$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: 0We6VHHqG2jkKT3K5iTje9uQmbTKqBv7K/dLDq5d7A4= Subject key identifier: 39:56:D0:68:42:E6:43:5A:E1:A7:C7:1B:3A:4F:08:C6:AB:AE:46:24 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 01BB Signing time: Sat 19 Jul 2025 03:14:31 +0000 Manifest this update: Sat 19 Jul 2025 03:14:31 +0000 Manifest next update: Sat 26 Jul 2025 03:14:31 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: qz+YpYTQeOETb130LQxUx5oxguDGbqBs+8lQla0vZ2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Jul 19 03:14:31 2025 GMT Not After : Jul 26 03:14:31 2025 GMT Subject: CN=687b0d97-9346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:7b:c0:a3:31:4a:c7:a4:bd:f7:4e:99:4c: 0a:83:d1:f7:ae:9c:eb:0e:13:00:1f:98:48:cd:d0: 49:fa:fa:58:da:c5:c9:b5:c1:51:75:e5:7a:8c:ce: 3f:2d:8c:f5:b0:39:f6:0c:fb:4a:e5:27:aa:a6:7f: 36:8e:1f:09:3c:6e:b5:88:b0:f2:61:0b:27:b5:52: b3:7d:4a:b5:fb:86:94:99:6c:e8:48:ea:9c:bd:a1: fa:ec:ec:33:c8:39:7a:1f:f4:db:22:ae:16:26:1e: a4:95:ee:63:f4:f4:49:84:34:4a:c1:dd:52:46:f5: c0:29:9c:15:32:75:ec:63:7b:23:72:f6:3c:be:d4: 9f:3a:75:ba:05:d9:1b:0c:39:47:59:7c:8e:70:82: 5e:08:d5:a9:c8:65:01:af:ea:2c:cd:ba:8a:81:94: 5d:07:7f:9a:b0:df:16:07:b5:83:27:53:0f:8d:45: c2:9f:a0:ca:ea:6f:6f:ba:ef:a7:15:a0:52:bb:fa: d7:9a:9a:ae:79:75:ec:16:c5:79:02:ae:b6:46:d0: 08:17:3d:57:0e:1e:5b:ac:20:e8:f8:be:61:23:21: c4:9e:24:41:0b:66:ec:76:1b:b5:fc:d1:33:29:8e: 99:b0:2c:a2:d0:ec:53:1e:a6:49:b1:e7:4d:2b:72: 42:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:56:D0:68:42:E6:43:5A:E1:A7:C7:1B:3A:4F:08:C6:AB:AE:46:24 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d3:52:d7:64:60:1d:52:16:53:8d:95:54:81:49:d7:9c:e6: 75:e2:90:21:c5:aa:55:a4:28:a0:a2:82:c4:62:8c:25:24:42: 02:e2:93:98:6e:b2:93:ca:6e:d5:2f:63:91:1e:5b:7b:dd:c7: 74:25:11:a0:8b:36:08:58:aa:68:59:57:6f:bf:e0:53:63:7f: 51:ba:d3:47:b2:5e:0b:43:f5:01:b4:37:90:21:c5:23:b1:7a: f5:3f:7f:45:1f:78:b7:4d:a7:89:3d:cf:84:f6:55:fe:ee:7f: 86:8d:bc:98:33:df:c2:6a:d3:14:e5:ff:86:55:8b:49:52:11: a0:53:86:74:1b:a6:b6:8e:0b:91:f8:dd:96:6a:18:71:0e:67: a2:0d:ca:7f:a4:9c:1c:5f:5b:b0:17:b7:5e:3a:2e:6b:f8:82: e9:9f:a8:7e:74:6e:34:03:d8:99:e6:43:e6:b7:a4:57:55:86: fa:77:eb:3c:da:cd:d4:33:53:35:05:ff:23:4b:f3:18:24:f3: 41:45:92:17:b5:c6:80:23:15:00:0f:c1:b2:a0:41:59:f9:a0: 94:84:b1:9c:59:5c:b8:3e:79:49:fc:49:19:3b:70:1b:c7:fa: 9d:99:28:d2:5a:1c:7c:a7:c1:c7:8b:42:3f:51:45:37:ce:fc: e1:5e:5c:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUwNzE5MDMxNDMxWhcNMjUwNzI2MDMxNDMxWjAYMRYwFAYD VQQDEw02ODdiMGQ5Ny05MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD97wKMxSsekvfdOmUwKg9H3rpzrDhMAH5hIzdBJ+vpY2sXJtcFRdeV6jM4/ LYz1sDn2DPtK5Seqpn82jh8JPG61iLDyYQsntVKzfUq1+4aUmWzoSOqcvaH67Owz yDl6H/TbIq4WJh6kle5j9PRJhDRKwd1SRvXAKZwVMnXsY3sjcvY8vtSfOnW6Bdkb DDlHWXyOcIJeCNWpyGUBr+oszbqKgZRdB3+asN8WB7WDJ1MPjUXCn6DK6m9vuu+n FaBSu/rXmpqueXXsFsV5Aq62RtAIFz1XDh5brCDo+L5hIyHEniRBC2bsdhu1/NEz KY6ZsCyi0OxTHqZJsedNK3JCRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlW0GhC 5kNa4afHGzpPCMarrkYkMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb01LXZGAdUhZTjZVUgUnXnOZ14pAhxapVpCigooLEYowlJEIC4pOY brKTym7VL2ORHlt73cd0JRGgizYIWKpoWVdvv+BTY39RutNHsl4LQ/UBtDeQIcUj sXr1P39FH3i3TaeJPc+E9lX+7n+GjbyYM9/CatMU5f+GVYtJUhGgU4Z0G6a2jguR +N2WahhxDmeiDcp/pJwcX1uwF7deOi5r+ILpn6h+dG40A9iZ5kPmt6RXVYb6d+s8 2s3UM1M1Bf8jS/MYJPNBRZIXtcaAIxUAD8GyoEFZ+aCUhLGcWVy4PnlJ/EkZO3Ab x/qdmSjSWhx8p8HHi0I/UUU3zvzhXlz2 -----END CERTIFICATE-----Generated at Mon Jul 21 00:32:09 2025 by rpki-client