$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: wDgLO5vcTno0vC3zWLgvduBlgqB36YZaEVubym1sjg4= Subject key identifier: 08:DC:8D:4C:4E:CE:70:81:22:44:6C:40:0A:A9:1A:82:6E:A3:D2:2A Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 3497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 3497 Signing time: Fri 04 Jul 2025 14:40:06 +0000 Manifest this update: Fri 04 Jul 2025 14:40:05 +0000 Manifest next update: Fri 11 Jul 2025 14:40:05 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: 2UsqocJAgnR/FxmHGOyo68nBomubwsxs75aTzbcLwik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13463 (0x3497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Jul 4 14:40:05 2025 GMT Not After : Jul 11 14:40:05 2025 GMT Subject: CN=6867e7c5-487e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:f2:1b:97:6e:23:17:ad:be:2a:bc:2e:05: 70:e0:4e:a6:fc:08:a5:e3:a8:91:4c:c2:05:60:9d: 68:01:c9:26:77:57:3e:2c:36:46:57:2e:16:70:8f: 50:ad:c5:fd:9e:d3:a1:90:0f:2e:4f:3f:73:b6:1b: 67:90:74:8f:00:f4:50:3e:bd:06:59:d9:aa:3b:37: a3:bf:fa:82:d2:f7:8e:41:f8:86:fc:29:27:dc:e6: 1a:e8:3b:99:67:1b:b6:d0:c7:ec:2b:62:a7:79:cf: 10:87:af:5a:6b:11:38:f5:e9:07:4b:46:20:8d:50: 53:ec:07:01:89:ac:f6:7c:9c:92:1f:6d:b8:f4:5e: 7c:52:17:10:6a:74:1b:d7:0a:94:13:6b:88:ec:3b: e2:ea:c6:5e:6b:5a:17:a9:b4:20:66:54:e0:e0:c7: 32:0e:35:40:44:07:8a:11:73:59:7c:0c:8a:ea:3d: 10:09:e1:e2:b9:e0:53:0a:c1:84:87:04:65:f9:ad: f0:ac:b9:b8:77:23:fb:0a:b6:66:20:21:7d:b6:b6: 32:13:37:9d:95:45:db:e3:db:f8:61:66:1d:b3:d6: 99:7b:7f:3c:cd:ee:2a:9a:92:53:59:e3:14:f7:ce: 6b:40:71:41:27:cf:89:8d:be:0a:4e:fe:f3:13:8d: 7e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:DC:8D:4C:4E:CE:70:81:22:44:6C:40:0A:A9:1A:82:6E:A3:D2:2A X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:7c:14:d8:76:d4:84:24:4c:a4:5b:9f:8d:dc:45:8f:b6:5d: 98:23:ac:52:dc:4d:a0:42:98:cb:76:20:3d:8f:dc:f5:87:c3: e0:7e:1a:12:0c:fd:62:35:c6:25:28:7f:bf:34:c3:b4:47:23: 41:9b:b4:00:5b:5a:15:aa:93:80:24:83:54:8c:62:5e:20:36: fc:0a:2a:ab:31:cc:f7:66:83:96:44:6f:34:24:af:d2:80:8d: 0a:82:20:42:20:55:03:a4:84:6c:19:db:c7:62:b1:0b:d1:cf: c7:5e:99:d9:6d:64:0e:79:fb:7b:e1:b8:c3:8a:17:c1:01:7d: 8a:17:ee:99:48:c4:c9:9a:17:84:0c:e7:6d:95:fd:2a:d3:11: 97:7c:53:ca:5f:01:0c:aa:7c:72:d2:e2:37:26:d8:3e:8e:0a: 88:f3:ef:3f:bf:60:db:39:ea:55:05:ed:4d:bd:df:e2:f6:72: 1e:a6:5a:2d:6f:8e:93:48:81:d1:53:5f:03:ed:aa:15:1d:9d: 22:9a:3a:00:e9:d2:7c:73:97:b6:1e:fd:ce:6e:8d:03:7d:6a: c4:5b:d1:a7:61:fb:ae:ca:72:e3:a4:ae:b6:9c:dc:bd:aa:25: 44:15:56:6a:ad:df:21:c1:ee:38:be:f4:b8:9e:71:1b:a8:0c: 34:81:aa:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjUwNzA0MTQ0MDA1WhcNMjUwNzExMTQ0MDA1WjAYMRYwFAYD VQQDEw02ODY3ZTdjNS00ODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/LyG5duIxetviq8LgVw4E6m/Ail46iRTMIFYJ1oAckmd1c+LDZGVy4WcI9Q rcX9ntOhkA8uTz9zthtnkHSPAPRQPr0GWdmqOzejv/qC0veOQfiG/Ckn3OYa6DuZ Zxu20MfsK2Knec8Qh69aaxE49ekHS0YgjVBT7AcBiaz2fJySH2249F58UhcQanQb 1wqUE2uI7Dvi6sZea1oXqbQgZlTg4McyDjVARAeKEXNZfAyK6j0QCeHiueBTCsGE hwRl+a3wrLm4dyP7CrZmICF9trYyEzedlUXb49v4YWYds9aZe388ze4qmpJTWeMU 985rQHFBJ8+Jjb4KTv7zE41+VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjcjUxO znCBIkRsQAqpGoJuo9IqMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9fBTYdtSEJEykW5+N3EWPtl2YI6xS3E2gQpjLdiA9j9z1h8PgfhoS DP1iNcYlKH+/NMO0RyNBm7QAW1oVqpOAJINUjGJeIDb8CiqrMcz3ZoOWRG80JK/S gI0KgiBCIFUDpIRsGdvHYrEL0c/HXpnZbWQOeft74bjDihfBAX2KF+6ZSMTJmheE DOdtlf0q0xGXfFPKXwEMqnxy0uI3Jtg+jgqI8+8/v2DbOepVBe1Nvd/i9nIeplot b46TSIHRU18D7aoVHZ0imjoA6dJ8c5e2Hv3Obo0DfWrEW9GnYfuuynLjpK62nNy9 qiVEFVZqrd8hwe44vvS4nnEbqAw0garL -----END CERTIFICATE-----Generated at Sun Jul 6 00:30:29 2025 by rpki-client