$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft File: q4PFkhuEDFQXM78Ucyl13UlzP_w.mft (raw, json) Hash identifier: 9TwBKmivoxqzfQt9q60dfe9rSi2WZwudMgWUcBiJh0E= Subject key identifier: 12:CE:62:4B:79:60:92:DD:DC:36:97:45:A4:EE:C0:FE:67:B1:EC:A1 Authority key identifier: AB:83:C5:92:1B:84:0C:54:17:33:BF:14:73:29:75:DD:49:73:3F:FC Certificate issuer: /CN=A91F523F/serialNumber=AB83C5921B840C541733BF14732975DD49733FFC Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft Manifest number: 76 Signing time: Sat 19 Jul 2025 07:03:04 +0000 Manifest this update: Sat 19 Jul 2025 07:03:03 +0000 Manifest next update: Sat 26 Jul 2025 07:03:03 +0000 Files and hashes: 1: q4PFkhuEDFQXM78Ucyl13UlzP_w.crl (hash: ndBT1qHGLrj93Ky1vYqiOaodN1RsRhWPunSDnj8pvJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.crl rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=AB83C5921B840C541733BF14732975DD49733FFC Validity Not Before: Jul 19 07:03:03 2025 GMT Not After : Jul 26 07:03:03 2025 GMT Subject: CN=687b4327-70cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:36:33:ae:63:f4:f9:36:3a:e6:25:7f:20:92: 89:37:8d:42:77:a3:95:0b:e1:94:ed:0d:90:7a:38: 5c:cd:4f:6a:6a:37:73:79:09:46:78:f9:09:d7:a2: cb:55:20:60:12:4f:da:6d:02:e0:eb:74:b1:70:87: e8:f1:34:15:11:95:4a:4d:b9:7b:02:91:12:17:79: ac:b9:75:53:7e:40:75:69:e5:48:e8:45:db:f0:7b: a9:db:64:52:d2:7d:70:9d:25:02:0d:97:53:0c:e2: 1b:3d:e8:99:d7:bd:db:0f:92:9e:6b:71:0a:b6:2c: a5:4a:ca:17:66:d7:ef:d3:96:af:f2:4f:7b:80:7e: fb:fa:57:bb:7c:26:b1:69:30:8e:07:a1:82:9f:3d: f0:ea:21:ea:6b:2b:71:91:01:73:5d:ed:36:36:f5: 65:28:42:0a:ac:8c:cf:b9:2c:8a:e0:9d:30:5d:17: 67:1c:86:c8:a9:27:4c:99:05:b5:c4:9c:c2:0a:38: c1:a8:60:a0:71:45:9b:5e:3d:6f:52:75:88:3f:59: 0e:55:e7:29:45:b4:b4:fa:49:d2:7f:69:c1:44:53: 66:03:c6:fb:94:cb:c4:d1:ac:b0:7e:f4:e5:18:71: 0a:8a:85:c0:40:1b:9b:10:f1:9a:40:f7:ef:cd:1e: 92:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:CE:62:4B:79:60:92:DD:DC:36:97:45:A4:EE:C0:FE:67:B1:EC:A1 X509v3 Authority Key Identifier: keyid:AB:83:C5:92:1B:84:0C:54:17:33:BF:14:73:29:75:DD:49:73:3F:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4PFkhuEDFQXM78Ucyl13UlzP_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/56A4CB8AB05311EF9C2B8D3FC4F9AE02/q4PFkhuEDFQXM78Ucyl13UlzP_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:eb:1f:f7:05:a2:56:d3:cd:83:2d:dd:1d:b4:74:ed:1b:8d: 