$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft File: aR7cVncnIjOjjzNRkaropa4q97k.mft (raw, json) Hash identifier: LmH0p757d7uOmHNAaKW4gvunRWDHthd8iGH+dEcUJtQ= Subject key identifier: CB:4D:7E:C4:E1:DE:96:6F:83:4B:27:1A:1B:D3:A5:4C:63:CC:83:E3 Authority key identifier: 69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 Certificate issuer: /CN=A9155725/serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft Manifest number: 35 Signing time: Thu 03 Jul 2025 07:52:22 +0000 Manifest this update: Thu 03 Jul 2025 07:52:22 +0000 Manifest next update: Thu 10 Jul 2025 07:52:22 +0000 Files and hashes: 1: aR7cVncnIjOjjzNRkaropa4q97k.crl (hash: smybAaHrxNXgOshkr2D0DOvUw8dIMR0eIf+2blV/KRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Validity Not Before: Jul 3 07:52:22 2025 GMT Not After : Jul 10 07:52:22 2025 GMT Subject: CN=686636b6-610f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e7:98:3b:65:94:60:dc:76:68:d2:8c:db:88: 25:8c:6e:05:30:09:16:f7:16:b2:07:39:4c:68:db: c8:2f:10:ec:1f:f8:4a:37:b3:1e:e8:64:55:b6:4a: 26:af:1c:8e:03:90:cd:b2:6b:3f:c1:c8:cc:8f:fb: 59:1b:c2:65:f0:f4:d7:a2:0e:5c:5e:6d:31:01:89: 9a:51:c6:c1:d8:27:62:b4:c2:e0:6a:cf:20:7a:d8: 4c:cb:2e:0d:86:10:fa:eb:b9:10:18:06:24:a6:ad: 9d:f6:5e:52:e6:62:b2:18:63:b2:02:0f:cd:12:25: 4f:46:b0:74:e8:50:87:bd:ea:cf:2e:2e:c7:b6:12: 3f:6f:17:ac:8d:7e:e7:29:b4:8f:3c:55:41:d9:78: d8:33:08:5d:97:7d:22:5c:cb:2d:d8:52:27:4c:4b: d0:b6:cc:9d:8f:56:d7:5f:4e:3f:5e:48:8e:6c:d3: a7:13:a0:6d:1c:a6:75:93:d9:9d:7d:33:13:15:a3: 95:e6:d3:80:61:34:f2:7e:37:96:78:75:dc:0a:43: d3:29:30:61:71:54:df:86:f8:71:6d:38:54:78:20: 62:69:3a:d0:4c:77:42:47:7e:df:59:4c:06:56:9f: 64:86:9d:45:e6:ee:5b:b7:2b:a0:a5:24:bd:fe:51: d4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4D:7E:C4:E1:DE:96:6F:83:4B:27:1A:1B:D3:A5:4C:63:CC:83:E3 X509v3 Authority Key Identifier: keyid:69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:9e:85:97:30:81:00:9c:ea:30:6a:14:b6:61:42:a3:53:25: a2:95:a0:df:e2:70:8d:de:bd:c3:f7:ca:b5:b3:e2:ef:53:0c: dd:68:ce:48:b2:6a:1d:d1:5d:5a:37:c0:4c:7c:0e:30:c4:98: 51:b8:1d:6d:42:00:a6:4e:65:50:6c:a3:0f:c8:9b:5d:e7:38: be:0e:93:26:b9:98:35:88:80:b5:9c:10:0c:b1:30:8d:b3:b8: 5d:65:13:90:3a:5a:69:c7:b6:45:8a:89:19:37:6b:8a:07:5d: e5:e6:4a:df:ed:53:31:10:cf:e9:d2:b4:b9:ad:2a:61:e4:36: 90:c5:d1:18:96:d2:54:41:20:55:65:a0:66:67:a1:4e:7f:13: 2b:36:4a:1a:32:ae:61:6f:d0:1e:cc:e0:d5:62:87:7b:18:ae: f1:5f:70:8a:7a:e0:ec:0c:a3:f2:70:4f:5e:3a:2b:a4:96:f3: eb:0c:3f:cc:9c:4b:71:d6:9d:70:69:b6:aa:59:87:b5:bd:b0: 3e:9a:91:56:d9:90:5a:76:88:7a:37:d1:6f:04:62:7a:18:5a: 48:f7:b5:42:df:72:7e:b8:38:21:25:51:3b:21:38:a3:a0:cd: 7a:2e:80:02:97:0e:91:5a:28:bc:e6:9b:c1:4d:b2:bf:0d:2e: 95:f3:fe:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoNjkxRURDNTY3NzI3MjIzM0EzOEYzMzUxOTFBQUU4QTVB RTJBRjdCOTAeFw0yNTA3MDMwNzUyMjJaFw0yNTA3MTAwNzUyMjJaMBgxFjAUBgNV BAMTDTY4NjYzNmI2LTYxMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC955g7ZZRg3HZo0ozbiCWMbgUwCRb3FrIHOUxo28gvEOwf+Eo3sx7oZFW2Siav HI4DkM2yaz/ByMyP+1kbwmXw9NeiDlxebTEBiZpRxsHYJ2K0wuBqzyB62EzLLg2G EPrruRAYBiSmrZ32XlLmYrIYY7ICD80SJU9GsHToUIe96s8uLse2Ej9vF6yNfucp tI88VUHZeNgzCF2XfSJcyy3YUidMS9C2zJ2PVtdfTj9eSI5s06cToG0cpnWT2Z19 MxMVo5Xm04BhNPJ+N5Z4ddwKQ9MpMGFxVN+G+HFtOFR4IGJpOtBMd0JHft9ZTAZW n2SGnUXm7lu3K6ClJL3+UdSRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy01+xOHe lm+DSycaG9OlTGPMg+MwHwYDVR0jBBgwFoAUaR7cVncnIjOjjzNRkaropa4q97kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzVBNjZDRjY4MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpPamp6TlJrYXJvcGE0cTk3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVI3Y1ZuY25Jak9qanpOUmthcm9wYTRxOTdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzVBNjZDRjY4MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpP amp6TlJrYXJvcGE0cTk3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFKehZcwgQCc6jBqFLZhQqNTJaKVoN/icI3evcP3yrWz4u9TDN1ozkiy ah3RXVo3wEx8DjDEmFG4HW1CAKZOZVBsow/Im13nOL4Okya5mDWIgLWcEAyxMI2z uF1lE5A6WmnHtkWKiRk3a4oHXeXmSt/tUzEQz+nStLmtKmHkNpDF0RiW0lRBIFVl oGZnoU5/Eys2ShoyrmFv0B7M4NVih3sYrvFfcIp64OwMo/JwT146K6SW8+sMP8yc S3HWnXBptqpZh7W9sD6akVbZkFp2iHo30W8EYnoYWkj3tULfcn64OCElUTshOKOg zXougAKXDpFaKLzmm8FNsr8NLpXz/m8= -----END CERTIFICATE-----Generated at Thu Jul 3 15:06:33 2025 by rpki-client