$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: EjTlYigbduafm1+BakhlDsWMvY2C2EQryt5UsaIjp4s= Subject key identifier: 7B:49:DE:95:1C:5F:29:13:6C:4A:B3:86:BA:98:7C:84:C4:1B:67:D6 Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 77 Signing time: Thu 03 Jul 2025 07:00:42 +0000 Manifest this update: Thu 03 Jul 2025 07:00:42 +0000 Manifest next update: Thu 10 Jul 2025 07:00:42 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: jpXC7ZpXvI+/Y6q/ioSLBaJbYwECyofSpxreyufpOZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Jul 3 07:00:42 2025 GMT Not After : Jul 10 07:00:42 2025 GMT Subject: CN=68662a9a-2e02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e6:12:5b:83:53:72:c9:a4:67:cb:1f:aa:95: f5:9c:8d:01:b8:83:e8:fc:d8:0c:67:c9:83:0f:c0: 86:1f:f8:1c:3a:b2:2b:76:b6:67:a6:86:7f:f8:59: 88:4c:a0:e1:00:40:b2:50:72:44:13:31:b7:75:b2: e5:51:b4:9a:86:3d:f9:b3:37:44:21:38:f8:a2:7e: 03:32:ba:33:c4:c9:ea:2a:c6:33:1e:f0:ae:99:07: 40:35:26:75:84:4f:56:d2:c1:29:dc:2f:23:8e:3c: 06:01:6d:28:e4:45:22:83:76:92:e8:4c:55:d0:2b: 60:68:48:10:00:1c:27:93:b8:18:62:34:3d:e7:c9: fd:38:5d:1e:4e:94:72:11:78:4a:e6:33:53:de:ce: e9:09:83:83:6e:e1:bb:70:fc:cb:ae:bb:13:5e:77: 0a:6e:01:24:72:eb:85:87:e7:ec:d9:04:d6:a2:f0: c6:a2:fd:e3:8b:f0:cf:e2:c2:60:50:b9:c3:1e:13: d5:60:60:9a:7d:d3:ee:09:94:06:3f:00:ce:3b:71: 09:f8:a6:7f:79:dd:c6:1f:46:16:5f:2d:3b:13:7c: 1f:ad:81:a2:c2:fc:e2:72:1f:e2:41:f1:dc:c4:72: 3b:a6:14:fe:e8:2f:8c:86:4b:69:97:25:78:30:52: 75:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:49:DE:95:1C:5F:29:13:6C:4A:B3:86:BA:98:7C:84:C4:1B:67:D6 X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f5:b8:0b:76:f3:85:ef:5b:67:af:2a:93:8e:ee:13:80:15: 35:16:88:33:c8:81:91:a5:ed:5e:9c:0e:f9:26:9b:49:e9:b7: f5:98:80:4f:f0:76:60:2a:a7:bf:f0:34:6d:46:dd:24:5a:0b: d0:b2:bb:05:ca:e3:92:15:3d:0c:e2:f3:74:8d:46:d1:9a:25: c5:90:e6:b4:27:f9:64:8c:c1:ad:e5:1f:67:09:99:1a:45:74: e8:aa:4c:0c:26:a5:66:61:33:14:38:2b:e6:9c:4f:71:b5:4c: a9:a3:40:c5:c3:f2:36:43:98:a7:d1:5c:ad:68:87:1e:ec:ac: e9:b6:e8:58:36:64:e2:8b:1a:62:7c:99:c4:c0:f3:bc:ba:54: 69:f0:6c:92:d1:da:9c:9b:16:0a:e7:68:a0:f3:f2:94:78:c2: ad:a1:5e:09:c8:39:6a:af:aa:52:94:bf:de:f7:3b:48:5f:ab: 8d:a4:9f:97:63:81:de:85:b0:8f:85:e1:f9:45:d2:18:01:8f: 58:5d:11:bf:ee:e0:bc:a3:44:d1:db:a1:37:c1:87:cd:9a:33: c8:26:91:4e:c2:dd:5f:ab:2a:b3:7a:f7:be:86:ab:53:9f:34: a3:20:ab:6d:5e:70:c9:aa:05:a2:18:62:b6:7c:b1:c9:45:82: bf:c4:84:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoRDQ3RUY5MjgxRTMxNDMxREU1OEUzNDdDNjk3RTM5QkYy NzQyOTExOTAeFw0yNTA3MDMwNzAwNDJaFw0yNTA3MTAwNzAwNDJaMBgxFjAUBgNV BAMTDTY4NjYyYTlhLTJlMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf5hJbg1NyyaRnyx+qlfWcjQG4g+j82AxnyYMPwIYf+Bw6sit2tmemhn/4WYhM oOEAQLJQckQTMbd1suVRtJqGPfmzN0QhOPiifgMyujPEyeoqxjMe8K6ZB0A1JnWE T1bSwSncLyOOPAYBbSjkRSKDdpLoTFXQK2BoSBAAHCeTuBhiND3nyf04XR5OlHIR eErmM1PezukJg4Nu4btw/MuuuxNedwpuASRy64WH5+zZBNai8Mai/eOL8M/iwmBQ ucMeE9VgYJp90+4JlAY/AM47cQn4pn953cYfRhZfLTsTfB+tgaLC/OJyH+JB8dzE cjumFP7oL4yGS2mXJXgwUnWzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe0nelRxf KRNsSrOGuph8hMQbZ9YwHwYDVR0jBBgwFoAU1H75KB4xQx3ljjR8aX45vydCkRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQ5MUQ2OTRDQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUg3NUtCNHhReDNsampSOGFYNDV2eWRDa1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx MkZFLzQ5MUQ2OTRDQTI1NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgz bGpqUjhhWDQ1dnlkQ2tSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADf1uAt284XvW2evKpOO7hOAFTUWiDPIgZGl7V6cDvkmm0npt/WYgE/w dmAqp7/wNG1G3SRaC9CyuwXK45IVPQzi83SNRtGaJcWQ5rQn+WSMwa3lH2cJmRpF dOiqTAwmpWZhMxQ4K+acT3G1TKmjQMXD8jZDmKfRXK1ohx7srOm26Fg2ZOKLGmJ8 mcTA87y6VGnwbJLR2pybFgrnaKDz8pR4wq2hXgnIOWqvqlKUv973O0hfq42kn5dj gd6FsI+F4flF0hgBj1hdEb/u4LyjRNHboTfBh82aM8gmkU7C3V+rKrN6976Gq1Of NKMgq21ecMmqBaIYYrZ8sclFgr/EhLE= -----END CERTIFICATE-----Generated at Fri Jul 4 22:22:28 2025 by rpki-client