$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft File: e14ORHE1uxchraYfZdx1yV9U2wI.mft (raw, json) Hash identifier: oFLy+9gTpr6d65hDwW02CvdDq4tNpMLuZtekr40qJfs= Subject key identifier: 1C:3C:A1:FB:4D:CF:11:B3:65:AA:E0:5D:88:FD:11:96:25:69:13:BC Authority key identifier: 7B:5E:0E:44:71:35:BB:17:21:AD:A6:1F:65:DC:75:C9:5F:54:DB:02 Certificate issuer: /CN=A91D8226/serialNumber=7B5E0E447135BB1721ADA61F65DC75C95F54DB02 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft Manifest number: 70 Signing time: Sat 19 Jul 2025 07:09:08 +0000 Manifest this update: Sat 19 Jul 2025 07:09:08 +0000 Manifest next update: Sat 26 Jul 2025 07:09:08 +0000 Files and hashes: 1: e14ORHE1uxchraYfZdx1yV9U2wI.crl (hash: QZIq0trugqPEfuQ4ytuPjwYB6+luuPxAcRdVm/SnO5Y=) 2: E4086C08BC2311EF9A445084C4F9AE02.roa (hash: r/4IGYNLMpKuCk8NRggWB2EhHJYpkEkj/MdGzvjYmVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.crl rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8226, serialNumber=7B5E0E447135BB1721ADA61F65DC75C95F54DB02 Validity Not Before: Jul 19 07:09:08 2025 GMT Not After : Jul 26 07:09:08 2025 GMT Subject: CN=687b4494-4a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:68:65:d0:1d:b9:be:60:06:69:7b:ee:37:97: 52:d7:a5:37:99:85:0a:e1:50:b3:9a:bd:9c:72:7d: 01:86:91:09:c4:41:4c:35:cb:1a:0f:d7:d8:cd:2d: f7:7e:82:1d:34:af:30:ac:79:1b:0e:a6:70:6d:fe: 86:ae:f9:1d:60:81:58:3f:67:d5:ee:5c:e5:dd:3d: 37:be:56:19:aa:e9:b5:1a:a2:1c:f5:f3:cb:e5:b2: 9a:6d:76:ea:34:6b:9d:ad:cd:7f:fa:6f:f6:77:e4: a7:8c:5c:30:69:a9:99:6d:4a:06:c1:ea:c8:85:3a: 17:bb:d4:88:58:d3:74:86:ad:07:dc:df:55:f2:de: f2:d9:21:31:1d:79:8d:d8:12:03:ba:7d:c8:f8:81: 25:57:43:9d:2a:63:32:7d:1c:42:fe:a1:dd:2e:c7: fd:e6:01:6c:4a:3b:2a:a8:ab:63:eb:66:0c:86:1f: 47:19:76:84:cc:e3:ba:ae:9d:71:00:1c:f9:f3:78: be:35:7d:f5:0c:c0:1f:6a:b0:b8:c9:41:e8:bb:a4: 0f:07:5d:ae:e7:58:9b:da:23:2f:fa:38:43:7e:00: 95:3b:3d:1a:d0:ed:10:6d:1d:62:17:b6:18:74:3b: 32:71:44:1d:0d:30:e4:f9:c0:7b:f6:f9:85:7c:b8: ee:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3C:A1:FB:4D:CF:11:B3:65:AA:E0:5D:88:FD:11:96:25:69:13:BC X509v3 Authority Key Identifier: keyid:7B:5E:0E:44:71:35:BB:17:21:AD:A6:1F:65:DC:75:C9:5F:54:DB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:af:bb:25:5f:56:c2:bd:b2:32:16:90:d0:6c:8a:46:5d:9f: