$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft (raw, json) Hash identifier: Bun5oN6GA+kvP0lUEfgHn93Lxm6FNj/hFou4lZdrPVI= Subject key identifier: 32:1B:08:EA:8F:BE:9B:D2:2B:6B:61:29:90:8C:A4:A2:D7:78:DC:48 Authority key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 Certificate issuer: /CN=A91380F7/serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft Manifest number: 74 Signing time: Sat 05 Jul 2025 07:07:58 +0000 Manifest this update: Sat 05 Jul 2025 07:07:58 +0000 Manifest next update: Sat 12 Jul 2025 07:07:58 +0000 Files and hashes: 1: A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl (hash: CBLj6BMOalM4sjYKOedPEJg2ULQ1EQsr0lnJmr93rcI=) 2: 9B3FE178A7FA11EFA7886875C4F9AE02.roa (hash: wskyOCDE340iqc6+xbxJBMsRJGfe9vODWh/hz8Ga1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7, serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Validity Not Before: Jul 5 07:07:58 2025 GMT Not After : Jul 12 07:07:58 2025 GMT Subject: CN=6868cf4e-ab2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:61:8f:73:5e:22:ec:75:c0:41:f2:cf:16:fd: 26:cc:85:8d:bf:84:05:76:64:3c:68:39:62:1f:08: 0b:62:9c:4b:c4:0a:13:33:b0:63:a1:c7:c4:19:45: 11:99:9d:fe:bb:c9:48:7f:d2:1d:91:5c:f7:40:3d: 42:dd:75:b3:6d:6a:21:5e:5f:99:36:57:c6:e4:83: cb:0a:d8:ba:e5:3c:62:6c:c2:71:c8:30:b3:78:e4: 73:6b:b4:6d:fe:81:36:0c:69:f1:7f:fc:bd:6c:e4: d8:a0:81:c5:cb:12:9b:d6:70:28:c6:6b:2d:0a:d8: 65:eb:a7:35:f0:7f:eb:ab:cb:da:c7:8f:7d:b9:58: 0a:89:6e:98:5b:ca:91:a5:b7:1b:d3:ff:ce:52:18: d3:4a:30:92:d2:e8:ad:0f:63:0f:4f:18:1e:64:5e: 31:97:ed:5f:0d:bf:bd:e9:ec:06:87:03:4b:bc:e3: bd:a3:27:de:95:86:75:5d:61:77:86:bb:aa:f8:58: 2c:92:30:de:fc:e0:23:0a:76:7b:3b:c8:04:37:64: 69:ea:67:88:05:e8:09:ed:a7:e3:bc:f1:0d:9e:92: 6f:2d:fe:c4:60:c7:c5:9d:b6:ae:8a:84:ad:86:dd: 6c:98:22:47:de:c1:ed:92:4f:f4:00:a8:93:c1:5a: 44:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:08:EA:8F:BE:9B:D2:2B:6B:61:29:90:8C:A4:A2:D7:78:DC:48 X509v3 Authority Key Identifier: keyid:03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:9b:0b:3e:66:84:af:18:2e:ad:7b:77:12:7a:c1:98:4e:bf: 55:c8:92:89:e3:0a:dc:c0:ac:95:e7:59:88:90:7a:48:3e:24: f6:9b:fc:02:8f:6e:34:2f:7d:36:9f:82:ed:6a:3b:74:97:42: 4a:ab:62:21:dc:fe:e4:6b:55:7a:c4:3f:b0:91:79:8e:fd:90: 06:24:00:20:1b:08:e0:ab:f9:27:9a:3e:38:df:1a:5e:fc:0e: 20:ff:13:9b:2c:56:84:9b:0f:2e:19:33:88:44:14:cb:43:65: af:e2:90:3f:6a:a8:67:b1:97:d5:fb:04:83:fb:41:96:85:33: eb:44:72:58:1a:3a:4e:83:c5:49:e5:d2:a9:08:b0:cd:4a:95: 26:63:0b:0f:58:db:1b:8c:16:08:7b:44:5c:df:8a:d3:b4:2f: cf:1b:91:f0:37:d2:f1:8b:da:d9:25:82:b7:04:56:56:88:fb: 7f:a4:03:0a:5b:79:99:58:ec:0e:8f:7c:48:5a:d4:46:1a:13: 99:b4:ec:63:87:66:86:ea:0b:6d:5a:8d:f5:b5:de:56:b7:b1: ff:c1:58:8d:66:6e:3a:01:c5:78:cf:e0:76:b7:65:7a:0e:f6: e6:77:b3:ab:4e:b1:f0:d7:17:9f:bb:17:3a:d2:57:51:ed:48: 42:97:2b:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODBGNzExMC8GA1UEBRMoMDM5MUQ5QTcwRTg5M0U3NTFCQzYxMjg5QzU0NDE3Qjg3 QTEwNDU1OTAeFw0yNTA3MDUwNzA3NThaFw0yNTA3MTIwNzA3NThaMBgxFjAUBgNV BAMTDTY4NjhjZjRlLWFiMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKYY9zXiLsdcBB8s8W/SbMhY2/hAV2ZDxoOWIfCAtinEvEChMzsGOhx8QZRRGZ nf67yUh/0h2RXPdAPULddbNtaiFeX5k2V8bkg8sK2LrlPGJswnHIMLN45HNrtG3+ gTYMafF//L1s5NiggcXLEpvWcCjGay0K2GXrpzXwf+ury9rHj325WAqJbphbypGl txvT/85SGNNKMJLS6K0PYw9PGB5kXjGX7V8Nv73p7AaHA0u8472jJ96VhnVdYXeG u6r4WCySMN784CMKdns7yAQ3ZGnqZ4gF6Antp+O88Q2ekm8t/sRgx8Wdtq6KhK2G 3WyYIkfewe2ST/QAqJPBWkRfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMhsI6o++ m9Ira2EpkIykotd43EgwHwYDVR0jBBgwFoAUA5HZpw6JPnUbxhKJxUQXuHoQRVkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4MEY3L0E3RUJDMUQyQTdG ODExRUZCQjQ0RjM3MUM0RjlBRTAyL0E1SFpwdzZKUG5VYnhoS0p4VVFYdUhvUVJW ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTVIWnB3NkpQblVieGhLSnhVUVh1SG9RUlZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 MEY3L0E3RUJDMUQyQTdGODExRUZCQjQ0RjM3MUM0RjlBRTAyL0E1SFpwdzZKUG5V YnhoS0p4VVFYdUhvUVJWay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM2bCz5mhK8YLq17dxJ6wZhOv1XIkonjCtzArJXnWYiQekg+JPab/AKP bjQvfTafgu1qO3SXQkqrYiHc/uRrVXrEP7CReY79kAYkACAbCOCr+SeaPjjfGl78 DiD/E5ssVoSbDy4ZM4hEFMtDZa/ikD9qqGexl9X7BIP7QZaFM+tEclgaOk6DxUnl 0qkIsM1KlSZjCw9Y2xuMFgh7RFzfitO0L88bkfA30vGL2tklgrcEVlaI+3+kAwpb eZlY7A6PfEha1EYaE5m07GOHZobqC21ajfW13la3sf/BWI1mbjoBxXjP4Ha3ZXoO 9uZ3s6tOsfDXF5+7FzrSV1HtSEKXK6Y= -----END CERTIFICATE-----Generated at Sun Jul 6 01:15:21 2025 by rpki-client