$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: SgTlQKqpuTJlpuKOwEgzV/n/F7s/RvJDw6e1I9acC9c= Subject key identifier: ED:E7:05:27:57:5F:94:0E:4B:C6:20:42:58:28:91:83:C7:78:FF:92 Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 0715 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 219B Signing time: Tue 08 Jul 2025 16:05:54 +0000 Manifest this update: Tue 08 Jul 2025 16:05:53 +0000 Manifest next update: Tue 15 Jul 2025 16:05:53 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: RMWHdJwtSQOgxLIOCzkzNno3cEn3RCFnhleoWYkXkfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Jul 2025 16:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Jul 8 16:05:53 2025 GMT Not After : Jul 15 16:05:53 2025 GMT Subject: CN=686d41e1-5148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:22:95:ee:8e:ca:1f:f6:b9:42:e6:bd:62: 85:1f:f0:bf:1b:22:56:0d:b3:89:8e:24:c6:95:4f: b4:31:69:7e:cd:45:e2:a9:34:69:fc:d5:ab:de:ba: ec:09:42:36:89:f4:b7:c8:7e:60:20:9c:2c:69:e3: f1:28:67:cd:1a:7c:7e:d9:06:bc:90:25:50:43:2e: a4:3c:fe:47:32:63:20:75:11:cd:dd:95:fd:21:7d: 0c:3c:fd:0c:e2:e7:2b:2e:d8:fd:d4:48:47:e9:46: c4:9a:0b:fe:67:f8:d9:05:14:cb:66:98:e5:bc:08: ff:80:5a:45:57:7f:0b:a0:53:a4:f6:e0:59:40:34: c6:5e:95:80:09:01:0b:84:7d:d1:5b:e5:18:c9:8c: 43:46:a1:ff:8f:d2:a9:07:aa:37:fc:46:72:a2:b5: 88:a0:67:e4:10:ec:58:70:74:10:b7:09:10:9d:70: 9a:7e:c8:a4:98:5b:69:4c:f1:87:58:00:3f:20:9f: 18:ea:09:1f:a8:41:30:c8:7c:bd:a9:db:e3:24:11: 56:1e:4e:3e:58:d3:ed:b9:0e:19:e9:cf:65:22:22: 0c:81:e4:8c:6c:71:08:e0:0f:78:13:a6:bf:0f:d8: 40:77:73:7a:7a:0f:3f:5f:3c:c9:80:86:31:00:17: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E7:05:27:57:5F:94:0E:4B:C6:20:42:58:28:91:83:C7:78:FF:92 X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8a:42:88:63:5b:91:fb:0c:22:cd:f6:50:d4:66:84:65:a4: 19:b5:97:a7:3a:7c:3a:76:e0:ee:7e:ea:2b:c5:42:ce:02:bc: 48:11:50:34:30:f3:bd:d0:fc:9a:a8:aa:f6:09:33:40:52:17: a1:d7:f1:82:65:e5:7d:6c:6e:b5:d5:b5:f4:3c:2f:8b:c4:f4: 6f:34:d8:2a:ad:8c:fc:00:56:ab:88:91:90:cb:22:63:1a:3a: 7b:42:b6:0a:cf:45:33:44:68:e6:ef:e1:4d:65:77:bb:e3:93: 94:66:14:6b:28:e4:a6:cf:dc:f4:6a:2c:69:83:c1:ea:b7:d5: be:9b:5f:1b:fa:df:1b:67:24:5d:b9:11:e6:37:cb:54:0f:07: ed:0a:56:c4:09:b3:a1:04:09:a9:5a:ed:6f:83:3d:1f:dd:cc: f3:af:fc:38:c1:3b:1d:eb:15:2d:79:66:61:b7:a6:c5:61:4c: 02:8a:2a:a3:4f:7d:39:3b:39:85:e3:d4:8e:58:0f:f0:69:be: e2:8e:26:57:6c:45:ab:dc:af:40:05:2d:50:9b:ee:47:4c:0d: 91:c0:33:f3:b7:43:35:d0:7f:74:78:3d:5f:be:fb:8a:51:81: b7:7c:fb:09:72:09:9b:75:9c:8c:e1:9a:27:65:d5:5d:8f:11: 16:e0:ab:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwNzA4MTYwNTUzWhcNMjUwNzE1MTYwNTUzWjAYMRYwFAYD VQQDEw02ODZkNDFlMS01MTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaoile6Oyh/2uULmvWKFH/C/GyJWDbOJjiTGlU+0MWl+zUXiqTRp/NWr3rrs CUI2ifS3yH5gIJwsaePxKGfNGnx+2Qa8kCVQQy6kPP5HMmMgdRHN3ZX9IX0MPP0M 4ucrLtj91EhH6UbEmgv+Z/jZBRTLZpjlvAj/gFpFV38LoFOk9uBZQDTGXpWACQEL hH3RW+UYyYxDRqH/j9KpB6o3/EZyorWIoGfkEOxYcHQQtwkQnXCafsikmFtpTPGH WAA/IJ8Y6gkfqEEwyHy9qdvjJBFWHk4+WNPtuQ4Z6c9lIiIMgeSMbHEI4A94E6a/ D9hAd3N6eg8/XzzJgIYxABfNTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3nBSdX X5QOS8YgQlgokYPHeP+SMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ikKIY1uR+wwizfZQ1GaEZaQZtZenOnw6duDufuorxULOArxIEVA0 MPO90PyaqKr2CTNAUheh1/GCZeV9bG611bX0PC+LxPRvNNgqrYz8AFariJGQyyJj Gjp7QrYKz0UzRGjm7+FNZXe745OUZhRrKOSmz9z0aixpg8Hqt9W+m18b+t8bZyRd uRHmN8tUDwftClbECbOhBAmpWu1vgz0f3czzr/w4wTsd6xUteWZht6bFYUwCiiqj T305OzmF49SOWA/wab7ijiZXbEWr3K9ABS1Qm+5HTA2RwDPzt0M10H90eD1fvvuK UYG3fPsJcgmbdZyM4ZonZdVdjxEW4KvS -----END CERTIFICATE-----Generated at Wed Jul 9 10:08:46 2025 by rpki-client