5f:d3:87:22:ca:6d:d6:4c:29:db:2c:40:92:6b:00:ed:eb:e6: 24:a3:41:63:9d:23:cd:79:68:36:9e:54:79:c8:04:ba:3f:7f: ff:9d:a2:3f:09:38:56:8c:e7:e1:80:21:2f:41:26:00:b4:d0: 9d:6d:0c:ff:58:cc:f9:ac:10:3a:cf:bf:74:d8:cf:b0:bd:33: 3e:48:b2:ff:c3:9d:9b:41:f3:50:8f:6c:00:ee:45:9f:ad:75: c6:71:3b:5e:19:56:12:27:d8:f6:9a:ad:1b:52:0b:35:cc:0d: de:86:3a:33:4e:fe:87:cb:af:d7:f1:ec:21:ce:98:8c:20:ed: c7:9d:d4:50:c8:5d:08:93:7f:53:85:61:fb:db:21:9b:20:fc: d4:c2:1f:43:91:66:8b:ec:e8:aa:4f:f1:d8:c2:ff:fb:5a:79: bc:0d:de:34:0e:63:65:c2:c0:a8:a8:52:49:c4:7b:46:8d:84: 38:77:b1:90:b2:4f:ab:9e:c8:61:be:03:fb:3d:f0:02:d7:95: ae:cc:5b:2f:e3:22:fb:b9:fb:45:79:91:7d:1b:85:18:b7:fc: 65:3b:7b:ad:b5:4a:ae:94:ad:3a:fc:1a:a8:28:2b:30:72:73: 63:5d:48:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoQUI4M0M1OTIxQjg0MEM1NDE3MzNCRjE0NzMyOTc1REQ0 OTczM0ZGQzAeFw0yNTA3MTkwNzAzMDNaFw0yNTA3MjYwNzAzMDNaMBgxFjAUBgNV BAMTDTY4N2I0MzI3LTcwY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUNjOuY/T5NjrmJX8gkok3jUJ3o5UL4ZTtDZB6OFzNT2pqN3N5CUZ4+QnXostV IGAST9ptAuDrdLFwh+jxNBURlUpNuXsCkRIXeay5dVN+QHVp5UjoRdvwe6nbZFLS fXCdJQINl1MM4hs96JnXvdsPkp5rcQq2LKVKyhdm1+/Tlq/yT3uAfvv6V7t8JrFp MI4HoYKfPfDqIeprK3GRAXNd7TY29WUoQgqsjM+5LIrgnTBdF2cchsipJ0yZBbXE nMIKOMGoYKBxRZtePW9SdYg/WQ5V5ylFtLT6SdJ/acFEU2YDxvuUy8TRrLB+9OUY cQqKhcBAG5sQ8ZpA9+/NHpJfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEs5iS3lg kt3cNpdFpO7A/mex7KEwHwYDVR0jBBgwFoAUq4PFkhuEDFQXM78Ucyl13UlzP/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzU2QTRDQjhBQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL3E0UEZraHVFREZRWE03OFVjeWwxM1VselBf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTRQRmtodUVERlFYTTc4VWN5bDEzVWx6UF93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 MjNGLzU2QTRDQjhBQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL3E0UEZraHVFREZR WE03OFVjeWwxM1VselBfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJnrH/cFolbTzYMt3R20dO0bjV/ThyLKbdZMKdssQJJrAO3r5iSjQWOd I815aDaeVHnIBLo/f/+doj8JOFaM5+GAIS9BJgC00J1tDP9YzPmsEDrPv3TYz7C9 Mz5Isv/DnZtB81CPbADuRZ+tdcZxO14ZVhIn2PaarRtSCzXMDd6GOjNO/ofLr9fx 7CHOmIwg7ced1FDIXQiTf1OFYfvbIZsg/NTCH0ORZovs6KpP8djC//taebwN3jQO Y2XCwKioUknEe0aNhDh3sZCyT6ueyGG+A/s98ALXla7MWy/jIvu5+0V5kX0bhRi3 /GU7e621Sq6UrTr8GqgoKzByc2NdSFc= -----END CERTIFICATE-----Generated at Sun Jul 20 09:59:29 2025 by rpki-client