$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: aekBPV9KIWl4clQymqwBVSMkI2wUkOUhy6xdPdd3vNA= Subject key identifier: 5F:FB:28:26:C5:40:CE:FB:8A:3E:3F:A7:F3:5C:20:81:AA:6F:B1:BD Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 7D Signing time: Wed 17 Sep 2025 07:26:28 +0000 Manifest this update: Wed 17 Sep 2025 07:26:28 +0000 Manifest next update: Wed 24 Sep 2025 07:26:28 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: aMqydOgL14KA5tlUGwZober9kLmdWBvybFX55QKCz3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Sep 17 07:26:28 2025 GMT Not After : Sep 24 07:26:28 2025 GMT Subject: CN=68ca62a4-2619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:c6:60:33:5a:1b:62:30:0f:02:66:22:8c: f6:8c:f8:8d:94:79:b2:fd:11:44:ac:48:fb:2f:c0: db:59:ee:74:80:3a:c9:ab:7d:84:fd:9a:10:05:03: 75:e3:81:9f:3b:62:c7:f0:58:56:62:b5:28:b3:0b: 6d:c3:14:3a:74:d6:8f:b2:0d:31:6c:1a:78:10:9c: 13:5c:07:dd:fd:7d:4d:06:d6:b6:0d:32:68:db:55: 4d:5f:56:6d:c3:4d:39:cc:3d:f5:6d:8f:82:61:3a: b6:a8:2c:38:2a:5a:d4:dc:87:fe:b8:52:9d:6c:9c: e7:c0:e4:93:00:98:95:46:a4:7f:24:61:b0:b3:25: 1b:17:a5:62:02:a2:6a:1e:40:0c:2a:09:45:68:bf: ad:a1:d7:1d:41:95:e0:59:02:3b:d8:64:a6:4a:71: 32:9b:ff:2c:f0:6e:9b:39:e5:2e:9e:2b:a6:8d:90: c0:6e:97:17:38:bd:e0:b7:7f:ef:9e:38:b6:ae:c1: 30:d7:5d:cf:65:41:70:c2:16:88:9e:0d:b4:8e:80: 01:d5:61:0c:a5:ed:ea:fc:7e:45:fe:14:7f:8f:1f: b6:a7:98:e3:be:0d:33:b6:db:41:2f:39:4a:87:54: 7c:9e:d2:f4:d6:34:4d:00:f3:d9:ea:74:b6:04:a7: cc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FB:28:26:C5:40:CE:FB:8A:3E:3F:A7:F3:5C:20:81:AA:6F:B1:BD X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:b4:dc:15:be:14:45:5b:e9:fe:59:72:81:49:c5:be:cc:89: 9d:b3:fc:ff:6e:66:5c:49:5b:ff:bc:7b:f3:ea:ff:45:3c:bb: d1:02:94:84:3b:31:83:6d:4d:40:22:46:bd:a7:66:b7:26:09: 2b:f1:05:ed:4c:b6:a6:af:a4:a8:70:42:44:6d:85:b3:03:0e: 35:34:46:33:d0:25:50:15:70:a5:69:6d:25:75:f9:11:90:fe: 4a:7d:91:ee:1d:fb:15:26:a1:72:89:d0:f0:7f:88:54:2f:b3: 5e:50:0f:ea:a5:8a:66:f0:fd:f8:e0:57:7e:3b:dc:f4:d8:1e: e8:fe:67:88:2f:aa:f5:0c:c3:b6:9a:53:dc:f5:4f:47:01:e7: 7e:05:8b:a4:93:38:3c:9a:d9:6e:02:35:3a:eb:47:28:76:b5: ac:b9:34:c6:ef:86:74:82:ea:41:b9:9e:3d:08:11:88:10:eb: ec:2b:a2:7b:45:30:df:1f:d9:6b:51:2f:96:7d:6f:31:e7:95: 04:4d:48:fe:a7:0f:9f:19:11:7e:52:a2:5e:bd:48:89:94:99: 61:f1:a6:ad:46:6a:27:48:a0:66:13:14:e5:ff:7f:a5:ef:f7: f4:89:3a:a2:75:ae:54:e7:f5:5b:e1:95:b8:6f:28:1a:8a:eb: 21:aa:72:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA5MTcwNzI2MjhaFw0yNTA5MjQwNzI2MjhaMBgxFjAUBgNV BAMTDTY4Y2E2MmE0LTI2MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDqMZgM1obYjAPAmYijPaM+I2UebL9EUSsSPsvwNtZ7nSAOsmrfYT9mhAFA3Xj gZ87YsfwWFZitSizC23DFDp01o+yDTFsGngQnBNcB939fU0G1rYNMmjbVU1fVm3D TTnMPfVtj4JhOraoLDgqWtTch/64Up1snOfA5JMAmJVGpH8kYbCzJRsXpWIComoe QAwqCUVov62h1x1BleBZAjvYZKZKcTKb/yzwbps55S6eK6aNkMBulxc4veC3f++e OLauwTDXXc9lQXDCFoieDbSOgAHVYQyl7er8fkX+FH+PH7anmOO+DTO220EvOUqH VHye0vTWNE0A89nqdLYEp8zLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX/soJsVA zvuKPj+n81wggapvsb0wHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK+03BW+FEVb6f5ZcoFJxb7MiZ2z/P9uZlxJW/+8e/Pq/0U8u9EClIQ7 MYNtTUAiRr2nZrcmCSvxBe1MtqavpKhwQkRthbMDDjU0RjPQJVAVcKVpbSV1+RGQ /kp9ke4d+xUmoXKJ0PB/iFQvs15QD+qlimbw/fjgV3473PTYHuj+Z4gvqvUMw7aa U9z1T0cB534Fi6STODya2W4CNTrrRyh2tay5NMbvhnSC6kG5nj0IEYgQ6+wrontF MN8f2WtRL5Z9bzHnlQRNSP6nD58ZEX5Sol69SImUmWHxpq1GaidIoGYTFOX/f6Xv 9/SJOqJ1rlTn9VvhlbhvKBqK6yGqcjM= -----END CERTIFICATE-----Generated at Fri Sep 19 05:36:44 2025 by rpki-client