a8:05:ec:fc:4e:24:41:ae:61:fb:5f:8b:2b:f7:af:5a:97:f9: 8d:27:37:67:61:ec:6a:78:58:f3:bf:92:16:68:16:54:0c:55: 29:65:01:b1:ae:02:0b:89:82:e1:e0:96:67:83:d4:2e:ae:9b: b4:64:ad:ad:81:82:9f:76:c0:35:58:cf:f5:22:7b:ce:13:ce: 00:45:5f:51:16:5d:76:99:83:28:c3:29:58:38:ab:28:08:29: 6d:c6:60:4b:15:07:dc:f0:31:b9:73:6d:6c:b4:74:b2:d5:5a: 95:dd:15:70:26:d4:de:95:f2:de:67:ec:5a:fb:fe:f4:a2:2d: 4f:4a:e9:42:54:7a:e1:e5:17:f2:8c:9b:c1:30:79:18:59:a6: d6:be:5f:7c:80:aa:1e:09:f3:3f:f1:e6:03:99:60:ef:0a:7c: 9c:0c:9a:04:e7:80:31:6e:8a:d4:50:bf:6d:ed:dd:12:b9:62: 87:7f:1c:23:2d:77:34:6f:cb:e8:31:c3:3d:98:01:34:4f:ff: c3:eb:9b:30:d5:db:0b:26:3f:e6:b9:a2:29:9f:c1:56:47:76: 27:4c:bc:01:c4:87:d5:24:22:ac:3e:f5:8c:91:08:e0:76:6c: 9d:d5:0f:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODIyNjExMC8GA1UEBRMoN0I1RTBFNDQ3MTM1QkIxNzIxQURBNjFGNjVEQzc1Qzk1 RjU0REIwMjAeFw0yNTA3MTkwNzA5MDhaFw0yNTA3MjYwNzA5MDhaMBgxFjAUBgNV BAMTDTY4N2I0NDk0LTRhMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1aGXQHbm+YAZpe+43l1LXpTeZhQrhULOavZxyfQGGkQnEQUw1yxoP19jNLfd+ gh00rzCseRsOpnBt/oau+R1ggVg/Z9XuXOXdPTe+Vhmq6bUaohz188vlspptduo0 a52tzX/6b/Z35KeMXDBpqZltSgbB6siFOhe71IhY03SGrQfc31Xy3vLZITEdeY3Y EgO6fcj4gSVXQ50qYzJ9HEL+od0ux/3mAWxKOyqoq2PrZgyGH0cZdoTM47qunXEA HPnzeL41ffUMwB9qsLjJQei7pA8HXa7nWJvaIy/6OEN+AJU7PRrQ7RBtHWIXthh0 OzJxRB0NMOT5wHv2+YV8uO49AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHDyh+03P EbNlquBdiP0RliVpE7wwHwYDVR0jBBgwFoAUe14ORHE1uxchraYfZdx1yV9U2wIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MjI2L0VDNERGMzE0QkMx RjExRUZBQURBNzQ1RkM0RjlBRTAyL2UxNE9SSEUxdXhjaHJhWWZaZHgxeVY5VTJ3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZTE0T1JIRTF1eGNocmFZZlpkeDF5VjlVMndJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MjI2L0VDNERGMzE0QkMxRjExRUZBQURBNzQ1RkM0RjlBRTAyL2UxNE9SSEUxdXhj aHJhWWZaZHgxeVY5VTJ3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAICvuyVfVsK9sjIWkNBsikZdn6gF7PxOJEGuYftfiyv3r1qX+Y0nN2dh 7Gp4WPO/khZoFlQMVSllAbGuAguJguHglmeD1C6um7Rkra2Bgp92wDVYz/Uie84T zgBFX1EWXXaZgyjDKVg4qygIKW3GYEsVB9zwMblzbWy0dLLVWpXdFXAm1N6V8t5n 7Fr7/vSiLU9K6UJUeuHlF/KMm8EweRhZpta+X3yAqh4J8z/x5gOZYO8KfJwMmgTn gDFuitRQv23t3RK5Yod/HCMtdzRvy+gxwz2YATRP/8PrmzDV2wsmP+a5oimfwVZH didMvAHEh9UkIqw+9YyRCOB2bJ3VDy4= -----END CERTIFICATE-----Generated at Sun Jul 20 06:36:22 2025 by rpki-client