$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: LoSkAjgCakfOOx9AsW0UuRZ/WiUDCKMKFr96EtE1o6A= Subject key identifier: 46:00:B5:78:47:39:5E:64:DD:68:4F:25:0E:80:E7:AA:A7:6E:B4:20 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0800 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 07E7 Signing time: Fri 18 Jul 2025 21:25:27 +0000 Manifest this update: Fri 18 Jul 2025 21:25:26 +0000 Manifest next update: Fri 25 Jul 2025 21:25:26 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: wBFKmscCw7y/zqsR/L8YMybGfEfYFm/qU7ANb7qFVVQ=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Jul 18 21:25:26 2025 GMT Not After : Jul 25 21:25:26 2025 GMT Subject: CN=687abbc6-f959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3b:f2:c8:2e:48:19:73:ad:0c:fb:4c:33:6b: 56:10:71:06:61:f0:35:c8:21:ff:0e:e3:0d:95:eb: e7:b3:e8:00:eb:b7:af:09:11:79:7a:4f:1c:d3:c4: 2b:fc:20:74:52:51:99:d1:e9:1e:fc:32:2c:b9:37: 1c:8a:b4:81:9b:59:71:58:29:b9:de:54:74:b3:93: 73:36:9b:08:53:d5:98:20:a3:4d:55:ac:20:96:81: 69:7c:c4:77:e2:e5:21:ac:b4:50:0a:b5:d1:ad:7d: 4b:e2:e6:27:bc:d9:a9:96:9c:90:a1:2a:42:7b:78: 59:19:0d:81:fb:a4:ba:1d:b5:f6:fd:0f:f3:b7:db: f0:73:d9:fe:bf:24:c8:1b:2f:5c:a4:34:b3:ee:3e: 2b:01:27:39:a2:7d:9b:63:9a:0b:25:c9:da:8c:db: 01:aa:c4:bb:4d:3e:ef:a5:6c:67:5c:10:70:53:be: 9f:3d:a0:74:97:80:78:a3:11:50:60:5a:2a:8e:e5: 8a:17:b9:60:ad:27:8a:03:be:cb:8d:91:38:cf:34: d6:06:1e:a7:8d:ba:26:dd:81:ea:1b:f9:4c:84:eb: cf:f3:39:c7:fb:f9:0c:2f:f0:bc:d0:66:2c:f3:bf: dd:f9:17:23:4a:bf:60:45:02:67:15:5d:e9:39:39: 50:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:00:B5:78:47:39:5E:64:DD:68:4F:25:0E:80:E7:AA:A7:6E:B4:20 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f0:73:07:65:c6:27:9e:06:8e:53:bc:27:4b:ed:9f:8d:37: 0b:35:5d:cd:9f:ee:ae:c5:58:fb:cb:e5:16:de:73:f3:fa:ea: d5:64:d2:b7:be:81:de:64:46:ef:93:cd:e1:a4:be:3d:86:18: 0b:cf:b3:14:3c:88:a9:6a:d8:60:a7:45:34:1f:1f:12:7a:a1: 7b:de:fc:eb:a3:08:03:68:ec:62:ce:69:a4:ab:e5:21:68:76: d1:41:da:6b:bf:0e:96:29:ef:0f:20:f0:24:2a:47:3d:18:2b: 7f:29:23:34:85:66:43:8c:85:c4:e7:2b:ca:a7:6b:9a:93:f3: fe:d9:f5:2a:7c:ae:89:b9:6b:c4:20:89:87:55:7f:39:2c:24: 4d:4e:62:39:f2:ed:c8:0f:35:af:fa:61:9c:70:14:05:07:ed: 71:1c:00:fc:8a:b1:2d:d7:26:84:78:cc:94:3f:7e:6c:14:c2: 83:9b:13:51:31:eb:a7:45:8f:1c:09:46:b8:c3:0c:ce:f7:13: 28:c2:53:4c:69:31:d4:86:f1:a4:a3:9e:85:b1:fd:28:30:f9: 2e:63:71:92:1d:a0:7a:0e:ae:88:65:4f:49:bf:f6:7e:1d:f2: 48:12:0f:37:da:ba:b5:69:ef:4a:2b:1f:78:89:b1:c3:6e:5e: f7:97:75:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUwNzE4MjEyNTI2WhcNMjUwNzI1MjEyNTI2WjAYMRYwFAYD VQQDEw02ODdhYmJjNi1mOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDvyyC5IGXOtDPtMM2tWEHEGYfA1yCH/DuMNlevns+gA67evCRF5ek8c08Qr /CB0UlGZ0eke/DIsuTccirSBm1lxWCm53lR0s5NzNpsIU9WYIKNNVawgloFpfMR3 4uUhrLRQCrXRrX1L4uYnvNmplpyQoSpCe3hZGQ2B+6S6HbX2/Q/zt9vwc9n+vyTI Gy9cpDSz7j4rASc5on2bY5oLJcnajNsBqsS7TT7vpWxnXBBwU76fPaB0l4B4oxFQ YFoqjuWKF7lgrSeKA77LjZE4zzTWBh6njbom3YHqG/lMhOvP8znH+/kML/C80GYs 87/d+RcjSr9gRQJnFV3pOTlQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYAtXhH OV5k3WhPJQ6A56qnbrQgMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA38HMHZcYnngaOU7wnS+2fjTcLNV3Nn+6uxVj7y+UW3nPz+urVZNK3 voHeZEbvk83hpL49hhgLz7MUPIipathgp0U0Hx8SeqF73vzrowgDaOxizmmkq+Uh aHbRQdprvw6WKe8PIPAkKkc9GCt/KSM0hWZDjIXE5yvKp2uak/P+2fUqfK6JuWvE IImHVX85LCRNTmI58u3IDzWv+mGccBQFB+1xHAD8irEt1yaEeMyUP35sFMKDmxNR MeunRY8cCUa4wwzO9xMowlNMaTHUhvGko56Fsf0oMPkuY3GSHaB6Dq6IZU9Jv/Z+ HfJIEg832rq1ae9KKx94ibHDbl73l3X3 -----END CERTIFICATE-----Generated at Sun Jul 20 06:40:38 2025 by rpki-client