$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: 5FcGRGWQi+Q3uaGqe4efHCcz0efTh2mXWxFv9KRn7z4= Subject key identifier: 0F:8B:A6:44:B9:2C:79:0B:84:2F:F2:08:7F:D8:C2:DC:29:0A:54:8F Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 21A7 Signing time: Sun 20 Jul 2025 15:58:54 +0000 Manifest this update: Sun 20 Jul 2025 15:58:54 +0000 Manifest next update: Sun 27 Jul 2025 15:58:54 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: y94palYS1PHG9Pqe6OmfCeh/yJset03WJ9hEyFA/JZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Jul 20 15:58:54 2025 GMT Not After : Jul 27 15:58:54 2025 GMT Subject: CN=687d123e-fd55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:35:81:b7:dd:b8:70:af:72:83:93:c9:05:98: 82:ab:a7:93:6b:e1:20:45:20:ce:a3:7b:24:55:36: 90:63:92:b2:af:d4:4e:56:87:f9:84:5d:cc:85:25: e7:79:3f:a5:07:d4:dd:7a:a8:af:1d:71:a6:7a:d5: d8:b9:3e:06:f0:1c:47:9a:f0:b4:6e:91:62:6c:97: aa:4a:20:d2:f0:48:56:13:62:b3:60:f6:79:bd:6e: 4d:35:40:b4:26:c3:94:14:54:8c:42:32:38:d0:8a: ba:f1:20:84:0a:25:90:c9:24:55:15:47:df:3a:ff: 94:5f:ce:d3:1e:56:9b:24:6e:cd:5c:91:97:2e:a4: ec:ad:4b:cd:0f:38:14:2e:93:42:57:7b:c6:d4:18: 87:6a:e6:ea:a1:4d:18:dd:07:e3:7a:dc:e2:e2:cd: 90:40:e6:fd:11:b2:05:4c:e0:9c:31:46:29:00:bd: 81:9b:fd:4e:c1:6d:e9:09:3b:48:78:1b:96:ed:8a: 71:f7:29:5c:12:ba:7a:c4:7d:89:a2:a0:b4:13:2a: 68:f4:80:f8:ee:10:cf:06:21:4f:13:e7:9e:cc:42: 39:0b:af:f5:d1:59:ba:5f:f0:9a:21:32:5c:a9:9e: 4d:59:89:f8:22:cb:cb:61:62:e9:d3:80:a4:f3:92: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8B:A6:44:B9:2C:79:0B:84:2F:F2:08:7F:D8:C2:DC:29:0A:54:8F X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:d0:51:3e:95:84:9e:82:c6:4a:de:d0:e6:69:63:95:5d:0b: 48:0c:03:eb:4c:8a:5a:3e:33:e6:7b:83:af:07:b5:59:f6:45: c8:b1:4b:e3:0d:ec:1b:51:c3:5a:2f:13:fb:a9:46:b6:33:a2: 0d:20:21:ac:15:13:da:fb:8d:6a:c1:f8:8f:d0:ca:1f:79:22: 06:3d:b9:ca:6b:6b:f2:f4:f1:b2:82:c0:9f:68:59:a0:b9:ad: 34:69:2e:32:46:61:dd:21:1c:ce:6f:27:44:4d:27:5b:59:c4: ab:c6:38:a7:78:8f:e2:40:15:5f:b7:e2:84:c9:79:37:6e:b7: 5d:e1:6b:27:a4:59:17:f6:dc:af:3d:53:f7:89:4d:1e:39:c2: 8a:e8:94:b0:bd:9f:2b:14:5a:c5:31:a7:f3:ee:a9:bd:9d:95: 09:86:fd:79:ff:66:6a:23:a3:85:09:c2:7a:17:51:ac:0a:c7: c9:db:4e:0f:57:8f:28:bf:7e:7e:48:57:23:78:e7:a4:15:29: 6b:cf:49:a6:0c:60:d1:f2:5b:58:e7:9c:74:43:f2:99:d8:24: 39:4c:4f:5f:67:25:72:c0:e7:2d:cd:fa:af:a2:bd:e0:20:10: 3d:bf:88:0d:f6:3d:cd:66:c6:03:46:00:dc:e7:c4:a5:6c:61: 07:43:66:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwNzIwMTU1ODU0WhcNMjUwNzI3MTU1ODU0WjAYMRYwFAYD VQQDEw02ODdkMTIzZS1mZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jWBt924cK9yg5PJBZiCq6eTa+EgRSDOo3skVTaQY5Kyr9ROVof5hF3MhSXn eT+lB9TdeqivHXGmetXYuT4G8BxHmvC0bpFibJeqSiDS8EhWE2KzYPZ5vW5NNUC0 JsOUFFSMQjI40Iq68SCECiWQySRVFUffOv+UX87THlabJG7NXJGXLqTsrUvNDzgU LpNCV3vG1BiHaubqoU0Y3Qfjetzi4s2QQOb9EbIFTOCcMUYpAL2Bm/1OwW3pCTtI eBuW7Ypx9ylcErp6xH2JoqC0Eypo9ID47hDPBiFPE+eezEI5C6/10Vm6X/CaITJc qZ5NWYn4IsvLYWLp04Ck85IWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+LpkS5 LHkLhC/yCH/YwtwpClSPMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA00FE+lYSegsZK3tDmaWOVXQtIDAPrTIpaPjPme4OvB7VZ9kXIsUvj DewbUcNaLxP7qUa2M6INICGsFRPa+41qwfiP0MofeSIGPbnKa2vy9PGygsCfaFmg ua00aS4yRmHdIRzObydETSdbWcSrxjineI/iQBVft+KEyXk3brdd4WsnpFkX9tyv PVP3iU0eOcKK6JSwvZ8rFFrFMafz7qm9nZUJhv15/2ZqI6OFCcJ6F1GsCsfJ204P V48ov35+SFcjeOekFSlrz0mmDGDR8ltY55x0Q/KZ2CQ5TE9fZyVywOctzfqvor3g IBA9v4gN9j3NZsYDRgDc58SlbGEHQ2aG -----END CERTIFICATE-----Generated at Mon Jul 21 18:20:22 2025 by rpki-client