$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: tO3PSJTwzpVaIHOVipJWBt74jD3bk0rWc1Jx0nJ+QV4= Subject key identifier: 8D:64:4F:2F:E0:6C:F8:F8:08:76:AD:B8:3E:B0:5C:6E:27:7F:B8:75 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 052C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 052C Signing time: Sun 20 Jul 2025 23:44:12 +0000 Manifest this update: Sun 20 Jul 2025 23:44:11 +0000 Manifest next update: Sun 27 Jul 2025 23:44:11 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: f7q2IUVuT1q4+B7aiQoqtYPuviSZVdw76TvfKQD2J5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Jul 20 23:44:11 2025 GMT Not After : Jul 27 23:44:11 2025 GMT Subject: CN=687d7f4b-4dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2c:03:90:d3:df:c0:9f:05:26:7e:21:49:ae: 94:95:f2:bd:4d:18:5e:ba:c5:05:00:96:df:81:24: 7b:77:5b:f8:42:4a:0d:72:ed:dd:95:64:1c:c7:f2: fe:c0:00:59:c0:bc:6d:77:7e:76:a1:50:0a:8f:96: 26:0d:ce:b4:91:a0:f1:29:c6:e9:73:dc:bc:7c:af: 32:0a:2b:db:08:4b:34:fc:86:59:69:6b:2c:da:aa: 42:80:d9:71:56:27:2a:f8:e7:57:7e:8f:41:c7:4c: 66:f9:6f:a5:4f:70:c5:d0:e9:0f:fc:a5:52:1b:b3: c6:87:d3:47:48:46:79:99:00:07:52:d3:31:b9:72: 3a:ac:41:42:69:41:79:ba:cb:68:54:54:7f:9c:7f: 6e:a9:f2:ee:d7:a3:6c:8d:84:6b:d5:85:33:c4:bc: 6e:b7:4d:e1:e8:a4:38:44:63:17:c8:c4:0d:26:5a: 98:80:42:4c:39:9e:32:ca:62:3e:42:21:18:c5:f6: 2c:ce:b8:f9:d6:55:4b:e0:8c:30:02:01:33:15:04: 3a:63:87:85:06:ae:6a:d0:40:e8:29:70:4e:66:6d: dc:c7:1e:84:4f:0e:44:12:77:0a:f3:a1:db:3e:f7: 1c:18:ad:1f:0c:28:eb:58:c0:46:fb:45:24:d6:12: 2f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:64:4F:2F:E0:6C:F8:F8:08:76:AD:B8:3E:B0:5C:6E:27:7F:B8:75 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c4:1f:df:73:ed:d1:d4:9f:5f:00:12:91:f9:b2:e8:49:b1: 78:19:43:78:c5:40:53:84:ac:d8:2c:cf:7e:e9:c7:8a:08:24: b4:cf:42:f6:f0:f4:13:04:d6:82:c5:cf:0a:35:c0:bb:f3:86: 24:49:50:e2:9a:4f:16:60:25:d5:41:f6:e2:41:29:d3:f2:ce: d6:39:89:ba:ce:56:77:c4:c8:a1:0b:74:1c:7c:54:f4:8e:90: 71:8a:1a:09:db:0d:3d:64:3a:4e:bc:39:f3:44:ca:99:2b:4a: 7c:95:a0:3a:f3:b1:45:28:5e:cc:b5:a6:18:a7:7e:19:25:1c: 2e:fe:0b:69:81:80:76:c8:4b:a0:c0:4b:cb:7c:65:69:18:20: 41:84:da:60:8c:f9:eb:98:12:eb:2e:51:40:1b:5f:7c:37:ca: e2:a0:ce:06:02:c0:9c:fd:6f:56:22:37:b5:db:e7:5b:2b:ae: 6c:68:4d:ac:18:64:80:26:07:5d:a3:c2:48:63:35:26:0b:6e: ba:2e:5e:1d:3b:e1:0b:27:31:84:5f:b1:d8:ed:6c:20:87:21: f3:59:cb:76:e0:3d:90:bb:d0:6a:62:1a:f3:21:88:fb:f0:e8: ab:fd:d0:a4:36:67:77:ed:d5:de:14:44:8c:47:e9:af:44:44: a2:a5:25:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwNzIwMjM0NDExWhcNMjUwNzI3MjM0NDExWjAYMRYwFAYD VQQDEw02ODdkN2Y0Yi00ZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SwDkNPfwJ8FJn4hSa6UlfK9TRheusUFAJbfgSR7d1v4QkoNcu3dlWQcx/L+ wABZwLxtd352oVAKj5YmDc60kaDxKcbpc9y8fK8yCivbCEs0/IZZaWss2qpCgNlx Vicq+OdXfo9Bx0xm+W+lT3DF0OkP/KVSG7PGh9NHSEZ5mQAHUtMxuXI6rEFCaUF5 ustoVFR/nH9uqfLu16NsjYRr1YUzxLxut03h6KQ4RGMXyMQNJlqYgEJMOZ4yymI+ QiEYxfYszrj51lVL4IwwAgEzFQQ6Y4eFBq5q0EDoKXBOZm3cxx6ETw5EEncK86Hb PvccGK0fDCjrWMBG+0Uk1hIvDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1kTy/g bPj4CHatuD6wXG4nf7h1MB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfxB/fc+3R1J9fABKR+bLoSbF4GUN4xUBThKzYLM9+6ceKCCS0z0L2 8PQTBNaCxc8KNcC784YkSVDimk8WYCXVQfbiQSnT8s7WOYm6zlZ3xMihC3QcfFT0 jpBxihoJ2w09ZDpOvDnzRMqZK0p8laA687FFKF7MtaYYp34ZJRwu/gtpgYB2yEug wEvLfGVpGCBBhNpgjPnrmBLrLlFAG198N8rioM4GAsCc/W9WIje12+dbK65saE2s GGSAJgddo8JIYzUmC266Ll4dO+ELJzGEX7HY7WwghyHzWct24D2Qu9BqYhrzIYj7 8Oir/dCkNmd37dXeFESMR+mvRESipSVN -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:11 2025 by rpki-client