$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft File: 53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft (raw, json) Hash identifier: /+CmKNxqGZ03QIAWxyOZJccNmnM8eJ3ijAAvz5QMAmM= Subject key identifier: 73:24:8F:FC:B7:CD:7E:B0:6A:56:6A:BD:29:A7:09:44:8A:BA:35:4E Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65 Certificate issuer: /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft Manifest number: 0172 Signing time: Mon 21 Jul 2025 04:04:57 +0000 Manifest this update: Mon 21 Jul 2025 04:04:57 +0000 Manifest next update: Mon 28 Jul 2025 04:04:57 +0000 Files and hashes: 1: 53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl (hash: X0h9VijgulDaX4lmlPrhif2O5uexu4rufHHpo/dtKz0=) 2: 7A97D2F2174311EFAA4B5762C4F9AE02.roa (hash: qiuU93Lc7YatLMlsGPtovUfT87zuHB3bZX8CwFGs5GE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F715C, serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065 Validity Not Before: Jul 21 04:04:57 2025 GMT Not After : Jul 28 04:04:57 2025 GMT Subject: CN=687dbc69-2fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:21:09:a6:17:0c:c7:6d:81:15:07:84:8b: f5:ea:76:1f:45:c7:ec:f0:70:61:ff:bc:98:c2:ab: 30:cb:06:90:10:0e:34:27:b9:a5:37:a4:c4:ef:f5: d3:df:46:a7:5d:bc:30:b8:05:b5:a3:7a:08:74:d8: fd:7e:c2:a9:4c:25:2b:3d:fd:1a:4c:82:ce:27:0e: 34:90:28:95:8b:ec:46:16:2c:2c:03:03:07:e1:1f: 3d:59:71:1c:a6:26:c0:96:6e:58:47:e6:db:0d:fb: 1a:b4:b4:b5:c0:dc:d2:1c:2d:56:3c:db:07:02:95: ec:50:b7:9f:33:db:51:3e:5d:6c:5b:f7:ca:be:5f: a6:99:18:f0:a0:4d:88:52:21:ff:99:7d:6d:db:e1: d1:ad:5f:4c:60:81:86:34:1a:27:37:df:e0:5c:b1: a6:bb:91:25:d8:c9:77:d4:7f:9f:ca:51:ce:dc:9d: 5b:35:98:0d:ea:62:a8:bf:d2:b9:de:45:b1:ab:40: 14:64:ef:9e:bd:5f:85:3d:a6:de:f0:cd:32:ba:3a: 25:d4:20:fc:4c:76:36:8b:bf:a1:7d:b8:cb:e3:68: 16:8f:f8:a9:69:5e:1e:7e:fb:bf:9c:3f:73:8a:4b: ee:ec:4f:cc:5b:8c:37:0f:d8:5e:1d:e0:6b:5c:15: 9b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:24:8F:FC:B7:CD:7E:B0:6A:56:6A:BD:29:A7:09:44:8A:BA:35:4E X509v3 Authority Key Identifier: keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7c:46:f8:cb:3b:07:18:0d:a4:c2:e2:4a:90:b8:93:ba:60: a2:d3:80:df:48:bd:96:ba:b9:8a:e8:49:a0:11:20:6a:ac:b1: dc:3a:8c:de:7b:b6:45:1c:0b:7b:52:9c:08:ed:e6:47:91:d6: 33:3b:19:07:5e:bb:cc:6e:5b:e7:ea:ba:0f:5f:8a:b1:a3:df: 80:c5:d9:9a:02:4e:11:ce:37:59:43:9c:34:2c:bf:64:42:1f: c9:0d:45:ec:0e:ff:f1:bf:10:9a:23:a6:91:50:f7:e8:93:67: f5:3b:73:bc:81:39:bf:d0:76:f4:5e:d9:b3:c9:b1:b7:02:f1: be:99:34:59:f6:06:43:1d:b1:41:55:a6:74:a5:c8:eb:1d:37: 93:03:d4:5d:d5:48:8f:2a:80:a8:38:e1:44:4c:a0:7e:df:fd: 05:81:9d:f4:56:f5:df:24:85:29:64:b9:cc:f8:67:0b:ea:3c: ec:44:c2:a3:78:4c:7c:68:e9:91:48:9e:9c:c7:a1:65:93:11: 10:f3:10:7f:83:78:bb:5b:a0:5b:d5:ad:b4:12:6e:94:98:46: 84:bb:62:9e:5a:8e:6f:07:e6:f0:bd:d2:b9:20:e5:60:c5:32: f1:3a:30:f9:32:fe:b0:d5:2e:9a:07:72:f3:2c:8e:50:d6:ea: ae:d6:02:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxNUMxMTAvBgNVBAUTKEU3NzEzMkU0RkVBRDA0RUVENEZFOTQ2RDYwN0EwRENC NTdBNDIwNjUwHhcNMjUwNzIxMDQwNDU3WhcNMjUwNzI4MDQwNDU3WjAYMRYwFAYD VQQDEw02ODdkYmM2OS0yZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycchCaYXDMdtgRUHhIv16nYfRcfs8HBh/7yYwqswywaQEA40J7mlN6TE7/XT 30anXbwwuAW1o3oIdNj9fsKpTCUrPf0aTILOJw40kCiVi+xGFiwsAwMH4R89WXEc pibAlm5YR+bbDfsatLS1wNzSHC1WPNsHApXsULefM9tRPl1sW/fKvl+mmRjwoE2I UiH/mX1t2+HRrV9MYIGGNBonN9/gXLGmu5El2Ml31H+fylHO3J1bNZgN6mKov9K5 3kWxq0AUZO+evV+FPabe8M0yujol1CD8THY2i7+hfbjL42gWj/ipaV4efvu/nD9z ikvu7E/MW4w3D9heHeBrXBWbswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMkj/y3 zX6walZqvSmnCUSKujVOMB8GA1UdIwQYMBaAFOdxMuT+rQTu1P6UbWB6DctXpCBl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzE1Qy81RjA3MjYzODRG MzMxMUVFOTY2RTBGNzJDNEY5QUUwMi81M0V5NVA2dEJPN1VfcFJ0WUhvTnkxZWtJ R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzRXk1UDZ0Qk83VV9wUnRZSG9OeTFla0lHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzE1Qy81RjA3MjYzODRGMzMxMUVFOTY2RTBGNzJDNEY5QUUwMi81M0V5NVA2dEJP N1VfcFJ0WUhvTnkxZWtJR1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUfEb4yzsHGA2kwuJKkLiTumCi04DfSL2WurmK6EmgESBqrLHcOoze e7ZFHAt7UpwI7eZHkdYzOxkHXrvMblvn6roPX4qxo9+AxdmaAk4RzjdZQ5w0LL9k Qh/JDUXsDv/xvxCaI6aRUPfok2f1O3O8gTm/0Hb0XtmzybG3AvG+mTRZ9gZDHbFB VaZ0pcjrHTeTA9Rd1UiPKoCoOOFETKB+3/0FgZ30VvXfJIUpZLnM+GcL6jzsRMKj eEx8aOmRSJ6cx6FlkxEQ8xB/g3i7W6Bb1a20Em6UmEaEu2KeWo5vB+bwvdK5IOVg xTLxOjD5Mv6w1S6aB3LzLI5Q1uqu1gJi -----END CERTIFICATE-----Generated at Mon Jul 21 06:53:26 2025 by rpki-client