$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: /mrW7HO7LKxd0bLxNTVWMzAE0QbUhbreecn1Pq2DaMY= Subject key identifier: 91:41:F6:39:15:5B:B5:60:4F:7D:0F:C8:B4:F3:B0:1F:16:60:FC:8F Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 5F Signing time: Mon 21 Jul 2025 07:16:59 +0000 Manifest this update: Mon 21 Jul 2025 07:16:58 +0000 Manifest next update: Mon 28 Jul 2025 07:16:58 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: 1r/TfXR1/h+B7yEm66z+lyfEpH+g4GGTVl772WGa15Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Jul 21 07:16:58 2025 GMT Not After : Jul 28 07:16:58 2025 GMT Subject: CN=687de96b-e034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:dc:69:eb:76:83:8c:48:3e:4f:02:28:09: b6:2c:08:2b:69:39:70:22:53:ce:b7:9f:0f:42:c8: ba:3b:1f:83:ee:a1:75:c5:98:2c:bf:90:5a:02:d9: 88:84:f1:c4:22:4e:2c:49:4f:d4:a4:d3:b2:85:17: f2:74:50:d3:4c:00:ca:b7:7d:46:f0:15:de:29:f6: 15:fb:75:86:c1:54:5a:70:62:c1:84:cf:e6:7e:f1: 66:18:5b:07:97:53:e0:81:c7:d8:14:1f:72:47:d0: b5:f9:16:14:3f:d3:13:d3:9c:d5:b9:d2:30:28:a8: 29:56:77:68:2b:e8:94:91:9a:1c:4a:2e:ac:7d:0a: 43:2d:7f:36:6d:74:05:06:f0:54:cf:71:d2:70:d5: 31:9b:64:97:0e:5e:c2:52:84:17:6d:87:9c:ab:98: 2a:86:f4:76:d1:da:57:6f:a0:90:de:2f:30:76:f6: 2f:49:26:fd:1e:1a:c9:4d:3f:a6:53:5a:87:d5:bb: a3:ae:cd:4a:32:af:50:db:ff:3b:03:33:59:af:59: f6:f8:67:ca:2d:46:b9:34:20:5c:af:98:4f:60:10: 4e:78:53:bb:35:5d:a1:89:02:c1:86:4b:3a:32:6e: 0b:4d:0e:f2:5f:14:49:bf:fe:15:9b:d6:42:c2:56: 0d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:41:F6:39:15:5B:B5:60:4F:7D:0F:C8:B4:F3:B0:1F:16:60:FC:8F X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:3f:9e:da:7d:0f:43:88:fd:53:45:c0:36:cb:46:65:78:ae: 14:00:42:7c:ed:c5:2d:d1:24:22:47:e6:5a:df:46:5c:08:17: c0:ba:54:3f:c2:74:b2:46:63:19:89:c8:ff:d2:5e:31:47:fa: 16:72:2a:17:99:c5:68:1d:b3:91:f0:af:f0:fd:90:14:5e:ea: 87:e5:14:87:1d:77:52:6c:aa:a7:77:6d:74:7f:c5:75:e3:c5: f3:21:ea:bb:cc:b9:06:32:c0:42:c6:7a:67:cb:e1:59:a1:5a: 9a:7c:9e:ff:4f:00:1b:07:02:ee:0d:26:b3:ac:73:97:a7:9c: d0:5a:89:cf:b0:37:e5:d2:d0:62:02:e9:2e:95:11:8c:aa:04: 0c:d0:48:7f:18:6e:2a:20:52:72:0c:59:5f:8f:c1:26:8e:1a: 64:82:31:48:a8:fd:38:fc:b8:4a:eb:3d:46:05:61:73:c3:10: ec:1d:cf:c2:aa:e3:8c:0a:d8:26:2d:8a:16:40:43:95:16:fc: a2:45:5d:f9:33:c2:69:8d:30:8d:3f:0d:f4:d8:dd:34:bf:12: 58:4a:04:84:12:78:09:95:ed:b8:a5:b5:94:80:d2:d3:7a:f4: e3:3a:8e:19:62:a3:cf:80:1c:35:3b:19:27:e7:ec:47:8f:0c: b2:0a:a8:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA3MjEwNzE2NThaFw0yNTA3MjgwNzE2NThaMBgxFjAUBgNV BAMTDTY4N2RlOTZiLWUwMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm7Nxp63aDjEg+TwIoCbYsCCtpOXAiU863nw9CyLo7H4PuoXXFmCy/kFoC2YiE 8cQiTixJT9Sk07KFF/J0UNNMAMq3fUbwFd4p9hX7dYbBVFpwYsGEz+Z+8WYYWweX U+CBx9gUH3JH0LX5FhQ/0xPTnNW50jAoqClWd2gr6JSRmhxKLqx9CkMtfzZtdAUG 8FTPcdJw1TGbZJcOXsJShBdth5yrmCqG9HbR2ldvoJDeLzB29i9JJv0eGslNP6ZT WofVu6OuzUoyr1Db/zsDM1mvWfb4Z8otRrk0IFyvmE9gEE54U7s1XaGJAsGGSzoy bgtNDvJfFEm//hWb1kLCVg2LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkUH2ORVb tWBPfQ/ItPOwHxZg/I8wHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC8/ntp9D0OI/VNFwDbLRmV4rhQAQnztxS3RJCJH5lrfRlwIF8C6VD/C dLJGYxmJyP/SXjFH+hZyKheZxWgds5Hwr/D9kBRe6oflFIcdd1Jsqqd3bXR/xXXj xfMh6rvMuQYywELGemfL4VmhWpp8nv9PABsHAu4NJrOsc5ennNBaic+wN+XS0GIC 6S6VEYyqBAzQSH8YbiogUnIMWV+PwSaOGmSCMUio/Tj8uErrPUYFYXPDEOwdz8Kq 44wK2CYtihZAQ5UW/KJFXfkzwmmNMI0/DfTY3TS/ElhKBIQSeAmV7biltZSA0tN6 9OM6jhlio8+AHDU7GSfn7EePDLIKqEw= -----END CERTIFICATE-----Generated at Tue Jul 22 19:21:34 2025 by rpki-client