFECDE8D0477010096D Certificate serial: 095B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6ZVRx-6dn5r39z-zejQR3AQCW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.mft Manifest number: 095B Signing time: Sun 20 Jul 2025 20:16:30 +0000 Manifest this update: Sun 20 Jul 2025 20:16:30 +0000 Manifest next update: Sun 27 Jul 2025 20:16:30 +0000 Files and hashes: 1: d6ZVRx-6dn5r39z-zejQR3AQCW0.crl (hash: yHH2XvKeVCu+KraJt7/U4uaeHS0yKkDQvmV186R736A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.crl rsync://rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6ZVRx-6dn5r39z-zejQR3AQCW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCF26, serialNumber=77A655471FBA767E6BDFDCFECDE8D0477010096D Validity Not Before: Jul 20 20:16:30 2025 GMT Not After : Jul 27 20:16:30 2025 GMT Subject: CN=687d4e9e-092c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bf:fb:c3:08:9b:90:07:6d:fa:ba:fb:67:22: 00:e6:65:4c:e9:42:d1:a0:79:63:29:73:06:e0:11: f9:86:34:d2:98:08:57:cd:27:43:ea:9c:54:87:73: fa:da:7f:37:15:f3:bf:01:a8:8e:bb:72:ee:00:e8: 38:51:13:72:5a:af:c7:22:18:ae:95:ce:70:a0:23: 6f:c5:0a:27:7e:b5:9e:f8:cc:a1:21:24:3a:01:42: f3:9d:62:07:40:7f:4a:f3:d2:a7:42:87:61:96:d7: 39:48:0f:6f:04:23:a1:d2:db:e1:12:f0:f4:21:4a: 8d:d7:44:6b:a1:e9:51:aa:37:54:16:2c:a5:a4:a6: 89:e3:66:d4:75:37:ad:2b:c5:66:7b:b8:7b:01:22: b9:ec:06:36:1a:be:7b:d8:ee:09:70:c6:c0:c8:c4: fc:eb:2e:4f:db:6e:f7:6b:22:3d:13:a6:2f:41:a3: 35:7f:8a:08:d3:83:9b:db:64:51:87:f6:24:5a:19: 72:a8:8d:02:18:4f:60:b2:29:4c:22:73:ff:19:e9: 0d:78:13:0e:3a:d4:c1:b5:9d:f2:6e:0b:f7:ef:5e: 35:3b:60:ca:0b:ab:98:80:6d:11:a2:7f:5b:06:4d: d7:3b:dd:c7:2c:2a:4a:e9:7f:b1:bd:54:a8:91:a3: 1c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:21:37:09:9A:A3:3F:3A:DF:AE:FB:26:6C:A1:2D:9A:5D:F3:38:A3 X509v3 Authority Key Identifier: keyid:77:A6:55:47:1F:BA:76:7E:6B:DF:DC:FE:CD:E8:D0:47:70:10:09:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6ZVRx-6dn5r39z-zejQR3AQCW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCF26/72C19B06997C11EA8F098961C4F9AE02/d6ZVRx-6dn5r39z-zejQR3AQCW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:49:a8:29:ad:5a:ff:35:eb:94:bc:14:bf:98:5b:c1:c1:b5: b1:f6:4c:2a:87:68:e7:1e:80:7e:a4:2d:84:06:c0:76:d2:e8: 1b:c9:ab:63:a0:ad:89:3b:07:a9:25:2e:a6:bd:35:34:a0:fa: 94:1d:9a:76:d4:f2:58:3e:68:1d:f9:fb:27:a0:ab:0a:a3:c6: 96:e7:bc:07:50:35:1e:81:b5:51:7e:67:11:f4:5a:9e:ab:2c: 01:76:7e:c9:76:51:fb:19:53:d6:f1:26:c7:38:a6:51:cf:82: ee:5f:c7:3a:ec:d4:dd:e9:60:44:a7:5c:bb:7b:36:5f:28:76: a0:8f:b6:ed:32:63:6a:3d:f1:6c:8f:ab:48:ea:d4:95:98:00: 16:c4:83:7d:82:6a:ca:e5:a8:d9:0e:a9:9c:4b:54:42:ca:24: 97:be:0c:42:37:90:2f:2b:59:1d:9d:87:ba:6b:98:5f:69:c0: 8a:ef:e9:9f:8f:75:f1:ef:42:b3:1b:9b:ad:b4:d1:fd:5b:83: d2:ae:78:1a:ae:eb:f3:5c:05:74:44:d2:47:22:23:09:5e:ae: 9d:cc:1c:f3:72:86:f8:ac:32:ec:80:4a:fd:92:f5:45:47:6c: b3:19:4e:5a:fe:bb:b2:16:83:3d:9a:41:7b:6a:45:7b:71:f6: 37:f8:98:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NGMjYxMTAvBgNVBAUTKDc3QTY1NTQ3MUZCQTc2N0U2QkRGRENGRUNERThEMDQ3 NzAxMDA5NkQwHhcNMjUwNzIwMjAxNjMwWhcNMjUwNzI3MjAxNjMwWjAYMRYwFAYD VQQDEw02ODdkNGU5ZS0wOTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlr/7wwibkAdt+rr7ZyIA5mVM6ULRoHljKXMG4BH5hjTSmAhXzSdD6pxUh3P6 2n83FfO/AaiOu3LuAOg4URNyWq/HIhiulc5woCNvxQonfrWe+MyhISQ6AULznWIH QH9K89KnQodhltc5SA9vBCOh0tvhEvD0IUqN10RroelRqjdUFiylpKaJ42bUdTet K8Vme7h7ASK57AY2Gr572O4JcMbAyMT86y5P2273ayI9E6YvQaM1f4oI04Ob22RR h/YkWhlyqI0CGE9gsilMInP/GekNeBMOOtTBtZ3ybgv37141O2DKC6uYgG0Ron9b Bk3XO93HLCpK6X+xvVSokaMcbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKohNwma oz863677JmyhLZpd8zijMB8GA1UdIwQYMBaAFHemVUcfunZ+a9/c/s3o0EdwEAlt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0YyNi83MkMxOUIwNjk5 N0MxMUVBOEYwOTg5NjFDNEY5QUUwMi9kNlpWUngtNmRuNXIzOXotemVqUVIzQVFD VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2WlZSeC02ZG41cjM5ei16ZWpRUjNBUUNXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0YyNi83MkMxOUIwNjk5N0MxMUVBOEYwOTg5NjFDNEY5QUUwMi9kNlpWUngtNmRu NXIzOXotemVqUVIzQVFDVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFSagprVr/NeuUvBS/mFvBwbWx9kwqh2jnHoB+pC2EBsB20ugbyatj oK2JOwepJS6mvTU0oPqUHZp21PJYPmgd+fsnoKsKo8aW57wHUDUegbVRfmcR9Fqe qywBdn7JdlH7GVPW8SbHOKZRz4LuX8c67NTd6WBEp1y7ezZfKHagj7btMmNqPfFs j6tI6tSVmAAWxIN9gmrK5ajZDqmcS1RCyiSXvgxCN5AvK1kdnYe6a5hfacCK7+mf j3Xx70KzG5uttNH9W4PSrngaruvzXAV0RNJHIiMJXq6dzBzzcob4rDLsgEr9kvVF R2yzGU5a/ruyFoM9mkF7akV7cfY3+Jjv -----END CERTIFICATE-----Generated at Mon Jul 21 12:31:08 2025 by rpki-client