$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: 7Ag32W4gI4mMf58dv45k+IpfxG4nmcN3st3+R7Q+QQI= Subject key identifier: 7C:D3:8E:3A:27:9B:D9:52:6A:40:5A:AF:F5:A8:B3:D4:D6:0B:20:D1 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 02E0 Signing time: Mon 21 Jul 2025 02:43:07 +0000 Manifest this update: Mon 21 Jul 2025 02:43:06 +0000 Manifest next update: Mon 28 Jul 2025 02:43:06 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: FMkwvlDvAE8UvlE1mETpCaVhPCxE30SlBdbeLGxyVLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Jul 21 02:43:06 2025 GMT Not After : Jul 28 02:43:06 2025 GMT Subject: CN=687da93a-5107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:51:48:13:d7:df:0c:af:43:31:93:a4:f4:74: 29:18:a5:55:57:89:d4:fc:a3:7c:c7:0a:7b:f7:88: 44:12:8b:f1:77:f3:a9:ea:63:d8:7a:c9:ca:56:40: 50:ae:6f:86:d5:e4:01:f0:19:f7:67:72:c6:31:a1: 46:03:dc:cf:a4:d2:1f:b6:47:2e:ac:21:1b:7c:0f: 83:5b:3b:57:ba:de:45:72:4d:23:86:c6:cf:a2:07: e6:d1:78:7b:7c:53:ae:cf:49:bb:1f:1c:7c:01:8c: 32:94:09:f1:96:9b:0f:ad:49:71:3f:fa:cf:62:1d: 2a:95:19:4a:5e:4e:e2:13:ce:89:87:9d:c4:52:fd: 47:b7:18:df:ca:00:f6:a7:14:96:65:a9:93:b8:14: 75:03:14:e4:e0:8a:46:7d:05:27:76:b9:c0:a5:04: 99:ab:11:d9:e4:65:d0:70:4d:76:6b:b2:10:a0:db: bd:a5:7b:49:43:2e:2e:52:2e:2d:a7:db:04:dd:af: c7:d8:54:2f:aa:d3:bf:fd:c2:01:71:16:8e:bb:50: 4f:11:1a:a7:9a:47:17:45:a8:f0:f4:26:03:a1:1b: f1:2c:97:4f:39:3d:c4:1a:91:d0:c2:62:74:dc:bd: f2:60:64:70:0c:e7:b0:e3:9e:57:6c:35:54:49:cc: 65:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D3:8E:3A:27:9B:D9:52:6A:40:5A:AF:F5:A8:B3:D4:D6:0B:20:D1 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:e4:20:f2:57:fd:95:98:03:33:a7:4a:bf:3d:85:48:81:79: 1a:5d:ac:24:e4:71:37:33:57:c2:03:5c:63:85:23:47:dd:41: 9c:dd:53:4d:4d:e4:53:90:bf:a1:c1:61:7d:76:f6:f1:38:14: df:8e:b4:e8:e3:d4:bc:bb:5d:de:d6:3f:88:4f:2f:06:31:6c: 6b:e5:1d:08:3e:29:64:75:1e:8c:4f:a5:e8:e4:62:49:02:f4: 2c:0a:bc:c1:f9:81:9d:70:45:f3:da:5e:a1:29:c1:3f:34:59: dc:4c:d9:f1:2b:3f:ae:6a:bf:37:41:82:00:b4:87:9c:d8:ea: 38:1a:68:02:96:7b:61:f9:a0:a2:bb:e1:14:9a:85:08:11:cb: de:01:c1:1b:29:a9:bc:e7:02:65:e3:71:ac:d0:5e:1e:d2:e1: f3:a3:31:c1:83:42:ca:ee:cb:9b:4e:8e:7a:12:70:72:5b:59: 53:ee:1c:de:b3:52:6f:d3:56:26:80:69:8a:57:b8:c6:2c:b0: 09:7c:ad:2f:01:0c:26:9a:f2:b9:a1:21:b7:98:20:a9:e9:7d: e8:f1:82:80:7a:98:93:08:94:f1:d6:36:0e:d7:93:9c:d1:1a: 99:91:1d:e1:79:de:9c:ec:85:98:0b:5d:1c:7b:d2:38:bf:87: 25:c1:e9:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNzIxMDI0MzA2WhcNMjUwNzI4MDI0MzA2WjAYMRYwFAYD VQQDEw02ODdkYTkzYS01MTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFFIE9ffDK9DMZOk9HQpGKVVV4nU/KN8xwp794hEEovxd/Op6mPYesnKVkBQ rm+G1eQB8Bn3Z3LGMaFGA9zPpNIftkcurCEbfA+DWztXut5Fck0jhsbPogfm0Xh7 fFOuz0m7Hxx8AYwylAnxlpsPrUlxP/rPYh0qlRlKXk7iE86Jh53EUv1HtxjfygD2 pxSWZamTuBR1AxTk4IpGfQUndrnApQSZqxHZ5GXQcE12a7IQoNu9pXtJQy4uUi4t p9sE3a/H2FQvqtO//cIBcRaOu1BPERqnmkcXRajw9CYDoRvxLJdPOT3EGpHQwmJ0 3L3yYGRwDOew455XbDVUScxlowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzTjjon m9lSakBar/Wos9TWCyDRMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo5CDyV/2VmAMzp0q/PYVIgXkaXawk5HE3M1fCA1xjhSNH3UGc3VNN TeRTkL+hwWF9dvbxOBTfjrTo49S8u13e1j+ITy8GMWxr5R0IPilkdR6MT6Xo5GJJ AvQsCrzB+YGdcEXz2l6hKcE/NFncTNnxKz+uar83QYIAtIec2Oo4GmgClnth+aCi u+EUmoUIEcveAcEbKam85wJl43Gs0F4e0uHzozHBg0LK7subTo56EnByW1lT7hze s1Jv01YmgGmKV7jGLLAJfK0vAQwmmvK5oSG3mCCp6X3o8YKAepiTCJTx1jYO15Oc 0RqZkR3hed6c7IWYC10ce9I4v4clwelG -----END CERTIFICATE-----Generated at Mon Jul 21 07:23:42 2025 by rpki-client