$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft File: o5hxRib4es6-X2_QHlBwGRWqfRU.mft (raw, json) Hash identifier: jIlc/m1kS9TErXDk7GZlxC10SoKm/7LEPYBimFlBSXs= Subject key identifier: ED:F0:5B:B1:36:D5:22:FC:8A:98:30:C3:9E:86:3B:4A:FD:3E:D2:AF Authority key identifier: A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 Certificate issuer: /CN=A91827C5/serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft Manifest number: 85 Signing time: Tue 01 Jul 2025 07:18:29 +0000 Manifest this update: Tue 01 Jul 2025 07:18:28 +0000 Manifest next update: Tue 08 Jul 2025 07:18:28 +0000 Files and hashes: 1: o5hxRib4es6-X2_QHlBwGRWqfRU.crl (hash: PGi9/TOOMQiFXfLaKmGmgJ/TB+DxCoMvLIEKUczVXLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5, serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Validity Not Before: Jul 1 07:18:28 2025 GMT Not After : Jul 8 07:18:28 2025 GMT Subject: CN=68638bc4-c856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:17:22:f9:54:e9:25:d5:5e:7f:96:bb:43:e8: d0:b2:55:49:55:a8:e0:62:fd:74:10:56:a3:e6:06: 3f:7a:c3:4f:4a:b4:cd:0a:62:4c:3a:a1:fc:1a:d4: e8:10:96:90:23:3a:09:ea:2d:a6:73:04:06:ba:72: 35:47:1e:3d:75:30:4c:15:05:0b:3b:df:4a:59:67: 87:c6:fd:01:a4:fa:f2:d6:85:2f:bc:45:e0:f6:6a: e0:02:e4:9e:36:7d:b2:5b:f5:8a:e3:4a:a4:fd:22: b7:f4:1b:a5:fa:67:6b:cf:f6:ab:09:e4:ac:a7:40: d6:4e:38:65:55:87:13:b9:45:4e:b7:51:33:e8:0c: f5:db:60:a4:d0:18:a9:2d:90:fc:f6:e7:cf:dc:da: 3a:59:7e:ec:41:26:58:4f:0e:2f:fb:14:37:28:2c: 12:bf:2a:6a:80:b8:d6:2d:a8:f8:51:5d:dc:8c:ac: 94:8c:19:cc:b1:e1:24:f7:02:c7:01:6b:7f:0e:ee: de:80:21:34:31:30:2f:52:40:be:a0:20:a2:71:34: 47:81:cd:6d:d4:00:4b:cf:8e:d6:75:88:b5:09:75: 21:95:8b:ad:6d:49:e6:e2:94:c5:12:5e:55:a0:9c: df:a6:c7:26:fc:5c:fb:84:ed:3c:83:25:a0:af:d1: 0f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F0:5B:B1:36:D5:22:FC:8A:98:30:C3:9E:86:3B:4A:FD:3E:D2:AF X509v3 Authority Key Identifier: keyid:A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:be:64:53:e2:1e:0d:be:1a:4f:78:e2:e5:55:84:83:ee:58: fb:59:c8:d3:dc:b4:23:33:06:34:0e:c4:b3:e4:cb:70:4e:6c: 74:e9:95:27:25:a7:ba:d4:b4:4e:2a:29:b3:2c:dd:15:36:2f: be:87:b5:f5:57:1c:4a:d1:49:e4:ab:3e:0a:4b:ee:19:8c:cc: ac:fa:7e:41:d2:bb:64:cc:0d:fd:f5:8f:48:c4:08:ff:80:a8: ef:74:48:c4:e5:2c:ec:70:1b:09:95:ac:52:9d:0d:8e:20:33: 2c:b7:93:6e:a8:b9:a5:1a:4e:d2:25:d2:34:cc:64:27:1e:90: 67:0f:33:42:1c:be:d4:1b:70:aa:66:58:65:d5:52:f8:be:69: dc:71:7a:82:5d:09:54:b7:b5:bb:0c:13:f8:7f:fe:f6:e8:80: c7:47:7e:bc:76:8f:fb:cb:51:7e:ec:d4:67:b6:c3:4f:5c:03: 4e:6b:a5:71:a9:df:c5:f2:95:ee:29:6b:bd:ca:d6:77:75:87: cd:90:e5:fd:f8:ab:cf:1b:34:08:0b:2d:74:6f:76:ae:69:5b: 33:45:d9:86:74:3e:e2:31:93:07:b4:3d:0f:c0:86:8a:31:6e: 0a:14:ed:a2:d4:ae:78:fe:96:38:38:c6:96:15:b9:66:6a:71: 86:25:56:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3QzUxMTAvBgNVBAUTKEEzOTg3MTQ2MjZGODdBQ0VCRTVGNkZEMDFFNTA3MDE5 MTVBQTdEMTUwHhcNMjUwNzAxMDcxODI4WhcNMjUwNzA4MDcxODI4WjAYMRYwFAYD VQQDEw02ODYzOGJjNC1jODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxci+VTpJdVef5a7Q+jQslVJVajgYv10EFaj5gY/esNPSrTNCmJMOqH8GtTo EJaQIzoJ6i2mcwQGunI1Rx49dTBMFQULO99KWWeHxv0BpPry1oUvvEXg9mrgAuSe Nn2yW/WK40qk/SK39Bul+mdrz/arCeSsp0DWTjhlVYcTuUVOt1Ez6Az122Ck0Bip LZD89ufP3No6WX7sQSZYTw4v+xQ3KCwSvypqgLjWLaj4UV3cjKyUjBnMseEk9wLH AWt/Du7egCE0MTAvUkC+oCCicTRHgc1t1ABLz47WdYi1CXUhlYutbUnm4pTFEl5V oJzfpscm/Fz7hO08gyWgr9EPRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3wW7E2 1SL8ipgww56GO0r9PtKvMB8GA1UdIwQYMBaAFKOYcUYm+HrOvl9v0B5QcBkVqn0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdDNS9EOUFBQjgyQzhB RDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVzNi1YMl9RSGxCd0dSV3Fm UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281aHhSaWI0ZXM2LVgyX1FIbEJ3R1JXcWZSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjdDNS9EOUFBQjgyQzhBRDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVz Ni1YMl9RSGxCd0dSV3FmUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrvmRT4h4NvhpPeOLlVYSD7lj7WcjT3LQjMwY0DsSz5MtwTmx06ZUn Jae61LROKimzLN0VNi++h7X1VxxK0Unkqz4KS+4ZjMys+n5B0rtkzA399Y9IxAj/ gKjvdEjE5SzscBsJlaxSnQ2OIDMst5NuqLmlGk7SJdI0zGQnHpBnDzNCHL7UG3Cq Zlhl1VL4vmnccXqCXQlUt7W7DBP4f/726IDHR368do/7y1F+7NRntsNPXANOa6Vx qd/F8pXuKWu9ytZ3dYfNkOX9+KvPGzQICy10b3auaVszRdmGdD7iMZMHtD0PwIaK MW4KFO2i1K54/pY4OMaWFblmanGGJVZc -----END CERTIFICATE-----Generated at Thu Jul 3 07:12:29 2025 by rpki-client