$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft File: haOfEGRko23KJ0v8d_uvewMDh24.mft (raw, json) Hash identifier: qKLRexLu5U68pLnWl/zQ7ptEgNYhxTxldooprntzuuE= Subject key identifier: 52:AB:07:93:C9:60:8A:2C:20:B2:C1:EE:2B:7D:2D:B9:60:5A:53:97 Authority key identifier: 85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E Certificate issuer: /CN=A9131181/serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft Manifest number: 32 Signing time: Tue 01 Jul 2025 08:26:55 +0000 Manifest this update: Tue 01 Jul 2025 08:26:54 +0000 Manifest next update: Tue 08 Jul 2025 08:26:54 +0000 Files and hashes: 1: haOfEGRko23KJ0v8d_uvewMDh24.crl (hash: Fil+LYRMNhCwyF+THDmHzkk577kTQeD2RFWBaRkSTMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181, serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Validity Not Before: Jul 1 08:26:54 2025 GMT Not After : Jul 8 08:26:54 2025 GMT Subject: CN=68639bcf-40fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:c5:4d:88:3b:1c:45:cf:53:f5:63:19:a9: 34:a1:02:68:9d:4a:3c:26:8e:d3:3c:d1:09:92:6a: ea:8a:cd:7f:ec:a3:2a:47:fb:bd:a8:c5:3a:b2:64: f7:36:c9:44:d1:cd:ca:f6:5e:48:bb:9b:ef:ba:1e: 6a:a4:b4:9a:65:36:35:68:f3:32:a1:d0:e1:f4:11: 46:d5:68:df:8b:2d:9f:e8:de:7c:83:2a:9b:dd:ec: 70:54:5a:e0:a2:fd:ea:c8:35:3d:92:2f:af:e1:3d: 4c:a3:6e:03:4b:08:e1:79:16:9b:c5:8b:97:c6:8f: 48:76:5a:ff:3f:b9:4e:c8:fb:57:aa:09:78:4a:78: c9:51:e0:0e:f7:18:62:93:58:e4:1d:de:bf:40:b1: d1:45:ea:6a:32:75:f1:5e:bb:56:59:f7:bb:94:f2: 6e:99:0a:d9:f7:2f:f8:7b:a8:9c:9e:9a:b8:6e:34: 63:2a:15:f8:91:56:10:ad:c0:72:be:d7:43:c5:a4: 1f:04:28:b0:79:05:12:20:2d:a3:e1:da:6e:a1:56: bf:cb:9f:89:73:d6:7a:24:1d:86:0c:f9:e0:6b:d9: 7a:5a:d3:3c:c1:8f:0f:40:1b:79:67:c0:7d:36:25: cd:e3:62:77:c7:83:a6:d0:eb:54:12:f4:8c:2a:c2: a0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AB:07:93:C9:60:8A:2C:20:B2:C1:EE:2B:7D:2D:B9:60:5A:53:97 X509v3 Authority Key Identifier: keyid:85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b0:40:a6:3f:81:7e:58:af:00:d4:21:fd:dd:2e:85:3e:fa: be:bc:c5:26:23:58:64:84:a7:2e:40:2c:db:eb:ce:df:ce:6a: 99:df:ea:39:20:14:71:25:11:6f:65:4d:5c:ee:be:b7:ad:24: 85:cb:ba:63:94:d2:c3:6e:77:f0:93:b3:08:53:f2:be:7f:26: ca:a1:c1:1f:6e:24:c4:6a:ac:b7:a6:ae:ad:ac:cb:00:6d:fa: 37:7d:64:63:cd:7b:ca:f6:9c:92:68:f7:7d:08:2c:0f:d6:27: 86:2e:e6:32:3b:65:54:f4:ea:5b:2c:0c:13:08:e7:f2:e5:a3: b2:cc:bb:2a:2e:87:69:4c:45:20:c9:8a:07:93:83:af:0b:14: 7e:7f:17:6e:2a:56:57:f7:05:da:7d:e1:9d:b5:75:e2:18:a1: 71:27:2d:d9:8b:de:d7:8e:b0:ee:d6:a8:b4:c5:81:f5:a5:18: 35:6e:ff:54:15:c6:8a:2b:13:8b:6c:1e:fa:fd:03:19:f3:33: 32:64:a8:77:ed:ba:49:c0:72:81:db:45:fb:d5:ef:9e:91:cd: 5b:57:3b:61:a1:47:e1:bf:06:7d:b8:b1:da:06:8a:c4:a0:90: 62:43:8b:87:72:d0:19:42:76:03:c2:d5:15:d9:84:88:db:ec: 37:3d:0c:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoODVBMzlGMTA2NDY0QTM2RENBMjc0QkZDNzdGQkFGN0Iw MzAzODc2RTAeFw0yNTA3MDEwODI2NTRaFw0yNTA3MDgwODI2NTRaMBgxFjAUBgNV BAMTDTY4NjM5YmNmLTQwZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmNcVNiDscRc9T9WMZqTShAmidSjwmjtM80QmSauqKzX/soypH+72oxTqyZPc2 yUTRzcr2Xki7m++6HmqktJplNjVo8zKh0OH0EUbVaN+LLZ/o3nyDKpvd7HBUWuCi /erINT2SL6/hPUyjbgNLCOF5FpvFi5fGj0h2Wv8/uU7I+1eqCXhKeMlR4A73GGKT WOQd3r9AsdFF6moydfFeu1ZZ97uU8m6ZCtn3L/h7qJyemrhuNGMqFfiRVhCtwHK+ 10PFpB8EKLB5BRIgLaPh2m6hVr/Ln4lz1nokHYYM+eBr2Xpa0zzBjw9AG3lnwH02 Jc3jYnfHg6bQ61QS9IwqwqCVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUqsHk8lg iiwgssHuK30tuWBaU5cwHwYDVR0jBBgwFoAUhaOfEGRko23KJ0v8d/uvewMDh24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0IyRTcxNDYyMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIzS0owdjhkX3V2ZXdNRGgy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGFPZkVHUmtvMjNLSjB2OGRfdXZld01EaDI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0IyRTcxNDYyMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIz S0owdjhkX3V2ZXdNRGgyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHqwQKY/gX5YrwDUIf3dLoU++r68xSYjWGSEpy5ALNvrzt/Oapnf6jkg FHElEW9lTVzuvretJIXLumOU0sNud/CTswhT8r5/JsqhwR9uJMRqrLemrq2sywBt +jd9ZGPNe8r2nJJo930ILA/WJ4Yu5jI7ZVT06lssDBMI5/Llo7LMuyouh2lMRSDJ igeTg68LFH5/F24qVlf3Bdp94Z21deIYoXEnLdmL3teOsO7WqLTFgfWlGDVu/1QV xoorE4tsHvr9AxnzMzJkqHftuknAcoHbRfvV756RzVtXO2GhR+G/Bn24sdoGisSg kGJDi4dy0BlCdgPC1RXZhIjb7Dc9DD0= -----END CERTIFICATE-----Generated at Wed Jul 2 22:30:53 2025 by rpki-client