$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft File: CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft (raw, json) Hash identifier: 5KWAtz/VzHjfm+VL6w41aV8MLNyDJM/AGrzmqrn2SII= Subject key identifier: 25:EE:10:74:15:54:26:C4:22:EB:11:C8:59:C6:81:5F:51:E7:BE:8A Authority key identifier: 08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 Certificate issuer: /CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Certificate serial: 0385 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft Manifest number: 037F Signing time: Sat 19 Jul 2025 01:17:44 +0000 Manifest this update: Sat 19 Jul 2025 01:17:43 +0000 Manifest next update: Sat 26 Jul 2025 01:17:43 +0000 Files and hashes: 1: CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl (hash: X3CH3bizUYGEBQkg37TOI8131kDVU7AvRYEuUnCUfSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46E8, serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Validity Not Before: Jul 19 01:17:43 2025 GMT Not After : Jul 26 01:17:43 2025 GMT Subject: CN=687af237-c0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2f:19:0f:ca:70:e2:d6:88:f0:19:38:7e:5e: 47:7a:3f:04:5e:d1:ef:8a:c9:2b:fd:3d:47:a3:4d: 61:5e:eb:1d:39:22:c1:17:4c:98:fa:4f:3a:1b:78: 10:ca:18:a4:ba:a6:82:78:09:ee:14:b2:3b:1e:a0: 45:46:1c:49:46:2d:9e:92:e1:b4:e5:e5:5d:ec:b0: f6:2b:ea:37:74:2c:15:2f:0c:b4:80:ca:38:09:f2: 32:f5:cb:f7:45:34:ab:28:a4:ea:be:d3:98:6c:7c: ca:6e:a9:af:ed:be:67:4f:ba:12:ed:dd:46:d2:67: 84:7b:50:40:6f:42:da:5d:4c:f7:02:61:0a:5a:e5: 62:09:4d:1f:35:62:61:2c:4b:8f:6a:b4:f9:a3:5c: f1:b9:49:6e:1f:b1:81:99:f3:d8:d6:3f:42:25:78: da:1b:ea:55:14:83:4a:50:1a:1b:d4:ff:e2:32:06: 15:e1:72:58:b5:a9:84:fc:f2:f8:87:91:18:b5:23: c2:d2:1a:cf:b1:75:31:c2:04:ee:59:99:1b:e3:b8: 7a:51:9d:e2:40:ad:d5:41:95:08:fe:ec:41:2c:a2: 1e:3a:ee:fc:18:17:42:9f:dd:73:3c:3c:e5:38:e1: 2c:95:0b:61:2d:a3:50:8d:fb:77:c4:d2:56:2f:73: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EE:10:74:15:54:26:C4:22:EB:11:C8:59:C6:81:5F:51:E7:BE:8A X509v3 Authority Key Identifier: keyid:08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:34:bb:b8:14:9e:c9:ff:0c:57:d8:d8:c4:4a:e5:10:04:6e: 80:73:54:9e:a4:a0:77:e6:4d:6a:66:60:ca:dc:72:81:c6:92: ef:94:00:70:f7:5d:cd:05:80:1c:03:1d:8d:6a:9e:74:93:41: 7e:d5:45:86:86:68:d4:c5:d3:8b:a1:42:b6:cb:82:26:96:4e: a2:d5:aa:9a:c0:44:32:7a:a0:4f:f4:8e:a8:fd:d8:65:c4:ec: 01:a2:9c:78:83:bf:80:38:eb:e2:30:c5:a0:8d:97:86:e9:cb: 43:12:ed:3c:d1:6a:85:48:19:1f:ca:8d:fe:60:d1:9a:3a:97: 4a:69:88:65:3a:34:4f:97:34:bc:ad:13:70:dc:b3:b1:c0:e2: 38:64:fa:ee:39:d0:3d:be:d0:ef:46:6f:b2:0a:c0:ff:58:8d: f3:83:63:eb:46:fe:dc:76:ed:e9:6d:ef:a1:93:e6:7e:6a:6d: ea:f5:66:28:68:a9:2a:07:19:4b:b7:69:2b:dd:be:b6:99:7a: 95:89:e4:65:ae:7c:f7:df:d2:a7:73:c4:44:4e:f7:be:0b:b6: 9a:bf:5a:de:d2:69:f8:e6:73:47:df:75:a3:b5:78:c2:33:32: 45:19:92:a1:15:95:53:28:50:79:8e:43:72:4b:a0:60:db:2e: 26:5f:e6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2RTgxMTAvBgNVBAUTKDA4NENGQTlFQkMwNkMwRDY4MTA1NDhCMEVEMUNDNDdD RjhFRTBGMzEwHhcNMjUwNzE5MDExNzQzWhcNMjUwNzI2MDExNzQzWjAYMRYwFAYD VQQDEw02ODdhZjIzNy1jMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS8ZD8pw4taI8Bk4fl5Hej8EXtHviskr/T1Ho01hXusdOSLBF0yY+k86G3gQ yhikuqaCeAnuFLI7HqBFRhxJRi2ekuG05eVd7LD2K+o3dCwVLwy0gMo4CfIy9cv3 RTSrKKTqvtOYbHzKbqmv7b5nT7oS7d1G0meEe1BAb0LaXUz3AmEKWuViCU0fNWJh LEuParT5o1zxuUluH7GBmfPY1j9CJXjaG+pVFINKUBob1P/iMgYV4XJYtamE/PL4 h5EYtSPC0hrPsXUxwgTuWZkb47h6UZ3iQK3VQZUI/uxBLKIeOu78GBdCn91zPDzl OOEslQthLaNQjft3xNJWL3M24wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXuEHQV VCbEIusRyFnGgV9R576KMB8GA1UdIwQYMBaAFAhM+p68BsDWgQVIsO0cxHz47g8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZFOC9ENEI4REExNkIx NUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dOYUJCVWl3N1J6RWZQanVE ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NFejZucndHd05hQkJVaXc3UnpFZlBqdUR6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZFOC9ENEI4REExNkIxNUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dO YUJCVWl3N1J6RWZQanVEekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9NLu4FJ7J/wxX2NjESuUQBG6Ac1SepKB35k1qZmDK3HKBxpLvlABw 913NBYAcAx2Nap50k0F+1UWGhmjUxdOLoUK2y4Imlk6i1aqawEQyeqBP9I6o/dhl xOwBopx4g7+AOOviMMWgjZeG6ctDEu080WqFSBkfyo3+YNGaOpdKaYhlOjRPlzS8 rRNw3LOxwOI4ZPruOdA9vtDvRm+yCsD/WI3zg2PrRv7cdu3pbe+hk+Z+am3q9WYo aKkqBxlLt2kr3b62mXqVieRlrnz339Knc8RETve+C7aav1re0mn45nNH33WjtXjC MzJFGZKhFZVTKFB5jkNyS6Bg2y4mX+Yo -----END CERTIFICATE-----Generated at Sun Jul 20 11:03:30 2025 by rpki-client