$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft File: dzKJlNE-mJVBnIEGa6YRgdGCtog.mft (raw, json) Hash identifier: gDBOoZYrJsEy/flVcitqorcc+wxQLw5SDpeNdi1/QoY= Subject key identifier: 01:91:DB:20:51:C0:A3:AC:3C:54:77:7E:C6:A9:1D:09:DC:04:7A:F0 Authority key identifier: 77:32:89:94:D1:3E:98:95:41:9C:81:06:6B:A6:11:81:D1:82:B6:88 Certificate issuer: /CN=A91F71E8/serialNumber=77328994D13E9895419C81066BA61181D182B688 Certificate serial: 1201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft Manifest number: 1A3E Signing time: Fri 18 Jul 2025 17:19:23 +0000 Manifest this update: Fri 18 Jul 2025 17:19:23 +0000 Manifest next update: Fri 25 Jul 2025 17:19:23 +0000 Files and hashes: 1: dzKJlNE-mJVBnIEGa6YRgdGCtog.crl (hash: Xx4TS/FylYuL0WdK+Ch9sGtGTxgKhId3a1t/AisPyLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4609 (0x1201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=77328994D13E9895419C81066BA61181D182B688 Validity Not Before: Jul 18 17:19:23 2025 GMT Not After : Jul 25 17:19:23 2025 GMT Subject: CN=687a821b-bdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8e:6f:5f:39:00:b7:9d:28:20:b9:48:ae:ea: e6:9d:c8:be:00:71:45:2c:f4:87:87:98:c1:ec:78: e8:20:e8:9f:1a:4b:50:37:3c:d5:8b:70:3e:22:3c: 48:9e:d3:ec:c0:e8:eb:ab:8f:05:72:2b:ce:f3:18: b6:07:ac:a1:72:41:f6:4a:c1:cc:55:6c:a7:a3:de: a6:23:0d:bf:89:53:99:ad:32:e6:51:95:cd:28:a7: dc:e1:d0:ce:49:5a:00:47:e6:41:68:5c:08:12:52: b4:96:b2:ba:6b:db:9b:b1:e4:e3:2c:60:80:ea:73: 3b:57:84:e1:57:7e:ba:1f:cc:62:ad:54:19:46:32: 9d:79:74:7d:a6:76:f5:b4:14:ef:61:02:0a:7d:88: c0:9d:09:a6:fe:fa:fb:49:56:d1:70:fb:5d:b7:52: af:e6:67:23:6b:ce:f8:9b:94:f1:85:fa:6a:97:73: 21:bf:e5:38:6a:82:8e:60:90:00:3e:44:11:b3:19: 80:f6:19:07:00:ed:2f:94:73:a4:bd:fc:b5:06:4f: 83:b1:e5:42:34:08:21:73:31:12:4d:e0:ab:6a:ac: 22:fc:a6:c4:18:82:05:e3:fb:15:12:61:fc:f4:5d: f7:b6:98:9f:5c:e6:b7:af:38:59:da:9d:d4:4c:95: 45:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:91:DB:20:51:C0:A3:AC:3C:54:77:7E:C6:A9:1D:09:DC:04:7A:F0 X509v3 Authority Key Identifier: keyid:77:32:89:94:D1:3E:98:95:41:9C:81:06:6B:A6:11:81:D1:82:B6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzKJlNE-mJVBnIEGa6YRgdGCtog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/dzKJlNE-mJVBnIEGa6YRgdGCtog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:0c:e9:82:c7:eb:97:55:01:0a:02:13:0b:40:81:b2:9f:2e: ae:a2:42:3e:03:24:9a:c0:7f:7f:d4:9e:ad:39:de:b3:66:19: 78:74:cf:bb:53:ab:69:92:ca:df:55:6f:10:4e:cb:f7:45:a1: d8:c4:0d:a8:24:da:f8:cc:b3:24:72:d7:73:71:69:f7:49:f8: f4:f3:48:5f:ee:25:2e:f9:a3:44:f7:ad:b0:d4:4c:63:21:87: 75:9e:a2:87:a4:e0:61:56:fb:9e:ce:e7:0a:83:d2:11:b9:aa: df:89:76:88:68:d2:34:28:76:a4:77:ab:1b:b5:80:42:69:f9: f7:60:8f:bb:6a:94:4b:3d:75:71:8d:f4:6b:32:15:e3:3e:b0: 1c:85:3b:03:62:7b:62:63:e4:20:a4:ab:e7:fa:f7:68:7b:07: 48:e1:84:38:2a:fa:e8:ea:b1:70:d2:2c:09:79:0b:a8:ce:c2: 47:b8:77:b5:84:a5:4a:e9:e7:89:86:fa:af:1f:96:77:ee:a5: 6a:ae:f1:d4:59:60:1e:74:3b:91:68:c8:da:20:16:5a:38:e4: 23:d0:ed:cd:a9:b8:4b:ba:66:66:1a:39:85:a1:4f:af:ee:b7: 3a:21:d3:fb:34:23:64:6f:ab:07:18:93:20:ed:e6:d1:00:2d: 35:c0:62:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKDc3MzI4OTk0RDEzRTk4OTU0MTlDODEwNjZCQTYxMTgx RDE4MkI2ODgwHhcNMjUwNzE4MTcxOTIzWhcNMjUwNzI1MTcxOTIzWjAYMRYwFAYD VQQDEw02ODdhODIxYi1iZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3I5vXzkAt50oILlIrurmnci+AHFFLPSHh5jB7HjoIOifGktQNzzVi3A+IjxI ntPswOjrq48FcivO8xi2B6yhckH2SsHMVWyno96mIw2/iVOZrTLmUZXNKKfc4dDO SVoAR+ZBaFwIElK0lrK6a9ubseTjLGCA6nM7V4ThV366H8xirVQZRjKdeXR9pnb1 tBTvYQIKfYjAnQmm/vr7SVbRcPtdt1Kv5mcja874m5Txhfpql3Mhv+U4aoKOYJAA PkQRsxmA9hkHAO0vlHOkvfy1Bk+DseVCNAghczESTeCraqwi/KbEGIIF4/sVEmH8 9F33tpifXOa3rzhZ2p3UTJVFQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGR2yBR wKOsPFR3fsapHQncBHrwMB8GA1UdIwQYMBaAFHcyiZTRPpiVQZyBBmumEYHRgraI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9kektKbE5FLW1KVkJuSUVHYTZZUmdkR0N0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R6S0psTkUtbUpWQm5JRUdhNllSZ2RHQ3RvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9kektKbE5FLW1K VkJuSUVHYTZZUmdkR0N0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwDOmCx+uXVQEKAhMLQIGyny6uokI+AySawH9/1J6tOd6zZhl4dM+7 U6tpksrfVW8QTsv3RaHYxA2oJNr4zLMkctdzcWn3Sfj080hf7iUu+aNE962w1Exj IYd1nqKHpOBhVvuezucKg9IRuarfiXaIaNI0KHakd6sbtYBCafn3YI+7apRLPXVx jfRrMhXjPrAchTsDYntiY+QgpKvn+vdoewdI4YQ4Kvro6rFw0iwJeQuozsJHuHe1 hKVK6eeJhvqvH5Z37qVqrvHUWWAedDuRaMjaIBZaOOQj0O3NqbhLumZmGjmFoU+v 7rc6IdP7NCNkb6sHGJMg7ebRAC01wGJ5 -----END CERTIFICATE-----Generated at Sun Jul 20 02:05:40 2025 by rpki-client